Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3138613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3138613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: eaI5r1Cw1zpRory7zCX2MgRFGRvY8Z3rZOBYNJqfZXk=
Subject key identifier: 28:75:DF:55:6C:5B:53:34:A5:40:04:4C:96:5B:33:4E:D3:66:25:77
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 669A0CF57EEA286F33C185A98219A4C355937591
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3138613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:36 +0000
ROA not before: Mon 26 Sep 2022 07:56:36 +0000
ROA not after: Mon 25 Sep 2023 08:01:36 +0000
asID: 59282
IP address blocks: 2400:d680:18a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:9a:0c:f5:7e:ea:28:6f:33:c1:85:a9:82:19:a4:c3:55:93:75:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:36 2022 GMT
Not After : Sep 25 08:01:36 2023 GMT
Subject: CN=2875DF556C5B5334A540044C965B334ED3662577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e9:cf:3b:ca:77:44:83:c9:5b:6e:2a:f3:2b:
b1:ac:65:18:06:e0:6b:a8:f2:59:38:47:21:e5:41:
d9:ed:af:a1:07:f7:3c:02:18:2f:0d:85:a9:37:94:
cf:6b:9c:c4:9d:43:50:9d:4f:97:08:38:f8:09:d2:
31:29:e7:08:2c:84:93:89:77:2a:a3:1f:31:a9:5c:
37:2b:7e:ea:1f:fe:25:6f:07:d6:6e:da:1a:10:96:
55:e6:c0:41:4e:81:74:ad:0f:4c:94:42:4b:0f:0f:
84:5c:44:b7:05:3f:aa:13:d2:4f:f1:eb:b1:92:1a:
82:55:1c:cb:07:17:c4:77:76:b9:0a:1c:c4:2d:21:
d9:bd:36:00:d9:cd:f6:61:22:52:4e:08:de:1c:b8:
81:b3:12:42:ff:20:25:30:24:d0:94:ec:80:51:0b:
23:fd:6b:c2:3a:52:3c:93:7b:62:a4:6b:5b:d0:8c:
91:f3:e2:3d:da:71:95:ff:89:cb:77:b8:18:d4:6d:
7d:ce:19:40:de:50:76:da:c3:2a:cf:4a:61:6f:8d:
27:d6:b4:7d:df:75:57:1d:b5:0b:51:4f:48:d0:e9:
4b:13:1c:30:e9:6b:46:b1:79:b6:36:85:48:de:d2:
8f:45:d2:d6:9f:1c:c6:1b:f9:04:80:32:13:c5:dd:
6f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:75:DF:55:6C:5B:53:34:A5:40:04:4C:96:5B:33:4E:D3:66:25:77
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3138613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:18a::/48
Signature Algorithm: sha256WithRSAEncryption
66:8a:b0:16:cd:ce:64:86:e4:6f:4c:0e:69:1b:ef:4f:53:2e:
0a:b5:63:18:4a:f7:c6:e4:05:07:1d:6a:06:cc:51:e8:e7:70:
a1:f8:9b:7e:92:8c:6e:01:ad:9f:11:87:bf:e4:bf:6f:56:d4:
12:fc:86:41:3d:a6:39:57:f6:28:61:e6:fb:d1:32:18:d7:66:
db:71:d1:1d:1f:21:f2:32:be:3c:72:c9:19:a9:c4:b8:44:79:
3b:00:84:e4:cd:d4:24:60:ad:1b:93:42:2e:4b:ac:fd:51:9b:
2e:0a:ef:51:df:49:1e:55:70:04:5e:df:91:da:92:2e:7f:1c:
a6:bf:b1:8c:10:f4:d0:93:43:20:05:27:45:aa:9c:6a:3b:7e:
3e:bf:9a:a5:12:27:64:a6:64:a8:3a:1e:16:8a:5a:58:3c:4b:
50:5a:c4:68:e0:73:9d:37:e4:e8:75:80:cc:8f:c2:04:6c:ed:
ec:a3:7b:63:79:eb:02:6b:8d:af:b9:ff:10:00:39:3c:30:94:
eb:d7:78:40:e4:29:3c:9d:72:95:9c:6b:45:96:a9:73:21:e3:
c6:2b:5e:32:56:92:31:9f:18:b3:a2:05:a5:a7:d8:90:bb:c5:
6f:ac:94:89:2e:a1:d3:8f:da:cd:0d:71:7a:c6:87:ca:c6:85:
b2:b3:47:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org