Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3139313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: aFm3dvrMBoCIbNPp76qScuOkqbEZuOjsrDAJEQIt9Z4=
Subject key identifier: D4:EC:89:7F:9C:A0:2B:5C:40:E2:B4:3D:94:32:77:F3:5B:A5:8C:B3
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7152FE94AFC6B3E86537BADEF0C1BA76D4BCCE48
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:24 +0000
ROA not before: Mon 26 Sep 2022 07:56:24 +0000
ROA not after: Mon 25 Sep 2023 08:01:24 +0000
asID: 59282
IP address blocks: 2400:d680:191::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:52:fe:94:af:c6:b3:e8:65:37:ba:de:f0:c1:ba:76:d4:bc:ce:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:24 2022 GMT
Not After : Sep 25 08:01:24 2023 GMT
Subject: CN=D4EC897F9CA02B5C40E2B43D943277F35BA58CB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a8:9e:0d:67:84:54:aa:de:96:0d:7e:2c:7c:
1e:6f:de:e4:88:55:e3:f3:c7:9e:99:be:93:27:65:
91:e2:b4:0c:9d:1e:31:c1:b6:1f:35:d5:65:64:9f:
4c:18:fd:78:2a:28:93:dc:1d:48:ca:98:b3:df:ce:
84:c4:1e:35:2e:15:a8:23:6e:07:00:29:c7:2e:62:
c8:4a:22:0f:de:9d:38:a3:8b:c2:0e:c6:03:83:c9:
31:4f:54:83:d3:b0:9d:15:f2:25:43:5b:67:d0:86:
1c:4e:7f:98:1d:e2:31:c9:13:a5:5c:91:0a:fa:1a:
0e:30:d7:02:5f:fe:06:fc:4d:0a:95:8a:07:bd:36:
c3:bc:28:c6:2d:09:6b:ad:0a:da:68:ef:a7:ef:c3:
9f:fa:02:48:2f:72:a6:6f:39:2e:ce:78:af:d9:87:
fb:e9:99:ad:e3:21:66:bf:01:1c:28:a3:2d:fc:8c:
5d:08:e5:15:18:54:20:f0:25:c4:11:53:ed:11:ad:
80:d9:25:9f:75:be:05:17:88:78:e8:b4:52:68:82:
91:10:4d:30:4a:bf:9e:4e:3f:6f:b9:3a:ea:bc:35:
06:91:72:f5:f0:ac:fc:b5:2f:ef:15:07:88:c6:d6:
92:16:f2:20:0f:31:4b:1f:ca:84:d1:41:7e:68:69:
68:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:EC:89:7F:9C:A0:2B:5C:40:E2:B4:3D:94:32:77:F3:5B:A5:8C:B3
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:191::/48
Signature Algorithm: sha256WithRSAEncryption
73:e6:97:ef:7e:b3:76:d8:8c:22:41:dc:40:6d:cb:c8:3a:9c:
50:11:b4:8d:52:ab:cc:9b:5f:d8:65:ab:8c:87:e1:86:b5:3e:
da:07:53:53:1e:20:d0:d2:f6:5c:74:40:e8:8f:87:d6:70:4d:
76:ef:9e:28:a6:98:75:26:3e:65:72:27:7d:05:da:af:96:62:
78:82:45:19:6c:42:37:ac:b5:5d:ae:a8:93:6a:91:6b:95:a7:
66:fc:5d:1a:98:e3:ba:28:7f:76:03:dc:47:97:62:d1:b0:14:
d5:ee:4d:3a:23:ef:09:88:bf:6e:98:d7:17:0d:17:b2:cd:e9:
2f:50:6a:25:cc:cb:b3:9a:72:7e:3a:75:ee:68:5e:f2:d8:0b:
a9:ea:f7:ad:1f:0a:b2:b3:60:20:11:61:29:69:9c:fb:b8:5b:
06:ff:dd:66:8b:6d:fb:91:e2:7a:34:22:2a:45:98:a2:94:fa:
8f:16:70:66:a9:3b:b7:e8:9e:49:c5:96:39:db:8d:df:79:a4:
8b:b0:5b:d5:95:01:04:6f:f4:21:b3:ca:a5:e5:45:e5:1b:0c:
e2:3d:19:85:da:b9:16:bf:61:f1:44:9c:0f:1e:44:bb:3f:c1:
0d:8f:13:3e:18:f9:8a:9e:d8:e1:2e:94:f1:86:bd:b7:bc:8c:
d9:87:ad:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org