Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3162343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: wW+8WSB7iw31WftZI9Zm2zLIFqWW5ejTtwt1S14FLLQ=
Subject key identifier: C2:F4:17:00:1F:09:CA:AF:0B:69:83:68:30:0B:0E:8A:18:1A:C6:25
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 58B14BDFB3D7B23C80D7F7F24D0AAC7CB3505AF8
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:29 +0000
ROA not before: Mon 26 Sep 2022 09:55:29 +0000
ROA not after: Mon 25 Sep 2023 10:00:29 +0000
asID: 59282
IP address blocks: 2400:d680:1b4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:b1:4b:df:b3:d7:b2:3c:80:d7:f7:f2:4d:0a:ac:7c:b3:50:5a:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:29 2022 GMT
Not After : Sep 25 10:00:29 2023 GMT
Subject: CN=C2F417001F09CAAF0B698368300B0E8A181AC625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:4d:8f:0e:f3:43:6a:02:3e:2b:98:16:81:e9:
ad:09:ac:37:a4:1a:ff:4b:20:26:34:53:9e:10:b6:
ce:a1:c0:e8:3b:28:36:0b:68:17:fa:e0:cf:6a:dc:
9b:1a:c3:30:cc:03:aa:81:9d:47:eb:24:e2:01:5d:
60:a6:57:4e:04:b2:1d:4b:98:e4:08:57:18:8c:7f:
56:83:ef:ff:40:52:38:f7:0f:5d:34:c0:2a:3a:75:
94:c0:9a:23:2d:6e:d9:4b:d0:f0:e9:35:a9:c8:b4:
f3:5b:16:11:7d:78:e7:f4:7b:bd:12:35:e7:51:f0:
53:8a:0f:03:d5:7b:da:96:8d:5a:c5:1b:84:4d:3a:
16:d4:dc:26:3a:29:9c:fb:c4:b7:16:20:af:93:f3:
6c:fd:64:e7:5f:30:16:d2:98:82:f6:31:4b:14:d2:
5e:91:72:c8:f8:fe:4d:b5:ef:ac:bb:65:67:f4:22:
7d:17:c5:ad:3f:3c:a9:47:c6:f6:14:a0:b4:95:82:
1a:58:b5:21:b2:af:74:28:b0:3e:a1:5a:ba:e7:a1:
a3:3b:05:a2:4f:77:bc:ce:ca:ad:37:59:5c:ed:d9:
56:5c:e0:a1:33:66:64:15:3d:14:21:74:73:fc:d1:
70:07:50:b3:7d:7c:62:ab:ba:a3:ba:78:95:23:87:
7b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F4:17:00:1F:09:CA:AF:0B:69:83:68:30:0B:0E:8A:18:1A:C6:25
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1b4::/48
Signature Algorithm: sha256WithRSAEncryption
97:fb:48:b2:f8:57:16:64:0c:59:4c:23:4a:3a:36:16:85:ad:
de:88:d0:9f:3b:70:18:1c:f0:30:a3:6e:15:41:a7:cf:16:d9:
77:93:8d:63:5a:a6:9e:b2:ce:53:14:fb:ba:91:85:9a:3b:f1:
8a:44:48:42:0e:6e:91:7b:e4:ac:2c:d2:a2:6d:b7:22:13:ca:
4f:d6:01:a8:53:75:8b:22:91:65:63:7f:ac:92:c5:5d:f0:fd:
1f:27:06:da:97:4b:8e:9d:46:d2:09:54:b8:ce:e4:9a:ac:cd:
51:c2:66:76:be:10:47:08:7c:81:03:35:cc:ec:2d:0d:3e:5c:
4a:a2:04:24:0a:94:d0:50:8c:f2:25:9e:22:4d:df:c9:1f:3c:
2c:e9:5c:4e:60:cc:53:37:b8:4a:1b:63:15:ac:f5:8c:cf:29:
bf:c8:df:20:42:2f:76:a8:2f:b1:7a:da:66:73:ea:6b:01:bc:
33:0e:f5:96:e2:1b:9f:74:a8:67:34:fb:28:cb:d3:1b:56:8d:
27:73:d9:6a:22:e8:d1:74:ed:b5:44:ab:c2:97:36:98:ad:b7:
b8:3a:6f:66:e2:25:fb:61:0a:78:f2:58:78:00:c0:fc:5f:0d:
fd:61:8c:8d:a9:dd:1e:5d:c2:48:61:e7:29:a2:1b:21:c5:30:
b4:1f:4b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org