Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3231333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: /cr2PyMAiyWJl6rSrbPSAyNUPG114j6LiZxNcvjIq1I=
Subject key identifier: B8:02:0F:91:87:78:D6:21:AA:8F:12:12:E4:1B:73:72:02:AD:E7:74
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 376B53D2BF070301BDD692182AE03DA2A4E8606E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:39 +0000
ROA not before: Mon 26 Sep 2022 07:56:39 +0000
ROA not after: Mon 25 Sep 2023 08:01:39 +0000
asID: 59282
IP address blocks: 2400:d680:213::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:6b:53:d2:bf:07:03:01:bd:d6:92:18:2a:e0:3d:a2:a4:e8:60:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:39 2022 GMT
Not After : Sep 25 08:01:39 2023 GMT
Subject: CN=B8020F918778D621AA8F1212E41B737202ADE774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:69:c7:44:44:9c:dc:5b:9b:69:d6:07:d2:04:
e5:b0:e0:4b:a3:9d:34:cc:26:4c:74:ae:2c:f9:ff:
5b:32:4e:aa:15:a6:09:26:54:3a:96:0b:d1:14:db:
7a:74:d3:14:01:48:aa:2c:b0:7f:3a:24:3e:0f:83:
58:d6:f8:24:af:38:52:af:c4:55:7f:7c:57:51:d6:
09:55:7a:82:73:ae:3d:45:b1:d9:d3:ff:5b:75:96:
fd:3b:88:84:cc:60:f0:d7:3d:49:0d:ef:d5:d0:27:
4b:81:13:bf:67:de:fb:a6:9e:e3:10:37:04:5a:3c:
3a:09:cb:8b:a9:06:d2:e6:74:f9:9e:f4:4a:11:35:
d5:5c:3b:fd:82:c2:5a:4d:fc:f1:26:5f:e6:b7:3a:
ad:42:44:6a:82:b1:cf:5b:b8:ae:53:77:00:7a:42:
43:64:95:c4:42:4d:f6:ae:62:5b:66:e0:8e:76:29:
16:fa:e2:cd:e0:cb:f5:6d:04:eb:3b:64:c8:3d:7a:
be:83:6e:16:6f:a7:40:b6:67:f2:20:64:0e:ce:e8:
01:e1:35:e6:8b:eb:b5:8e:14:4d:9b:62:39:19:b5:
f4:76:2d:75:7b:0e:fa:e7:a9:37:ef:3c:8a:f7:85:
a5:95:36:d9:ad:d6:f1:99:d0:c3:29:eb:77:5a:2b:
16:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:02:0F:91:87:78:D6:21:AA:8F:12:12:E4:1B:73:72:02:AD:E7:74
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:213::/48
Signature Algorithm: sha256WithRSAEncryption
42:90:79:b0:47:79:21:11:c4:54:12:d2:c4:6b:4b:5f:91:2a:
f9:bb:27:2f:89:40:ef:f9:27:53:9a:a0:d1:39:92:59:9b:6b:
f3:0f:6a:4f:9b:34:3f:fb:b9:e4:e5:2e:68:20:77:42:68:4d:
89:60:aa:a9:cc:28:b4:95:35:6f:32:ba:85:44:19:9b:91:45:
13:0f:53:bd:0a:25:bf:55:cc:27:2b:6a:dc:99:72:f9:6f:ee:
13:ed:aa:f4:eb:83:bc:fa:f6:84:44:1c:ef:91:44:f9:36:9c:
c2:e2:c2:ef:05:35:4c:79:74:ce:89:5a:0b:c5:41:22:3f:f5:
55:33:34:10:57:68:3b:bd:31:2a:51:fe:83:16:d1:d3:5a:3a:
76:04:09:a9:5a:92:cb:6f:3c:fb:c6:a0:15:4d:cc:b7:c9:0e:
c3:ee:f9:62:52:a6:5a:bb:d3:41:e5:e9:30:1e:55:d1:37:fd:
8a:e1:92:cb:3e:e4:28:30:09:1f:a1:eb:63:f7:06:53:b3:b5:
95:4b:47:cd:ef:81:af:6a:99:01:28:dc:0f:e0:e2:d9:1a:12:
92:b0:b5:d7:54:7a:18:77:2a:8d:ac:af:c9:8e:f0:9a:b0:ee:
8f:3b:5b:d8:93:4d:82:26:09:1c:de:95:26:5c:b3:a1:c1:eb:
1e:4e:3e:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org