Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166333a3a2f34382d3438203d3e203438.roa
File: 323430303a643638303a3166333a3a2f34382d3438203d3e203438.roa (raw, json)
Hash identifier: rSWp56EUCvA4ct/muXN4qrTJ0JOZ7yRQTarj1R8S3Ps=
Subject key identifier: 51:E2:B0:F3:3D:1B:21:A6:B1:C7:96:98:10:88:F1:61:05:AE:B6:F9
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 637D5C43E54AC62794AA584E492CD201FC2642C1
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166333a3a2f34382d3438203d3e203438.roa
Signing time: Mon 26 Sep 2022 10:00:06 +0000
ROA not before: Mon 26 Sep 2022 09:55:06 +0000
ROA not after: Mon 25 Sep 2023 10:00:06 +0000
asID: 48
IP address blocks: 2400:d680:1f3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:7d:5c:43:e5:4a:c6:27:94:aa:58:4e:49:2c:d2:01:fc:26:42:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:06 2022 GMT
Not After : Sep 25 10:00:06 2023 GMT
Subject: CN=51E2B0F33D1B21A6B1C796981088F16105AEB6F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:a8:35:b4:5c:f2:7e:f0:4d:60:5e:02:4d:76:
5b:19:ad:8d:df:09:03:97:8a:31:ae:57:a7:08:f4:
fb:af:c6:c9:39:ea:b9:31:55:67:6c:49:af:9e:34:
38:46:3a:cc:b1:f6:67:32:ba:ad:0b:43:c1:c5:34:
1c:34:51:24:bd:b8:16:19:2b:4e:55:0d:8a:58:50:
dd:d7:1a:d0:8d:65:6a:90:94:1d:b1:a9:3e:63:77:
5b:83:0a:ee:31:73:b9:cf:5a:65:81:d8:88:32:57:
24:30:e4:06:d8:68:d1:dc:c6:61:56:78:fb:88:62:
e4:76:e6:5f:76:e0:e2:d7:09:c0:31:12:a3:0e:2b:
94:0d:6e:27:82:40:9f:78:96:85:16:04:02:e9:13:
c9:59:85:92:38:a3:fe:07:30:9d:6f:b8:44:de:57:
9d:08:b3:cd:a3:dc:e7:65:15:26:72:d9:c1:1e:7c:
04:fb:1f:57:0c:1c:62:81:5b:72:cc:4f:98:0c:98:
78:a5:67:5c:69:3a:44:60:58:65:8e:e7:74:9f:a8:
16:9e:82:de:ba:ed:3f:c6:a6:f3:04:6c:a0:e1:53:
ad:43:5e:e9:a4:30:cc:41:ce:d5:32:95:28:9f:b2:
1f:51:42:85:3a:c7:f9:c2:45:f4:26:f5:50:02:94:
ad:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:E2:B0:F3:3D:1B:21:A6:B1:C7:96:98:10:88:F1:61:05:AE:B6:F9
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166333a3a2f34382d3438203d3e203438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1f3::/48
Signature Algorithm: sha256WithRSAEncryption
77:15:3a:87:d1:39:7b:f8:92:95:e7:b7:00:c2:7f:49:d7:57:
92:19:dc:ae:79:26:ca:cb:58:63:b8:7b:55:af:a1:cf:af:c9:
de:37:d7:86:f1:cd:e0:ba:a6:59:68:0e:6e:65:ec:cc:08:04:
d7:13:ef:13:28:f2:7d:94:d8:22:d8:48:9b:71:4e:bd:22:ea:
8f:d1:25:95:39:d7:49:f8:19:45:95:8a:ac:00:f8:bc:72:84:
19:4f:96:28:fd:79:2a:ad:99:77:e3:bf:f7:9a:27:94:ec:69:
15:ad:58:75:1d:99:a5:5a:13:09:77:9e:58:56:dc:05:a2:cc:
91:b5:d2:7e:41:17:ee:7d:89:6d:00:35:49:2b:fc:40:c5:c8:
b0:c1:f4:c6:97:58:65:e9:87:e2:67:02:d9:a6:8c:8c:58:aa:
0b:aa:65:69:c9:b6:9a:21:0c:65:97:95:15:66:3a:79:fa:55:
ff:14:e0:dd:e3:dc:bc:62:9f:b9:7b:76:e6:d2:0b:d2:ff:90:
2c:f8:ff:d4:ae:51:db:b5:b1:18:ad:58:ae:ff:16:86:c7:a3:
2a:86:53:0d:45:cd:04:d4:86:f0:b9:a6:d0:52:94:03:2d:c6:
a1:e2:2f:0f:e5:a3:b3:80:f8:07:1f:13:e2:ac:01:b8:49:08:
99:fc:d2:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org