Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3231613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: daMgzw2/1LBnXMqf/KjtxgWw2OwNaj98+rudesOOuw0=
Subject key identifier: AD:B9:29:29:69:8D:84:6B:E2:F6:8B:F9:B7:D5:67:46:C3:35:CA:7C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 21B28FE1441C6AE3923B23CDF9A088B651D1C126
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:57 +0000
ROA not before: Mon 26 Sep 2022 07:56:57 +0000
ROA not after: Mon 25 Sep 2023 08:01:57 +0000
asID: 59282
IP address blocks: 2400:d680:21a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:b2:8f:e1:44:1c:6a:e3:92:3b:23:cd:f9:a0:88:b6:51:d1:c1:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:57 2022 GMT
Not After : Sep 25 08:01:57 2023 GMT
Subject: CN=ADB92929698D846BE2F68BF9B7D56746C335CA7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cc:38:31:f5:3f:c2:87:8b:4b:05:d1:bf:28:
9c:0f:70:cd:20:83:31:1d:fe:34:3e:cf:e5:34:ea:
fa:7d:b1:e4:d8:4f:2d:47:da:fe:e0:fc:52:72:c6:
fc:d3:16:b6:76:2f:c5:84:21:17:66:87:0c:46:b0:
03:3a:38:81:a0:bb:21:bf:6c:73:5f:72:d3:34:99:
e0:23:10:60:8d:30:3c:ee:cd:6c:a4:e8:db:22:5f:
0e:7d:f6:e7:db:f6:8b:cd:53:96:8d:e1:16:ed:72:
46:76:ab:70:78:58:29:a7:e9:8d:bf:c2:04:ab:14:
5f:17:66:38:54:a9:72:76:9a:ae:33:43:38:3b:a1:
e2:40:90:e0:03:7f:f0:d1:af:fb:87:89:df:ea:84:
11:b4:4c:5e:db:b0:f1:09:4e:5b:81:2a:b2:84:5b:
af:01:3e:21:07:18:cd:09:66:d0:d5:6f:75:a9:b2:
a1:b5:50:f0:75:17:02:fb:b2:45:69:97:4f:ec:c5:
19:7a:7c:ab:5d:94:cd:f6:2c:11:b4:f9:f4:7c:84:
0b:f0:c0:51:f4:4b:f4:bd:60:e9:d4:ce:a0:27:db:
cc:e6:26:56:7b:aa:b1:1b:93:91:50:1b:29:aa:63:
2a:03:1e:e3:da:ac:07:a8:53:e2:05:a9:f7:b2:4f:
36:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:B9:29:29:69:8D:84:6B:E2:F6:8B:F9:B7:D5:67:46:C3:35:CA:7C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:21a::/48
Signature Algorithm: sha256WithRSAEncryption
6a:fd:a3:35:d5:f1:6c:e3:ca:35:c5:3e:e0:08:99:1b:95:d5:
e0:dd:a0:64:89:97:78:c8:20:26:7e:00:9e:f1:1e:02:7f:ad:
a5:6d:09:6a:3d:b9:79:13:07:44:9c:1a:19:d8:85:31:38:90:
1d:cd:03:e5:a9:1b:5e:f0:07:33:3e:79:11:93:82:d9:3b:09:
58:5f:84:8d:33:6a:11:b5:eb:a2:13:8d:fb:67:71:7b:25:39:
c1:6b:34:4b:46:aa:33:89:e4:9f:70:c5:54:e5:01:19:45:17:
8e:6c:8b:f7:5f:b0:95:db:78:8a:dc:0d:0d:03:11:35:7b:fb:
86:de:3f:9c:05:98:99:28:c9:05:fd:39:84:b0:03:0e:80:8b:
fe:82:b7:15:3b:3d:ce:82:7f:75:0f:5e:43:7b:3f:c1:64:67:
c0:e0:3e:95:b4:26:d0:80:18:db:07:f8:54:4a:92:ce:46:9f:
3a:4d:89:9d:de:22:28:23:a3:40:35:1e:c2:c0:91:f7:c4:b3:
17:d7:fe:80:ec:b4:ce:5f:d3:47:88:bd:6c:c7:c4:b2:74:e3:
bb:53:7c:94:8f:ba:e3:8c:87:c3:71:d4:df:57:8f:24:89:b7:
9a:6a:15:60:2b:31:75:21:74:72:15:e9:15:34:c2:63:35:c8:
54:e3:9c:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org