Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3163313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: GYTTx/QBzOKrADk6BDM3kl2vZ3mKnihipwNz3JxqcOo=
Subject key identifier: C3:70:3C:13:03:E9:3F:73:4F:44:2D:FC:8C:E2:02:AC:30:50:2B:8F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 71F37618C7C5B2A0BA3A27927D5092868D42C72F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:27 +0000
ROA not before: Mon 26 Sep 2022 09:55:27 +0000
ROA not after: Mon 25 Sep 2023 10:00:27 +0000
asID: 59282
IP address blocks: 2400:d680:1c1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:f3:76:18:c7:c5:b2:a0:ba:3a:27:92:7d:50:92:86:8d:42:c7:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:27 2022 GMT
Not After : Sep 25 10:00:27 2023 GMT
Subject: CN=C3703C1303E93F734F442DFC8CE202AC30502B8F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:5e:54:fc:9e:ad:09:e2:f6:e5:de:ce:56:28:
2f:02:6a:e5:31:ab:14:80:bc:38:cb:ba:85:79:b5:
08:ee:67:d6:23:ab:4d:23:24:22:45:54:c1:35:f9:
e8:6a:a2:34:e5:0a:ea:90:1e:55:ea:ac:b7:bc:1b:
6d:0f:41:0c:57:15:77:bc:3c:42:e6:fe:d9:e4:b2:
c7:e8:93:7e:cf:49:d8:97:3e:04:06:b1:d7:bd:30:
4d:d1:68:87:b9:b9:68:50:30:49:cd:e1:bc:9f:b2:
73:6e:51:b1:78:5d:6b:01:6e:4d:ea:ee:01:64:cd:
aa:24:85:ba:d7:69:d1:94:14:ca:cb:fb:a0:fb:33:
82:ca:93:5e:ca:21:b4:24:04:8e:e3:7b:4d:57:0d:
72:94:71:1e:76:91:d6:7a:69:ed:e1:73:65:01:35:
58:dc:ed:5f:e9:d4:7c:b4:bd:51:8d:50:be:09:2d:
3b:05:d9:6f:65:a0:8c:4a:5a:48:bf:35:c0:d6:be:
95:37:6c:36:3e:00:0d:51:99:72:b1:64:47:75:e5:
a8:32:a3:16:f7:a2:a9:3b:34:12:79:11:77:49:58:
a8:85:fd:10:82:30:4a:b5:c3:03:9e:ee:b8:03:a5:
57:bd:83:63:aa:cf:e1:8b:d3:49:11:12:89:d2:f4:
e0:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:70:3C:13:03:E9:3F:73:4F:44:2D:FC:8C:E2:02:AC:30:50:2B:8F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1c1::/48
Signature Algorithm: sha256WithRSAEncryption
48:bf:be:07:a4:18:91:ec:ed:c1:ed:41:cb:bf:83:6c:2c:a1:
b7:97:43:6a:8e:d9:0a:33:fe:48:82:1f:d5:4b:fc:e1:29:0e:
2d:01:80:1d:f3:b7:04:1b:82:c0:d0:60:45:98:8b:bc:33:86:
d6:a2:72:36:43:51:ea:ef:6e:7c:db:74:8b:46:98:a3:bd:5e:
3d:73:95:7b:20:64:53:9b:ca:31:ea:7e:cb:46:27:29:5a:04:
02:bd:27:9b:ac:dc:bc:7a:f1:3f:45:16:45:b6:4e:75:99:ba:
e4:8d:ff:b1:5d:3f:05:3c:67:90:66:dd:f1:09:67:2c:d1:64:
67:de:87:f7:78:c5:08:9d:23:d2:ad:af:59:9f:4d:38:ce:fa:
cd:aa:b2:e9:fa:a6:78:2c:cf:f9:ed:7a:17:d7:66:d0:2c:7a:
e9:91:8f:98:54:38:b1:6e:90:fb:33:00:d5:bf:5d:ce:80:f4:
09:49:03:04:7c:d3:ae:5b:35:44:b7:9c:cc:03:82:56:72:ac:
14:2f:48:9a:22:ae:34:06:fc:88:a2:c9:02:ba:1d:7b:87:2d:
8c:6e:f9:a2:14:fa:69:8c:fe:23:31:3d:31:98:73:5e:f3:9d:
fc:d7:d4:93:c7:4c:c7:08:42:26:72:31:75:e6:2e:8a:07:ad:
b9:e3:b6:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org