Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3231323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: aoPMGXujkU1yQk+b6055hOq/r+T2xziM+JKGOm3oums=
Subject key identifier: A8:9D:4B:3D:CA:3A:01:91:85:D1:3C:8F:54:FE:6D:29:22:A4:33:F5
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 778CC0C09F72E0D40978047B07C9219846146422
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:03 +0000
ROA not before: Mon 26 Sep 2022 07:57:03 +0000
ROA not after: Mon 25 Sep 2023 08:02:03 +0000
asID: 59282
IP address blocks: 2400:d680:212::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:8c:c0:c0:9f:72:e0:d4:09:78:04:7b:07:c9:21:98:46:14:64:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:03 2022 GMT
Not After : Sep 25 08:02:03 2023 GMT
Subject: CN=A89D4B3DCA3A019185D13C8F54FE6D2922A433F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:14:d8:7b:64:db:ea:54:90:5b:46:7e:40:3d:
5a:88:95:4a:bf:07:aa:ee:bf:74:4c:5b:1d:ba:e5:
90:e4:07:14:67:52:fe:7e:d4:66:b7:b8:53:b5:72:
b3:a3:f9:2c:db:2b:d1:04:a4:7d:05:77:a2:c9:99:
90:85:4b:7e:12:fd:0f:37:90:7f:6d:b8:fc:a7:42:
09:4e:c8:ca:79:59:80:80:3c:bb:8d:a4:87:f3:8b:
ef:6d:c6:34:f8:ec:0a:14:ef:35:11:cb:0b:71:21:
46:d6:2a:31:b1:74:fe:bf:81:8d:83:ef:25:dc:2a:
16:f3:55:6e:d5:6a:30:78:77:32:de:00:c8:cb:bc:
31:37:10:c0:25:9f:2a:21:ce:27:e5:f1:50:cb:43:
34:9f:11:c3:f3:94:d2:bf:32:54:99:27:8f:b6:28:
eb:94:04:1c:47:d6:75:b9:21:7b:a5:e9:de:75:31:
d4:63:08:94:fb:48:ec:4c:8e:0c:46:83:ed:f8:93:
b7:81:0c:8c:fd:5a:25:08:e2:e2:75:34:08:58:7b:
58:f6:2b:99:b7:81:5f:01:61:92:94:b6:78:6f:13:
7d:61:7c:37:8c:e7:b8:31:1f:bd:33:7c:b9:03:02:
b8:49:71:e4:d2:8c:62:a5:d8:d9:7a:f0:c6:bc:6f:
7f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:9D:4B:3D:CA:3A:01:91:85:D1:3C:8F:54:FE:6D:29:22:A4:33:F5
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:212::/48
Signature Algorithm: sha256WithRSAEncryption
24:24:ae:d8:eb:55:6d:f3:42:cd:4b:a6:6e:23:06:26:63:f1:
ae:3c:67:fe:ca:c3:09:b5:b9:d0:7c:61:b0:f2:83:5e:4d:6d:
bf:e3:b8:2d:6d:2a:37:f7:39:80:6e:83:da:30:ea:8e:cd:6d:
ea:87:f7:94:d5:69:d5:5b:85:d4:6e:df:38:39:ee:71:b9:87:
d4:9c:b9:5b:44:1d:57:d0:41:95:fa:a8:bb:cf:4b:80:bd:f6:
0f:ea:69:e6:8c:c4:b4:9f:3f:ea:4b:d6:a6:c3:46:b6:03:f3:
3b:11:28:04:ce:99:a9:23:52:4e:75:ec:97:2a:df:dd:88:ea:
ec:cb:d5:5d:7c:07:66:06:4c:25:ef:74:dd:3f:50:32:90:8e:
53:17:22:a7:d9:c4:6a:24:44:91:72:b2:ab:97:d1:d3:85:30:
ec:8e:28:26:4c:58:2d:0d:9f:ae:90:34:4f:4f:63:8f:7b:90:
c6:64:ff:37:b9:c2:6e:6f:49:2c:52:7d:4c:cf:35:3a:9d:48:
29:b6:55:94:dc:78:3f:a6:bc:8b:95:4e:48:0a:85:b6:c1:d8:
c1:b1:a2:e8:3e:f8:fe:9e:fa:0b:ef:25:da:a3:88:f4:dd:b2:
64:13:48:71:1b:76:de:58:92:fa:68:80:f7:6b:fd:7f:e3:cc:
90:15:ab:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org