Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3232343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: SXvWBG1IV+9/RKFEKJrCSLAxG1dx9E+f3ZjIvDRVvIE=
Subject key identifier: DF:D8:99:A5:B7:E5:CB:08:E9:F5:40:5D:54:B7:D3:62:9D:31:C5:D9
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2BD029754546C92F0A0C4EFE451D067A3AC818FD
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:08 +0000
ROA not before: Mon 26 Sep 2022 07:57:08 +0000
ROA not after: Mon 25 Sep 2023 08:02:08 +0000
asID: 59282
IP address blocks: 2400:d680:224::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:d0:29:75:45:46:c9:2f:0a:0c:4e:fe:45:1d:06:7a:3a:c8:18:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:08 2022 GMT
Not After : Sep 25 08:02:08 2023 GMT
Subject: CN=DFD899A5B7E5CB08E9F5405D54B7D3629D31C5D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:fe:21:c3:5a:29:8a:f4:68:95:50:a9:de:9b:
4d:fb:42:34:d6:1a:2c:94:2c:19:86:b4:21:84:26:
97:e6:85:a6:93:ed:de:fa:55:3b:64:06:0a:50:e8:
94:84:a2:eb:2e:85:9c:c9:1f:9c:ce:6d:26:ad:90:
bf:6d:af:3c:b8:fd:78:7d:18:9f:0b:74:f3:20:9c:
b2:82:6b:14:c3:10:ae:cb:db:36:aa:0c:8c:09:b9:
84:7e:1a:75:6d:a7:bd:5b:07:1d:3c:7a:97:b0:4c:
51:4e:77:ab:99:a2:65:3b:de:a1:46:a7:e5:7f:bd:
0c:4e:34:3f:c9:95:39:da:09:9e:b5:5b:b7:fe:5a:
0e:8f:d4:1b:bd:09:21:71:9c:49:ad:24:12:bb:45:
64:b1:8b:25:95:e6:a9:9a:55:e9:c0:24:89:db:f7:
d4:2e:66:ca:f0:ae:1c:ec:dd:23:4e:5d:5c:7e:f2:
1d:17:e8:4d:e6:e7:38:18:e9:4e:82:57:c8:37:71:
71:46:6e:eb:ee:c7:41:e0:40:90:22:fa:49:0c:12:
4b:54:8b:22:c1:19:78:a6:88:bd:fd:da:28:2c:b7:
8b:12:75:4c:32:c7:79:7f:15:cc:4b:19:95:13:eb:
fc:b1:a1:d0:62:53:bc:43:d9:0e:c6:78:ff:24:0a:
54:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D8:99:A5:B7:E5:CB:08:E9:F5:40:5D:54:B7:D3:62:9D:31:C5:D9
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:224::/48
Signature Algorithm: sha256WithRSAEncryption
06:ba:e2:bf:a2:8b:20:b0:82:45:25:d3:58:de:d5:99:81:81:
b1:58:ed:ea:5c:e6:80:ef:01:e6:79:97:69:59:eb:d4:5f:2a:
c5:0c:be:21:49:ce:30:7f:ef:a7:17:8b:3c:f2:7b:e9:e7:58:
7c:79:97:be:75:03:33:91:da:68:79:55:5c:e6:d3:0b:5d:ed:
a5:ed:73:db:65:d1:f5:83:db:63:ad:fe:04:9d:1a:03:72:28:
e7:67:6f:f9:37:b4:73:09:da:19:fb:6e:0b:0e:f3:ea:98:c8:
00:1b:90:6a:aa:ce:57:e9:6f:6c:ec:84:66:0c:f3:20:ee:03:
3a:8c:a3:8f:01:a0:3f:2b:3e:31:40:b2:c2:17:84:aa:4c:1e:
7a:cb:ca:4f:65:0a:11:97:ae:0c:48:a1:b5:f7:62:41:e1:ee:
ac:0e:52:c2:06:22:5e:76:88:89:38:f8:8a:f2:a5:e7:7e:71:
32:0e:30:5f:6c:4b:ba:70:49:87:b6:42:51:32:f3:ea:a7:84:
71:21:69:50:e2:75:83:74:18:d2:b7:c2:8b:30:7a:59:f9:e5:
f6:2e:26:e3:d5:c1:76:8a:db:6e:46:32:0c:16:2f:66:04:0e:
78:b9:eb:a3:c1:60:a0:79:a5:3c:04:aa:9a:05:9f:02:33:71:
76:e7:1d:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org