Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a32303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 1jLtfijEClkH2BQlJfZyj2gi9f5hVtqJukk19dyzuf8=
Subject key identifier: AD:40:86:7A:D7:29:18:0C:A7:7D:4C:05:37:21:8A:04:6A:D4:6B:48
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0B93A0D4E511F867809C420AA1882EE3333C2BEC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 07:00:05 +0000
ROA not before: Mon 26 Sep 2022 06:55:05 +0000
ROA not after: Mon 25 Sep 2023 07:00:05 +0000
asID: 59282
IP address blocks: 2400:d680:20::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:93:a0:d4:e5:11:f8:67:80:9c:42:0a:a1:88:2e:e3:33:3c:2b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 06:55:05 2022 GMT
Not After : Sep 25 07:00:05 2023 GMT
Subject: CN=AD40867AD729180CA77D4C0537218A046AD46B48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ed:08:85:8e:f1:2e:83:c3:db:fa:66:99:59:
22:13:ae:cd:85:20:60:cf:30:a7:88:b2:94:bd:ae:
7a:ae:4a:4e:ab:b0:4e:5d:63:4e:49:02:e5:c1:49:
dd:57:b4:19:1f:c5:f3:ca:74:5b:38:94:e7:79:26:
d1:af:5c:cf:72:33:07:c8:5d:1e:d0:e5:7b:ae:16:
67:8f:5d:17:f9:da:2d:2f:d5:97:07:cc:8a:c0:20:
13:8e:27:1f:d7:a2:40:1f:c2:28:c5:7f:ef:83:fd:
83:a9:77:5e:a6:3b:87:72:54:80:b8:0b:c1:b0:f0:
65:da:33:c9:32:3f:8f:66:5c:b6:85:a2:3a:bc:b6:
b6:4e:78:5c:10:9c:a7:e1:f6:58:d1:51:87:0a:1f:
cb:d5:d8:df:d7:d6:06:d3:d0:f6:0e:3e:c7:15:1d:
60:80:b7:a0:81:d6:3a:32:9b:83:2f:07:c5:f9:f5:
1c:de:0f:59:a1:60:03:dc:5c:36:b7:2d:69:d9:b8:
12:f6:71:39:b3:99:a8:a8:9b:ff:18:7d:79:b8:be:
79:1d:72:99:2c:7c:1b:63:3f:e4:b6:0e:7c:20:28:
7f:f1:13:46:a7:69:d9:80:f6:6e:bc:48:aa:a7:dc:
23:76:f9:16:c9:96:1e:24:b7:e7:41:ac:d8:04:84:
ac:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:40:86:7A:D7:29:18:0C:A7:7D:4C:05:37:21:8A:04:6A:D4:6B:48
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:20::/48
Signature Algorithm: sha256WithRSAEncryption
64:c2:97:5b:ba:f3:e4:db:27:97:a5:68:06:4b:51:e1:5d:bb:
a2:b4:bb:a0:35:1f:e9:73:49:59:e5:0e:3c:f2:0c:32:76:d9:
f8:fd:f4:6c:2d:67:85:50:27:bf:36:69:51:f8:61:fc:fe:f5:
f7:de:4a:e4:62:d5:d6:01:ea:56:07:11:f6:e7:07:37:8b:0b:
ea:57:5a:6b:d9:70:af:b3:8f:65:ce:26:7d:7f:30:7f:99:b6:
82:f5:a3:53:03:bb:e0:cb:fa:0a:75:24:67:2b:67:26:52:cf:
57:fc:f5:11:80:8c:97:48:b4:98:f0:10:da:0b:5e:98:86:20:
b3:5d:4b:10:df:5e:72:2e:2a:c0:84:fa:06:86:9f:f9:ee:90:
6e:b3:df:0e:e6:bc:ce:35:bc:05:5c:64:c8:ed:cb:37:09:ed:
1e:6a:27:ef:84:b1:67:f4:0b:fc:11:ae:f2:d7:db:57:92:fc:
2c:56:91:24:09:f4:c2:6f:31:15:46:39:41:58:54:27:d9:e9:
40:2f:02:aa:a1:89:af:1a:b8:3c:42:ed:ad:65:c7:84:63:37:
7b:a6:e1:d3:db:b3:f4:47:a1:21:46:fa:5a:27:6e:67:f2:b2:
11:be:93:8c:4c:de:72:31:ac:d0:61:7a:86:f6:7e:15:ae:7a:
79:d2:d8:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org