Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3164353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: E3ptkkuegijeyyfB9/ufxGpP8Ww+wE3FW2kc4THuM5g=
Subject key identifier: 12:ED:19:82:8C:1E:71:4F:4C:FC:70:F3:7F:78:1E:AA:7A:9A:F9:CB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2C627290CA68BD2A67D22B12B374FA79901ED27B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:08 +0000
ROA not before: Mon 26 Sep 2022 09:55:08 +0000
ROA not after: Mon 25 Sep 2023 10:00:08 +0000
asID: 59282
IP address blocks: 2400:d680:1d5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:62:72:90:ca:68:bd:2a:67:d2:2b:12:b3:74:fa:79:90:1e:d2:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:08 2022 GMT
Not After : Sep 25 10:00:08 2023 GMT
Subject: CN=12ED19828C1E714F4CFC70F37F781EAA7A9AF9CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a6:82:4c:26:9a:2e:b6:5d:93:fe:e3:ae:3f:
83:a1:f3:c3:79:9b:13:0b:0f:1a:02:e1:60:c6:5c:
56:a3:f4:9a:16:32:9e:db:c6:39:90:76:05:fb:ee:
30:6b:76:d6:bc:7e:07:ba:e4:f3:9d:a4:1b:e8:ec:
ea:3a:10:85:6a:a1:de:d7:a7:9d:86:a1:3f:32:3a:
28:3e:02:5f:5a:d3:80:b0:ec:c5:9b:a3:17:dc:e2:
0e:90:5d:24:73:1a:8d:b3:17:4f:fa:c4:f4:d3:f3:
07:df:77:89:bc:e4:b0:d4:d9:db:00:13:a7:92:8d:
1f:41:71:5a:a0:bd:64:f6:b4:b4:f6:c5:9b:21:94:
86:23:e1:77:4a:43:cf:69:ce:b8:a2:75:b5:73:e1:
ff:ef:95:c8:a3:09:ea:7f:dc:ae:9c:a7:d5:5b:76:
d2:1c:e3:82:30:7d:6b:49:88:38:cd:40:2b:98:30:
24:9a:be:35:43:9c:ea:f9:8c:9f:68:30:d9:e4:f2:
ee:ca:87:5b:e3:fd:c7:dd:7d:b2:72:cc:e0:86:67:
8b:a1:c2:53:4e:d4:3b:a1:d5:69:50:cd:23:1a:34:
a6:5f:71:e9:e3:a2:0b:3a:12:67:07:b3:b5:bb:52:
ef:3b:6f:77:1d:10:c6:6c:49:a4:04:87:3a:35:f9:
7a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:ED:19:82:8C:1E:71:4F:4C:FC:70:F3:7F:78:1E:AA:7A:9A:F9:CB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1d5::/48
Signature Algorithm: sha256WithRSAEncryption
be:08:06:c0:86:b4:c1:30:f4:79:9e:4f:f6:5f:76:99:f7:6c:
80:99:10:b0:35:78:04:c9:7b:93:da:da:1b:78:0c:09:09:1b:
f8:5e:c6:d2:80:c6:d6:f3:c7:dc:d8:ef:07:34:04:32:63:2c:
18:67:e2:5a:60:de:f6:9f:15:0c:7c:a0:82:bd:3f:c5:de:f2:
4c:bc:48:57:a4:8b:86:09:5a:5a:aa:6e:f0:55:33:a3:b1:aa:
b5:23:81:36:f5:f7:a0:7f:10:90:76:35:02:7c:33:4a:72:c4:
01:f6:0f:1b:1f:f5:6b:65:e4:54:00:b9:e2:71:b2:bf:b8:36:
9a:ce:3f:64:40:64:0b:d1:95:29:fc:7b:06:aa:3c:97:39:83:
2d:57:4c:9f:4f:1f:3f:47:3e:24:73:7f:bd:52:63:39:57:d9:
25:82:c2:fe:43:3d:e7:8d:63:2b:9a:e9:55:62:71:6f:15:5c:
f7:9d:2d:36:71:bc:d4:36:39:18:d8:91:08:d4:d5:24:aa:a5:
c7:e0:08:a1:7e:65:98:24:2f:fb:7c:78:ba:c6:74:c2:68:0f:
52:71:fc:43:d6:1b:b4:97:e8:06:8b:31:4c:90:f3:76:5a:c3:
38:01:19:24:2d:7a:6c:4c:31:f2:84:69:b8:94:49:d8:6e:7a:
49:66:4f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org