Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3163323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: fjKepxEgd0xA1lx4NNxyUarSexVuu5+5vv2NcvimDjE=
Subject key identifier: 1E:14:B3:E0:1D:FC:2D:AA:B0:51:72:DF:DD:D0:EF:61:6F:4B:D6:BE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0D10C8FE4CA4C64ED80DC41070107CC44DE3759C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:03 +0000
ROA not before: Mon 26 Sep 2022 09:55:03 +0000
ROA not after: Mon 25 Sep 2023 10:00:03 +0000
asID: 59282
IP address blocks: 2400:d680:1c2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:10:c8:fe:4c:a4:c6:4e:d8:0d:c4:10:70:10:7c:c4:4d:e3:75:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:03 2022 GMT
Not After : Sep 25 10:00:03 2023 GMT
Subject: CN=1E14B3E01DFC2DAAB05172DFDDD0EF616F4BD6BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:11:7f:5f:1e:ca:14:56:52:c0:e7:36:5a:17:
f5:db:33:9d:c5:f2:3a:b0:29:4b:17:78:da:af:ae:
95:ee:04:14:55:f4:22:f3:31:98:de:a9:33:fd:95:
f9:c6:cf:67:50:54:10:3b:51:78:d4:46:69:21:2c:
cf:3e:e9:7d:d0:0b:10:96:27:71:9a:92:de:e8:94:
b2:23:f3:d3:79:bf:d9:9c:67:fe:d6:29:39:12:07:
f8:ae:ca:5c:cf:67:6f:b9:f7:5e:9d:87:53:de:0b:
48:e1:47:fd:12:8f:67:54:34:4d:fa:36:e3:26:49:
4d:7e:f3:43:61:74:78:af:33:bc:f0:a0:b5:01:f9:
b0:e4:ba:63:fa:f5:54:1c:78:72:51:14:d9:3c:bf:
64:65:b2:2f:f2:53:0c:99:a5:10:9a:3e:29:d5:d1:
e0:76:71:cf:ee:a5:a2:4a:f0:44:e8:01:80:66:4a:
bc:82:3f:0b:f9:70:f7:14:db:54:76:44:02:72:f7:
f8:e2:96:b4:77:f7:c1:11:9b:c2:16:3b:36:8e:96:
0f:fd:03:4d:03:e3:1d:5e:e9:b6:12:90:41:44:95:
26:bc:44:cf:84:e3:cb:c2:4f:a3:b7:52:c2:f6:eb:
e2:4e:2c:eb:02:80:50:b1:20:ac:e9:10:01:9a:f2:
3a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:14:B3:E0:1D:FC:2D:AA:B0:51:72:DF:DD:D0:EF:61:6F:4B:D6:BE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1c2::/48
Signature Algorithm: sha256WithRSAEncryption
41:d5:50:45:08:6a:ba:76:f5:af:da:a9:e2:6d:9d:3d:9e:b4:
45:8a:49:71:e4:33:69:d3:6f:b0:e2:81:68:c9:ae:22:c5:69:
f3:d3:ab:41:da:bd:bb:16:be:f1:3d:db:f8:9e:4b:3c:37:96:
1f:bd:94:f1:56:0e:6c:9e:87:ea:c2:1c:46:6f:54:70:ae:63:
49:5c:13:f8:bc:20:ff:71:3f:77:5e:2d:b3:7b:72:ea:ac:ac:
5a:58:c5:27:f4:b6:a4:ac:06:06:62:90:c3:cd:48:f9:4b:55:
c1:d7:a3:81:06:dc:12:7d:b6:c2:54:b0:d8:24:78:ef:1e:42:
52:b8:d1:b0:a9:8d:60:13:9c:d5:41:b6:88:38:29:a6:f7:28:
f1:e2:19:11:1b:75:6b:d2:a9:55:b0:b3:73:06:c6:40:50:a3:
1f:1f:6a:6e:15:35:b1:ec:7e:9b:6a:f1:1f:e9:29:96:7f:ee:
bc:d4:2f:50:21:a1:9f:c3:23:f0:c2:47:8b:f5:32:40:ec:38:
ff:af:43:da:51:06:90:37:b7:d6:a7:c1:cb:8f:76:e4:57:1e:
56:13:14:4b:89:31:64:d8:96:10:78:5e:df:8e:fe:83:9c:23:
33:fc:30:10:f4:63:f4:78:8c:0f:b7:87:32:a6:66:ee:c6:ef:
d2:7d:67:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org