Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3163633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: blZ29bROovbxpTumNGIrw3DaUum6o8j2CEaPjbpEC2g=
Subject key identifier: CC:70:06:20:4F:C2:A3:6F:BA:76:55:A9:95:50:C6:BA:72:95:24:BC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 08B79478A21B1B2577AB4CA26BB21B9A9F8447A3
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:25 +0000
ROA not before: Mon 26 Sep 2022 09:55:25 +0000
ROA not after: Mon 25 Sep 2023 10:00:25 +0000
asID: 59282
IP address blocks: 2400:d680:1cc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:b7:94:78:a2:1b:1b:25:77:ab:4c:a2:6b:b2:1b:9a:9f:84:47:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:25 2022 GMT
Not After : Sep 25 10:00:25 2023 GMT
Subject: CN=CC7006204FC2A36FBA7655A99550C6BA729524BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1e:b5:72:28:0a:2a:9e:1c:63:71:a2:19:5d:
fd:a0:06:82:07:98:87:c3:23:e3:b5:03:c5:63:c1:
7a:98:dd:c5:9d:ba:8c:f5:e1:93:54:e0:28:b0:8f:
5a:b8:c7:13:4a:67:1c:78:59:34:43:51:7d:e7:82:
48:46:99:6b:32:6b:1b:b6:24:06:0e:5b:ac:e6:7d:
74:90:bc:c6:75:ff:7c:9d:fe:c9:00:9c:84:38:40:
db:16:1e:26:e0:92:5f:b9:4e:b1:9e:b0:39:63:74:
63:f9:25:f7:1d:94:42:2d:18:55:54:d8:ff:32:85:
48:3a:42:f9:29:6a:b3:a9:d8:74:8b:b7:01:10:68:
e4:85:0e:15:7a:55:50:7e:8a:5f:27:27:f5:b6:d1:
20:fd:05:3e:cc:c9:0a:97:d3:87:2d:03:6f:f4:be:
9e:92:f5:da:cc:cb:ad:93:ce:6f:15:2d:d5:b2:e6:
a5:70:5b:8d:11:55:27:07:44:ed:94:3f:2c:14:d7:
90:8f:9c:7c:16:19:de:ba:c2:85:19:03:19:ba:17:
bf:54:d9:17:64:ac:c4:37:31:a5:a3:10:5a:af:ca:
37:07:23:ef:26:88:49:c4:0a:23:f6:04:ac:90:e8:
b0:b2:2a:03:26:5f:79:4e:7f:23:6c:7b:38:09:b7:
af:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:70:06:20:4F:C2:A3:6F:BA:76:55:A9:95:50:C6:BA:72:95:24:BC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1cc::/48
Signature Algorithm: sha256WithRSAEncryption
ca:b6:87:6e:81:dc:44:17:71:55:b3:08:bc:94:3d:bc:31:ed:
aa:7e:0b:95:9b:f4:5c:94:15:c9:ec:9e:e4:26:2b:62:5b:cf:
9f:22:f2:8c:0c:3b:02:41:9c:f7:42:ba:fe:5d:06:bb:5f:9b:
50:3e:16:d1:0d:85:3e:df:e8:79:16:df:1c:98:c2:26:42:c3:
4a:52:46:a1:aa:91:41:ab:79:3b:90:3b:b2:85:7a:06:ba:6c:
ec:a4:fd:30:17:75:ec:de:13:ff:4b:4c:63:24:78:58:fd:f4:
36:f4:39:ae:f1:27:60:d8:7e:76:58:3b:40:6c:78:58:b3:d8:
3f:fa:fd:24:f2:97:0a:43:bf:58:8b:a5:7e:f4:16:c8:14:2d:
ef:78:a1:5d:5e:6d:2e:90:e8:32:5e:4b:65:bb:5d:12:ac:cc:
fc:09:f0:46:6f:d0:ed:b8:d6:43:ab:45:f2:64:9a:a9:bc:33:
41:56:56:48:bb:d6:69:6f:98:51:a4:57:98:63:bd:5d:79:06:
66:9c:b0:50:fa:ac:34:4c:43:d0:16:0f:f4:3f:b9:b0:2c:2a:
df:a9:49:d4:08:f6:f2:ac:f9:89:30:1f:8e:d2:c1:f8:2c:81:
88:af:50:05:8c:06:e9:9c:07:be:6a:72:fa:35:a4:f6:58:3c:
5b:fd:6c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org