Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3165623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: NPIn2Rx6VTSQuAVvvG88W+88s3mvVE9EGNxXnyGevYw=
Subject key identifier: D3:F4:8E:84:77:1E:71:C5:B5:4D:57:83:86:7A:49:6C:CA:7C:B1:A8
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 367C10679997E0C7C74DD2E92B35D32B8E6D4841
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:01 +0000
ROA not before: Mon 26 Sep 2022 09:55:01 +0000
ROA not after: Mon 25 Sep 2023 10:00:01 +0000
asID: 59282
IP address blocks: 2400:d680:1eb::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:7c:10:67:99:97:e0:c7:c7:4d:d2:e9:2b:35:d3:2b:8e:6d:48:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:01 2022 GMT
Not After : Sep 25 10:00:01 2023 GMT
Subject: CN=D3F48E84771E71C5B54D5783867A496CCA7CB1A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:68:5c:0c:38:d9:4c:4f:a0:79:0d:61:73:1c:
f5:e4:c8:80:7f:25:25:04:3d:2e:29:93:f5:64:5f:
f1:6d:47:b1:b7:ac:cc:1d:8e:72:04:0c:c3:3c:bf:
db:7b:c9:25:a2:38:f8:6f:68:1d:b0:c2:81:ac:ad:
96:c3:63:1c:92:df:f8:25:87:4b:8e:fe:a3:20:1b:
6c:a2:ba:0c:e6:5c:20:2a:d5:18:93:61:e0:32:1a:
61:3d:d3:c6:2f:cf:59:83:7d:5e:f6:df:87:e6:45:
01:0a:9f:39:32:81:db:ae:2b:99:1f:6f:96:77:88:
4a:a2:47:80:aa:18:49:fb:e2:75:34:7d:77:b7:c8:
af:f0:99:98:0e:95:5b:de:09:e8:86:7f:c4:ea:10:
2c:c5:ce:a9:9c:6e:18:d3:23:ef:ad:23:8d:12:ec:
34:53:3c:4c:b0:aa:3c:19:a2:90:80:56:25:40:01:
b7:d3:14:df:de:60:f8:6d:e1:ec:78:8c:67:bc:9c:
03:47:9b:10:0d:6f:3d:bf:32:88:bd:2e:22:7f:62:
0d:06:49:94:a6:c4:23:e7:56:22:ce:6e:2b:4d:e7:
f8:5c:ed:a1:e7:aa:c0:b7:17:d8:a8:2a:e1:5b:49:
ba:fb:6f:b1:86:f0:7f:c1:ab:82:73:ac:3c:cd:a8:
f0:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:F4:8E:84:77:1E:71:C5:B5:4D:57:83:86:7A:49:6C:CA:7C:B1:A8
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1eb::/48
Signature Algorithm: sha256WithRSAEncryption
9a:50:d6:ae:94:c5:3e:37:ea:0d:bf:66:49:75:de:71:b4:71:
2c:2e:04:7e:0d:a5:d4:09:05:9e:c4:0a:80:a7:49:b1:ad:a6:
c6:42:72:b3:2e:b6:7b:d5:b4:56:4e:31:5d:fa:f2:fd:97:c5:
6f:a1:33:3b:65:54:9c:56:02:2b:06:47:c4:4d:7e:5f:d3:b5:
74:4d:1c:be:c5:26:aa:86:df:20:3e:c4:3f:12:34:c5:9a:8d:
0d:ff:65:0a:8c:81:ce:3e:53:df:92:2a:3f:75:c5:27:0b:96:
ec:c1:37:89:42:03:b3:89:88:34:31:ae:c4:3f:56:ab:bb:28:
b6:b5:3a:e7:61:63:fc:60:b7:29:10:59:4b:6d:f6:fb:ad:1b:
c2:d3:b4:31:87:0c:cd:7e:90:24:78:64:59:b3:6c:fb:d7:13:
72:f4:09:80:2f:b7:64:9f:f5:50:40:c4:5d:ce:63:86:52:b9:
81:ea:e4:c3:31:07:b2:8b:3d:61:d4:ea:36:f8:22:4d:23:8d:
45:8b:a8:92:6a:e2:8e:75:3b:0b:a1:c0:74:e7:a4:dc:73:16:
b3:5c:24:b7:ec:92:95:21:e0:07:95:57:46:f3:0d:3d:a4:33:
03:12:ed:33:c3:7c:68:66:ce:d8:eb:da:77:7f:f4:be:d7:89:
2c:c4:4e:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org