Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3232313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: v+jPC8d5bv+DuinJs4RWr/zjPQ8CrOvisFPzlfFux4I=
Subject key identifier: D3:5E:14:04:80:32:F8:22:43:3D:AB:C7:BA:0D:A4:23:D3:24:FF:2B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0DC5C2F288A660F2765B22FB44929A0AC26ADBC5
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:09 +0000
ROA not before: Mon 26 Sep 2022 07:57:09 +0000
ROA not after: Mon 25 Sep 2023 08:02:09 +0000
asID: 59282
IP address blocks: 2400:d680:221::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:c5:c2:f2:88:a6:60:f2:76:5b:22:fb:44:92:9a:0a:c2:6a:db:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:09 2022 GMT
Not After : Sep 25 08:02:09 2023 GMT
Subject: CN=D35E14048032F822433DABC7BA0DA423D324FF2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:35:b3:43:12:20:6c:13:9d:89:b7:06:30:2f:
b4:78:1b:24:e6:2b:ef:55:cf:27:0f:23:38:c7:7e:
dd:38:37:06:ce:5d:0a:a9:b8:c8:63:59:1b:d3:44:
79:1b:c4:c1:9d:55:4a:d6:aa:f8:d3:05:63:b1:0d:
0a:f2:95:8f:93:e5:4f:29:35:44:20:9d:e8:fc:cf:
ff:20:1f:8d:77:18:37:92:4d:f8:10:3b:02:8e:bd:
32:45:0e:81:61:55:fd:e6:ec:de:48:ca:a7:49:7d:
11:4b:fd:50:41:37:ea:a8:1e:3d:98:14:1b:c3:80:
54:56:93:86:73:28:f7:17:4d:b6:f2:e2:ba:d6:7b:
84:6e:f3:20:ce:f2:f0:1c:ae:d7:4d:6a:09:1a:ce:
b0:fe:38:69:bc:bf:a9:77:ea:48:b2:47:f4:d7:67:
57:34:bd:76:05:7b:d0:cd:1a:f6:9e:ec:1d:59:87:
f4:df:72:e0:52:66:40:61:39:70:ed:dc:3f:06:8a:
99:5c:69:4a:b9:fa:81:78:86:88:a1:10:1e:1b:e2:
10:fd:28:80:bc:cd:a1:4f:ee:7c:35:51:92:39:49:
28:c5:67:80:d6:df:d6:65:35:2f:0f:4d:97:88:09:
66:c8:2b:6f:cb:24:e3:17:56:51:00:69:3f:dd:bc:
7a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:5E:14:04:80:32:F8:22:43:3D:AB:C7:BA:0D:A4:23:D3:24:FF:2B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:221::/48
Signature Algorithm: sha256WithRSAEncryption
3e:f9:84:69:e7:7c:62:56:e6:83:b8:c3:ed:98:15:cf:21:78:
c0:fe:4a:58:6d:f6:98:e5:b1:e1:54:09:45:00:da:09:45:51:
fe:f1:d0:b8:d7:d7:0c:7a:a3:d2:34:9c:f3:33:68:2d:80:0f:
9b:bb:07:00:32:d6:cc:ea:2b:80:70:dd:d2:2b:4f:21:69:a6:
56:d9:11:7c:99:1a:19:61:3e:dc:86:4e:d8:83:cf:5d:ed:f2:
46:b6:58:b0:f0:29:c0:71:c1:c4:71:c9:aa:78:ea:c0:d4:e7:
8c:c3:20:25:39:2d:fb:71:5c:59:e1:1c:56:74:f6:f3:81:0e:
0d:37:cc:98:46:1d:7f:56:9d:2c:1c:af:af:57:f7:9d:33:cc:
8f:41:6e:bf:a4:94:44:23:f8:09:45:6a:ce:9e:34:15:ff:1b:
8e:9b:11:16:54:7d:fe:98:a5:9d:95:dd:64:d3:13:6c:65:c9:
3a:56:09:a3:7a:35:ff:4f:b5:26:e3:cd:a1:91:02:fa:f2:d2:
a7:5e:70:16:c9:9e:2b:a0:4c:95:c3:a9:7d:21:42:cc:cf:f1:
f9:20:dc:5d:17:f9:2e:e1:41:a9:ba:9f:db:b1:18:37:7f:87:
02:51:32:f3:08:f7:4b:a6:50:d2:4c:6e:a4:45:ab:09:65:f3:
2e:0d:af:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org