Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3164633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: oCcKkmef0iEyp5hT5TMhOR3qkDkwx/qAiWDWjP8m78Q=
Subject key identifier: 2F:D2:2F:82:62:3D:51:03:A4:6B:6B:7A:57:E5:D0:0D:E9:C7:CF:FE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7966BDE93DE9042D567B5A49F73584A77C774C02
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:28 +0000
ROA not before: Mon 26 Sep 2022 09:55:28 +0000
ROA not after: Mon 25 Sep 2023 10:00:28 +0000
asID: 59282
IP address blocks: 2400:d680:1dc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:66:bd:e9:3d:e9:04:2d:56:7b:5a:49:f7:35:84:a7:7c:77:4c:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:28 2022 GMT
Not After : Sep 25 10:00:28 2023 GMT
Subject: CN=2FD22F82623D5103A46B6B7A57E5D00DE9C7CFFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:3d:09:64:5f:7e:56:ca:73:76:77:9d:c3:cd:
6a:a4:a8:88:76:16:be:ce:60:29:f8:4c:61:2d:00:
07:a7:34:ab:0b:4a:f1:0c:6a:45:52:f4:47:a0:74:
4e:8c:4d:3f:09:bc:2a:dc:1f:d7:e9:9a:3f:4e:eb:
d5:55:0e:cf:6a:b2:77:0a:d1:a7:fa:3a:77:56:48:
0c:33:d3:c6:95:08:57:b7:4e:34:99:b8:f6:e1:2b:
73:ae:a4:49:72:f1:5e:0f:36:f1:07:e6:07:8a:fe:
29:43:2d:3c:70:6e:3e:b6:ec:70:ca:a2:e3:54:d1:
22:7b:f0:0d:ad:20:e9:76:54:ff:18:1a:fd:b0:7e:
1a:bd:23:e4:89:16:1c:71:ec:5f:14:0b:5b:e3:c5:
78:b1:14:c3:1e:cd:12:0b:4f:f3:13:83:e9:e0:ce:
b3:d3:d1:0f:a5:5a:cc:33:c1:18:a4:92:f2:99:48:
e4:34:5c:4a:a0:ac:4f:4d:5e:b2:db:73:ad:72:ce:
fd:3d:1b:df:49:2b:07:21:5a:c2:90:02:66:03:bf:
d3:79:f4:1e:0b:cd:61:bb:4a:59:a1:54:de:cc:2c:
bd:01:1a:67:8c:0b:02:93:94:44:36:19:67:69:12:
cc:47:ee:58:a6:06:c4:26:9d:b4:80:b7:63:68:ff:
96:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:D2:2F:82:62:3D:51:03:A4:6B:6B:7A:57:E5:D0:0D:E9:C7:CF:FE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1dc::/48
Signature Algorithm: sha256WithRSAEncryption
42:00:6e:fa:89:86:56:53:dc:b7:1b:59:16:42:2c:d6:3d:8c:
6a:71:55:ee:70:83:27:8d:6a:ac:b0:3b:a1:6d:1a:e0:03:ff:
ff:2c:9e:2e:0c:03:91:6b:6c:a0:37:90:2a:40:c8:5b:3e:05:
50:7b:e1:8f:be:99:f6:be:7f:ea:f9:ac:a6:5a:89:1c:30:2b:
38:b9:89:e9:fa:c7:e1:10:bd:b1:80:55:02:9a:72:fe:3d:54:
53:46:25:8d:e9:7a:49:68:2d:d3:21:39:e2:d9:d7:7e:86:3b:
09:29:78:89:13:69:d7:b3:15:f7:ef:56:d3:93:98:44:91:2c:
2d:fb:78:02:9c:b4:73:b4:22:de:d8:cc:52:58:69:e9:28:11:
db:0e:72:68:61:97:ca:a9:61:de:f7:59:87:85:b0:f1:9f:a2:
2e:e3:c1:72:d1:0f:df:0b:71:73:1f:34:bd:78:24:1a:a5:be:
0c:40:2a:4c:2d:37:3c:bf:fd:0d:08:41:1b:b6:e2:1d:cc:05:
04:6b:e8:21:a2:6c:66:a5:af:57:07:12:7f:1b:00:4d:78:e0:
a4:26:99:26:cd:9f:df:77:58:5d:0c:40:ae:26:cc:69:f1:f3:
14:30:44:d3:7e:fd:89:6f:ec:64:07:f4:d7:66:66:28:2d:af:
a8:16:65:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org