Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3138353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3138353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: TuNrR8FmCpVvbTK4SAwdBMqwOKqfMRnr0S3Z+/1WUdY=
Subject key identifier: 00:D2:B1:C3:60:67:C1:BB:B4:B8:17:49:FF:3B:33:ED:16:FA:17:4E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 57AAAB10638E85E01D13EE9A8D732EA6C74D855B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3138353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:38 +0000
ROA not before: Mon 26 Sep 2022 07:56:38 +0000
ROA not after: Mon 25 Sep 2023 08:01:38 +0000
asID: 59282
IP address blocks: 2400:d680:185::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:aa:ab:10:63:8e:85:e0:1d:13:ee:9a:8d:73:2e:a6:c7:4d:85:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:38 2022 GMT
Not After : Sep 25 08:01:38 2023 GMT
Subject: CN=00D2B1C36067C1BBB4B81749FF3B33ED16FA174E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b9:05:95:27:f2:17:5b:d4:21:f2:ab:52:cc:
6d:b0:3e:e5:54:84:27:0f:78:70:a0:5d:8b:7b:0e:
e0:47:f5:ec:d6:0c:19:0c:11:68:a5:e4:16:ca:19:
2f:91:a6:37:26:0d:1c:f4:7e:d8:ae:f1:f8:76:71:
44:de:ac:c4:fe:fb:9f:ff:7b:00:7b:e8:86:2d:8d:
33:e0:83:41:48:8b:07:d5:a2:b8:8b:c7:ce:4a:74:
88:f8:53:85:25:eb:3d:47:2a:48:3d:1f:1a:0f:b7:
32:c7:c6:b6:e2:4f:f6:32:0d:6e:01:ac:e9:06:69:
5f:16:14:35:85:8b:c6:db:f8:d3:6d:e1:11:22:0f:
96:0d:cc:0b:63:cd:39:39:da:88:94:63:48:0a:db:
91:c0:b3:11:ce:45:c8:0c:62:b5:df:07:d2:ac:c4:
53:d3:05:66:d8:c2:f1:5f:bc:fb:9f:60:db:79:b0:
79:0f:44:42:df:08:0c:7f:db:93:b5:52:42:96:e1:
d8:a9:6c:80:c6:f8:0a:fe:ef:5d:3f:ea:e8:d9:b0:
7e:e7:43:95:87:7e:57:f5:ff:42:e1:3b:90:c6:2a:
88:e9:ed:94:3c:35:20:10:65:92:c8:6d:b2:77:cd:
bb:a1:96:13:88:11:21:ad:cc:06:e8:ea:99:d9:f3:
12:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:D2:B1:C3:60:67:C1:BB:B4:B8:17:49:FF:3B:33:ED:16:FA:17:4E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3138353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:185::/48
Signature Algorithm: sha256WithRSAEncryption
0d:fb:52:0b:c2:1c:d5:6d:64:d8:07:fd:c5:c3:ff:0d:00:99:
e3:ba:13:28:31:a9:7c:31:29:8a:48:80:8f:31:49:49:25:60:
6d:b7:3e:d3:80:1f:82:6f:82:86:d6:b5:f1:cc:1b:2a:8a:f8:
52:4a:02:39:41:7d:70:df:6b:af:81:18:8d:99:f4:12:cb:61:
fb:fd:4b:3d:a1:15:0a:b8:9a:8b:bc:c2:61:dd:94:c4:59:17:
25:00:fa:b2:18:07:8a:93:56:b7:f6:6f:c7:8e:03:d8:99:28:
b3:4b:76:1d:94:c5:be:6c:a6:34:9b:83:e5:ed:7e:de:73:25:
d2:34:ab:a8:a3:70:de:90:2c:6d:4b:aa:eb:da:69:8f:a6:87:
04:d3:a8:88:f8:3e:9f:a6:5d:04:c7:9f:8a:89:49:81:88:c0:
af:e8:10:6b:d0:f9:eb:0c:92:a0:c1:f7:f5:18:b6:e4:14:31:
6b:b8:68:95:7c:ff:47:ae:f5:80:32:d3:c9:db:7a:bc:e7:5e:
13:4f:58:44:e8:3e:d4:6b:9b:50:18:2e:55:27:c6:71:1e:80:
7e:21:fb:06:74:f8:13:97:17:85:e4:41:e2:8a:00:3c:07:76:
53:8c:d7:c7:2f:e6:08:7d:47:22:34:d9:c5:96:d6:44:c3:ce:
a0:cf:f2:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org