Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3163623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 131ZDGGgXLweOThupeWREXNjH12sC9rKNQ4r4cLKB4w=
Subject key identifier: CB:30:4B:B3:9A:88:7F:C1:1E:DD:A1:44:49:8B:80:01:89:13:54:DE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6F07CC992F79E40352249AD6FEB2FC746F70379A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:26 +0000
ROA not before: Mon 26 Sep 2022 09:55:26 +0000
ROA not after: Mon 25 Sep 2023 10:00:26 +0000
asID: 59282
IP address blocks: 2400:d680:1cb::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:07:cc:99:2f:79:e4:03:52:24:9a:d6:fe:b2:fc:74:6f:70:37:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:26 2022 GMT
Not After : Sep 25 10:00:26 2023 GMT
Subject: CN=CB304BB39A887FC11EDDA144498B8001891354DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:4a:1b:8e:74:a0:eb:ef:a9:6c:a2:d8:7d:51:
a7:b5:87:1a:3e:23:81:3f:80:46:1b:49:4f:1f:08:
10:92:7d:3a:bb:ff:fa:23:a5:f8:47:4e:10:7c:2e:
14:3b:66:fd:01:08:b7:90:41:49:ee:fa:d5:a3:cd:
31:ce:5b:97:eb:de:d5:91:61:5e:a5:cf:4e:56:5c:
43:da:71:f9:b9:6f:73:a0:3a:05:22:08:6a:b6:29:
fd:14:ee:e6:82:b3:9c:ca:4d:1a:33:3b:f3:cd:62:
c1:a0:44:25:81:19:0b:8a:77:ce:9a:cf:e6:06:62:
96:bc:9d:00:e2:7e:77:88:5e:44:8d:29:3b:c5:99:
aa:a7:eb:7e:d2:a6:28:fc:34:99:45:02:23:88:16:
c3:7d:73:d6:7a:67:9f:e4:45:5a:f5:b7:cc:48:ba:
0f:d0:67:56:be:48:3c:7a:a0:4c:69:2e:89:f4:34:
0a:ad:de:a0:a5:7e:61:36:3f:ab:a7:4c:92:2e:28:
52:79:f9:51:2e:08:60:30:78:9a:e2:a3:23:b0:07:
69:54:f7:70:d5:f0:74:6a:61:aa:0e:2e:1b:c4:5d:
86:df:99:e9:dc:40:9c:eb:01:a1:59:d0:a5:05:d8:
26:f9:d0:21:ab:53:f2:29:be:4b:10:4a:2a:e9:cb:
ec:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:30:4B:B3:9A:88:7F:C1:1E:DD:A1:44:49:8B:80:01:89:13:54:DE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1cb::/48
Signature Algorithm: sha256WithRSAEncryption
0c:ab:9f:07:5b:ca:a9:36:6c:d2:9d:7c:87:d1:f3:fb:ea:33:
7c:56:e3:5b:4c:c1:cd:23:bb:be:62:d4:22:5d:9e:cc:86:58:
6b:73:d7:c1:6e:27:01:f3:3a:e1:d9:ea:03:ea:b4:be:cf:a2:
d3:70:65:3e:ee:0c:8c:c2:20:94:5f:89:ac:b5:4c:4e:3e:cd:
f2:54:d8:78:69:00:19:26:a2:61:9d:1b:5e:12:8b:df:88:b2:
0b:c2:cf:fd:99:d3:35:86:b7:d8:e5:41:8f:e6:b0:17:80:ab:
1f:64:f6:af:7a:56:40:af:09:2e:f3:c7:f4:63:57:f9:27:d1:
db:f7:e4:c7:f8:d7:8e:6c:23:77:3f:08:b0:91:a4:4a:1b:c7:
b6:69:36:c8:35:95:e6:a0:9f:e6:1a:03:a5:c2:4e:c6:a0:b5:
f3:33:4e:31:a3:ae:24:7a:52:95:d3:cd:dd:fb:a5:83:74:a6:
3a:19:f3:ca:d7:8f:c8:82:75:d8:d3:9a:32:a0:25:0c:a4:27:
78:d7:eb:0c:d5:10:ea:69:04:0f:5f:f2:18:5f:b0:f5:34:c2:
da:e4:5d:56:d6:04:bf:b8:65:e4:07:12:47:e7:80:01:26:48:
ad:c1:b2:e1:17:40:2d:93:cb:9f:89:6f:d8:b0:28:2a:35:f2:
f7:75:b6:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org