Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3231383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: XfwFfk05YLgE0Rtg7aw/GlzyXZED9mhozpwxDldHDdM=
Subject key identifier: 4B:88:4F:DE:A5:B6:AB:62:F7:2A:4E:7F:E4:D1:98:0C:8A:A7:FA:A3
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 146E39CF86E3DF3F3CBA60A1B91B6FFEA1F95E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:38 +0000
ROA not before: Mon 26 Sep 2022 07:56:38 +0000
ROA not after: Mon 25 Sep 2023 08:01:38 +0000
asID: 59282
IP address blocks: 2400:d680:218::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:6e:39:cf:86:e3:df:3f:3c:ba:60:a1:b9:1b:6f:fe:a1:f9:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:38 2022 GMT
Not After : Sep 25 08:01:38 2023 GMT
Subject: CN=4B884FDEA5B6AB62F72A4E7FE4D1980C8AA7FAA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b5:64:a8:d2:bd:32:d0:68:2a:a5:95:32:1a:
17:b5:25:f9:e6:b7:96:f9:09:25:4f:ee:d4:4d:1c:
a0:25:27:37:dc:13:9c:bd:1c:96:98:ef:32:ac:ba:
8b:3b:f6:fe:dd:94:f4:e3:d7:73:b7:21:0d:43:10:
c4:b5:e0:0c:bc:d7:e7:3a:3b:3f:6f:d0:cd:6d:9a:
d3:6f:41:a3:0a:bc:bf:31:ff:2e:d8:ca:68:4c:7d:
cf:bd:a1:2e:0c:3d:54:bf:d8:63:d3:c9:7d:0d:17:
5b:59:2e:96:aa:22:36:a7:96:1a:2c:74:13:76:38:
67:40:46:ce:a5:01:d4:a0:1f:97:52:62:04:7b:cc:
50:dc:52:66:d7:e9:28:69:ad:aa:fd:d4:9c:05:66:
c5:79:fa:9c:0b:82:5f:85:a1:0a:c8:e0:77:83:b8:
88:9f:82:ca:91:25:5d:be:d8:74:63:8c:83:fd:1f:
3f:55:c3:ee:2a:8b:7a:53:ec:8b:c5:b9:23:a6:b7:
fe:cc:d4:84:7c:f2:19:78:00:0f:f3:00:c1:f2:7e:
aa:07:3f:90:be:3b:e8:58:d8:75:ac:12:b6:d9:9f:
ca:f0:d2:1f:ba:8e:26:58:87:24:5f:6e:3d:5a:1b:
d7:51:f8:0c:d4:0a:aa:90:2b:a9:cb:a5:cb:75:ca:
fd:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:88:4F:DE:A5:B6:AB:62:F7:2A:4E:7F:E4:D1:98:0C:8A:A7:FA:A3
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:218::/48
Signature Algorithm: sha256WithRSAEncryption
33:38:a9:51:71:c8:6a:93:02:e9:dc:30:28:f8:af:47:46:8e:
cb:69:10:8a:e7:9e:72:f6:22:99:76:de:a2:aa:cb:d9:58:a9:
f6:fc:0a:ae:12:d0:d4:c7:d8:74:69:92:20:4b:d9:71:0f:0d:
2c:40:db:79:5d:1c:b4:13:61:e8:62:e9:87:0a:8f:91:bf:52:
fe:9a:d0:f9:04:c4:2a:c4:4f:9d:e5:cd:96:e3:f2:62:f4:f5:
22:4d:76:52:df:6c:2c:34:1a:05:81:73:f0:95:7a:b1:b4:14:
ce:76:09:af:45:2f:82:14:c1:39:55:02:2e:d6:75:77:0b:22:
ea:94:f2:d5:78:97:7c:a4:f5:e3:ae:b4:c1:01:a1:b4:b9:6d:
ad:9e:e5:c0:02:4c:65:b5:10:d3:a1:13:76:27:11:f4:7e:f4:
86:a9:f7:24:21:18:30:26:40:24:30:0c:7c:a4:f8:50:52:4a:
ce:2f:99:41:2f:dd:42:e4:e7:74:60:dc:0f:30:a6:af:f2:54:
4a:43:ac:2f:6d:fd:fd:36:32:24:20:3d:7c:03:88:66:41:79:
80:e4:9e:91:42:d1:c3:fb:66:64:ed:d1:13:5d:80:58:b2:a1:
ae:28:0e:3a:a0:38:f6:c7:3a:22:86:c1:25:82:d7:9c:2c:09:
4a:25:72:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org