Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3161663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: e1sZCkR8b4sXqkhIEJtLfsdCpMrh8uSNeNGMSgWpERE=
Subject key identifier: CD:16:56:8A:27:CF:C0:A2:40:76:90:96:4E:A5:3B:0B:30:55:FD:DB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0575DB4D688A9478E8DF6FB9575BF3FAA9D8B068
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:13 +0000
ROA not before: Mon 26 Sep 2022 09:55:13 +0000
ROA not after: Mon 25 Sep 2023 10:00:13 +0000
asID: 59282
IP address blocks: 2400:d680:1af::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:75:db:4d:68:8a:94:78:e8:df:6f:b9:57:5b:f3:fa:a9:d8:b0:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:13 2022 GMT
Not After : Sep 25 10:00:13 2023 GMT
Subject: CN=CD16568A27CFC0A2407690964EA53B0B3055FDDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:ee:78:89:9b:97:2f:dd:7d:d9:29:8c:d2:e0:
7e:10:79:92:a4:e8:da:c7:18:a7:e4:f2:83:44:50:
ec:81:87:e9:90:10:33:95:ee:89:b3:39:e0:06:bc:
80:d1:ba:74:46:80:58:27:20:0f:e0:9d:40:e9:ff:
ed:52:45:7d:e2:75:af:47:e9:0a:87:bc:4b:7a:61:
e1:b2:c6:df:54:9a:f3:ad:b8:6e:00:ab:27:9b:28:
f8:6c:30:8e:31:8f:a5:01:c8:20:4e:f1:f3:84:d4:
12:f8:db:d8:a8:cc:aa:80:06:d4:16:53:7d:56:af:
c9:92:42:66:6b:df:76:a8:cc:45:d0:7e:44:24:a4:
b6:a4:62:19:f8:c2:f1:e1:b4:7a:78:73:90:72:f0:
bf:8c:04:e1:fa:41:24:f9:1c:41:6e:96:1e:0b:10:
14:9c:a2:6b:ec:2e:eb:1e:0f:32:3b:66:af:3f:a8:
32:4d:c0:42:6e:a4:d9:c6:40:ed:06:f8:1e:2e:fc:
de:a8:89:39:3e:f5:e7:fc:ff:2a:34:42:a1:f3:13:
ac:8e:07:ab:f0:5f:c8:fd:d1:d4:45:e4:ea:1e:59:
97:a3:d6:98:73:4a:bc:ba:36:f3:d2:b8:66:74:b6:
ad:ec:6e:c2:54:17:4b:06:d1:a8:ea:c9:ef:63:94:
1a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:16:56:8A:27:CF:C0:A2:40:76:90:96:4E:A5:3B:0B:30:55:FD:DB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1af::/48
Signature Algorithm: sha256WithRSAEncryption
41:0b:d1:b6:5f:ea:2b:9b:c5:08:fe:23:e5:1d:da:0d:e0:14:
e3:e8:eb:7b:6e:c7:8e:02:63:a2:4d:b6:6c:3d:64:14:6e:83:
ce:97:e7:4c:a9:07:37:2b:78:6d:f7:89:c9:42:69:3c:e3:66:
49:88:66:f3:63:0d:dd:b8:9c:21:ff:bf:c5:99:52:0e:83:1a:
32:2c:89:a0:d0:b8:3f:a6:b6:46:d6:c7:c6:98:a2:b5:f4:dd:
f6:b7:c5:4c:66:b8:72:bc:cd:13:2d:6e:94:f3:16:04:99:85:
f8:d9:79:83:3f:ea:80:0c:ad:13:f5:a5:ba:dc:07:e2:b8:2a:
50:22:9a:b8:b5:03:a5:b0:5f:0b:5c:a1:d2:32:e2:c1:ae:df:
95:c0:30:a7:56:07:57:43:ea:95:b0:b5:24:18:39:a7:1a:ab:
05:e5:c4:03:22:96:c0:67:28:d7:e5:f3:f9:63:06:11:d0:64:
62:92:5f:9d:28:16:02:59:d7:e8:b7:26:75:65:78:84:44:ca:
f9:31:7a:cf:dd:27:98:00:13:02:e4:ff:65:bd:5d:ad:33:35:
1f:3b:69:7b:60:37:2d:ab:b0:41:d3:8c:39:c7:a3:8d:05:4c:
2c:b1:7d:eb:9a:35:6d:d6:4d:12:64:fd:6b:9c:50:e9:a9:5d:
46:cf:6c:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org