Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3139633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: PGJ0aU/5PoNjoBK0Fa7KKHN3tZLKqLrvNfcVo8e1A5Y=
Subject key identifier: 43:51:35:CA:C1:24:4D:06:57:16:EB:DF:6A:FC:E2:47:FC:C1:D6:1D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2E740B1017ACF8AD4A5B43469A13225978FF8846
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:42 +0000
ROA not before: Mon 26 Sep 2022 07:56:42 +0000
ROA not after: Mon 25 Sep 2023 08:01:42 +0000
asID: 59282
IP address blocks: 2400:d680:19c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:74:0b:10:17:ac:f8:ad:4a:5b:43:46:9a:13:22:59:78:ff:88:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:42 2022 GMT
Not After : Sep 25 08:01:42 2023 GMT
Subject: CN=435135CAC1244D065716EBDF6AFCE247FCC1D61D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:93:25:55:6a:f2:c2:b9:5f:44:6f:b1:44:d7:
c2:d3:88:62:4e:13:d9:a4:20:98:7f:9f:c5:9c:42:
df:49:89:45:10:2a:9f:41:cf:9c:c9:d8:05:ac:31:
c9:33:9d:77:08:cf:74:b5:53:f8:86:74:67:64:e6:
a8:ba:40:11:d5:e3:87:e9:ab:0b:cb:49:a8:3f:a6:
a4:7c:b9:89:4e:4d:15:46:af:a0:31:59:59:8b:15:
54:79:b8:6d:7b:18:97:84:c6:57:dd:6f:b4:53:b1:
06:12:41:59:e6:c6:0d:e0:c0:33:ef:6a:1e:12:ca:
db:f0:d3:b0:45:a1:99:87:f1:25:43:dd:f7:91:97:
a4:f2:28:28:e1:8e:65:47:c2:88:ce:a8:c8:9d:89:
41:72:58:5d:a5:42:df:b9:20:91:c4:77:8e:53:04:
1f:6a:9b:eb:1b:da:1a:ba:a3:0d:17:a8:63:28:d3:
71:9b:49:63:a5:c0:70:70:ba:06:41:9a:55:0d:15:
18:33:f4:6d:2e:81:15:93:1a:94:e8:9d:1a:e3:ba:
5e:13:93:fc:27:7e:ef:d5:dc:62:21:04:81:c1:64:
19:70:0b:3e:0d:7b:91:7d:61:63:a0:51:0a:8f:57:
b7:91:5d:b5:91:2c:e0:56:b3:5b:19:c1:dc:b6:88:
30:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:51:35:CA:C1:24:4D:06:57:16:EB:DF:6A:FC:E2:47:FC:C1:D6:1D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:19c::/48
Signature Algorithm: sha256WithRSAEncryption
2c:7c:2f:0b:95:4b:29:5f:a5:ff:5e:1e:03:75:c5:9b:6d:51:
29:2d:ce:c7:b4:7a:04:01:76:9c:27:08:2b:f4:24:29:24:b6:
91:7e:2c:39:04:14:57:bf:2d:c5:1a:03:d7:e6:78:83:85:d7:
2e:e0:a5:e9:f0:a2:72:10:00:7d:6e:01:43:1a:51:0d:d4:2b:
dc:5b:be:f9:55:1d:d4:72:b3:bb:1b:bf:82:0e:27:a2:41:2a:
80:0f:81:27:31:f3:ab:23:01:4b:17:d3:05:5e:b0:57:ea:45:
29:ee:59:dd:d9:ad:47:7d:89:13:d8:d8:59:35:bd:4e:46:67:
2e:af:39:a9:04:34:d0:76:ee:23:49:fb:31:ec:cf:55:b5:3e:
61:c1:68:90:a9:dd:32:a4:32:f7:75:45:f0:ff:1d:97:0f:74:
cc:9e:ce:f1:4a:d7:aa:07:1d:1d:5a:e0:2d:31:a7:d7:af:68:
1d:6c:82:c4:db:d2:09:10:81:c0:68:9d:2a:8a:94:b1:1f:28:
0c:69:06:99:87:9b:5a:7f:a2:d0:5c:92:1d:62:da:65:79:63:
0c:d8:16:f3:4e:a0:f0:58:5e:90:c6:ed:80:3a:12:4e:1c:32:
9a:95:6b:ec:72:18:79:81:20:f7:cb:6a:6f:4a:5b:2a:04:4a:
bc:d2:b3:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org