Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3231663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: z0scBlTLuYlZUNt6DnmApeyhqNwdu5lP2fb18KQTrdY=
Subject key identifier: 68:A0:7B:4C:CE:C9:3D:3B:08:08:F7:F4:36:14:DD:25:0C:EE:7F:54
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 63C23568BB07BDF70883650C362325EA3EE8BEFD
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:08 +0000
ROA not before: Mon 26 Sep 2022 07:57:08 +0000
ROA not after: Mon 25 Sep 2023 08:02:08 +0000
asID: 59282
IP address blocks: 2400:d680:21f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:c2:35:68:bb:07:bd:f7:08:83:65:0c:36:23:25:ea:3e:e8:be:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:08 2022 GMT
Not After : Sep 25 08:02:08 2023 GMT
Subject: CN=68A07B4CCEC93D3B0808F7F43614DD250CEE7F54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:11:11:5f:9f:a5:e3:ea:60:12:bd:32:24:db:
77:cf:b2:69:3c:20:45:2b:3c:b8:e8:7f:12:e7:ae:
7b:31:01:8e:2d:a8:df:8b:19:1f:9a:13:cc:96:29:
d3:72:a7:1a:c5:0d:63:83:1f:d7:5e:ac:dd:f6:50:
f3:05:c6:84:8b:05:7f:8c:6b:8b:1f:71:84:d4:21:
df:7d:e9:52:fb:95:2b:ec:11:1e:59:42:fe:7f:02:
cf:e2:ef:40:0c:70:45:db:e7:3a:7c:ff:6e:00:52:
41:8f:e5:94:84:21:05:24:45:3c:20:ba:5d:51:36:
b0:10:c4:98:26:23:c6:c1:7d:8d:54:cb:7d:d3:b5:
dc:43:5f:78:33:74:22:80:8f:38:19:a5:e8:1d:2e:
97:a9:72:9c:e0:56:d8:89:92:d3:7f:89:2a:ba:57:
c1:f9:97:27:18:f5:0c:43:1e:ae:e2:09:69:02:76:
d3:d2:71:d2:43:21:6f:0c:4e:b2:5f:5a:cf:79:8c:
3f:21:bc:3f:15:50:24:6a:34:ea:b2:a5:94:7d:cf:
e2:59:89:a2:c1:f4:78:17:64:34:83:31:ed:0a:f0:
79:c3:11:5f:44:a3:6b:05:60:9f:2e:b1:37:ad:a5:
1c:19:24:ec:6e:cb:b7:29:b8:78:f9:a1:7c:d3:8f:
ec:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:A0:7B:4C:CE:C9:3D:3B:08:08:F7:F4:36:14:DD:25:0C:EE:7F:54
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:21f::/48
Signature Algorithm: sha256WithRSAEncryption
52:2c:12:6d:1a:7c:6b:41:07:d3:83:44:ab:6f:00:7f:ae:5f:
8c:85:14:5b:63:8c:26:2e:68:a1:2d:8b:81:3a:c6:95:5f:72:
3f:0f:62:6d:d6:b3:b7:97:73:ff:15:64:08:9c:e7:e5:68:38:
71:95:21:42:60:90:ae:2e:0e:9d:bf:47:b8:1c:a0:fd:75:50:
53:03:97:b4:9c:17:c5:83:94:05:88:1d:98:ea:f2:2a:e1:5e:
6e:bb:58:f4:4e:77:0f:65:f6:d4:9c:e0:eb:e0:36:3a:84:da:
5b:d7:cd:1d:25:0a:6e:be:28:ad:52:0c:8f:9e:f0:92:c9:2c:
71:ee:79:bf:af:1d:5b:f0:10:0f:3f:55:08:fb:82:93:67:a7:
e2:6e:6b:f0:9e:22:02:85:d4:57:fd:b6:29:75:85:f8:d0:c4:
7b:b4:f9:c9:7f:24:56:25:de:2b:b8:a1:7a:f2:84:95:ad:53:
31:2b:59:a6:5c:51:8f:a9:aa:a5:43:39:41:89:6f:68:c5:bc:
24:a7:e0:f1:39:5f:9d:b5:90:7f:8b:19:e4:f5:a3:c7:8a:a3:
bd:9f:30:69:73:56:3f:ec:bc:be:a5:32:95:bb:b9:37:4b:83:
e9:b7:c4:32:30:44:9c:da:70:88:6b:c8:c7:46:4b:21:f9:d6:
43:e7:d4:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org