Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3166343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: evLKkVUAjKCboCbnDwSczgRh+w1XFMCCs8fIWwkQsQk=
Subject key identifier: 7F:F8:48:60:EE:91:CE:D9:F9:DD:4A:DF:3F:3A:BB:43:48:2F:23:7F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 467722881CF6F87A67588B720D8EB88247B1AA31
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:11 +0000
ROA not before: Mon 26 Sep 2022 09:55:11 +0000
ROA not after: Mon 25 Sep 2023 10:00:11 +0000
asID: 59282
IP address blocks: 2400:d680:1f4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
46:77:22:88:1c:f6:f8:7a:67:58:8b:72:0d:8e:b8:82:47:b1:aa:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:11 2022 GMT
Not After : Sep 25 10:00:11 2023 GMT
Subject: CN=7FF84860EE91CED9F9DD4ADF3F3ABB43482F237F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:61:c9:31:99:14:ef:c5:fa:bd:89:88:12:61:
03:bf:bd:08:8f:10:b6:75:56:7e:b9:b6:7c:ee:2d:
81:b6:99:7a:84:3c:b5:4b:62:8c:a7:69:3d:bb:99:
83:f6:60:74:b7:e7:6d:06:45:d9:50:e8:9c:31:70:
ee:f3:8a:d2:a6:43:67:64:71:51:30:8b:89:aa:ac:
ff:05:17:86:6d:a9:8c:e9:3d:9a:8a:0c:0f:93:28:
1a:47:09:dd:1b:eb:14:0f:9a:cc:b3:15:08:7f:5b:
b8:56:29:16:58:b8:25:6a:f7:75:f0:7d:90:b0:0a:
10:42:0e:31:0f:98:2a:bc:54:54:cd:0a:27:f6:fb:
8e:f2:d7:58:2f:d3:3d:ce:0c:01:a5:85:c8:83:dc:
c2:52:65:8b:00:fe:9d:c6:f7:7b:0b:ff:cb:76:a6:
48:65:80:a4:74:c0:14:46:dc:5f:8a:7f:a6:47:8a:
cc:f3:2e:d9:bc:ff:2d:79:a3:70:fb:f2:63:bb:f2:
78:53:ca:56:30:bf:ec:d2:3b:a4:21:41:f2:2d:e4:
f2:03:79:0b:95:69:e0:d7:b3:7e:b1:26:7f:48:15:
b4:fc:b1:c7:02:ff:1f:8d:11:7b:21:cb:27:61:3e:
1a:9f:e6:0e:3b:70:7d:50:0d:fd:9f:22:ac:3e:b7:
af:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:F8:48:60:EE:91:CE:D9:F9:DD:4A:DF:3F:3A:BB:43:48:2F:23:7F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1f4::/48
Signature Algorithm: sha256WithRSAEncryption
ae:7c:e7:60:84:64:01:c2:66:42:73:75:8c:d1:a6:17:e6:cd:
bd:82:d1:fc:49:8c:fd:db:ca:62:21:54:4c:e7:e5:a6:0e:bc:
0d:81:86:26:98:30:1f:06:8c:d0:67:9b:fe:3f:07:34:18:93:
89:f7:e4:3e:c0:fe:65:e5:cb:09:b3:66:8f:c0:00:57:3c:ab:
d5:e5:8c:e5:55:16:dd:f0:dc:c5:24:63:7b:2f:61:fb:0c:14:
02:1a:9d:91:c9:74:b8:38:7c:6f:ca:2c:17:50:49:09:a8:a6:
db:0e:aa:c5:87:fc:e1:be:88:12:ea:bc:72:da:bc:31:10:20:
0a:c6:4e:fd:df:df:17:30:96:bc:eb:3e:cb:48:6d:b3:fc:ea:
0b:93:e5:90:91:25:6e:c3:bf:97:b2:7c:81:19:84:2f:25:e1:
7b:f3:e3:6e:2e:fc:30:69:18:d0:75:90:c9:f2:12:b5:13:70:
c5:af:f3:3d:5e:1b:34:ed:09:0c:82:76:e1:0d:ff:f7:f4:13:
22:6d:81:4a:48:e7:57:0c:41:d4:b1:e9:f0:89:dc:31:62:84:
96:08:7a:02:9e:c5:db:94:e7:fd:1f:ce:fd:36:d6:25:fb:1c:
c0:26:df:7c:4e:4b:2e:a6:f3:15:0d:67:7e:29:6b:c3:6f:95:
1f:7e:80:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org