Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3233313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 2mp/LHSiqD/wWFzL9GSVjy5ARCMC1AQ/R/1+/y5o1Bw=
Subject key identifier: BE:78:B2:3C:EF:A6:6D:24:22:6C:90:F4:F2:5A:62:35:A5:A8:05:D3
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 375190FD1DB58A725DD9C2EAA2F1EB851C459A06
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:25 +0000
ROA not before: Mon 26 Sep 2022 07:56:25 +0000
ROA not after: Mon 25 Sep 2023 08:01:25 +0000
asID: 59282
IP address blocks: 2400:d680:231::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:51:90:fd:1d:b5:8a:72:5d:d9:c2:ea:a2:f1:eb:85:1c:45:9a:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:25 2022 GMT
Not After : Sep 25 08:01:25 2023 GMT
Subject: CN=BE78B23CEFA66D24226C90F4F25A6235A5A805D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a3:26:a0:f3:e3:6d:58:5f:20:dd:c5:0b:f2:
5d:b0:4a:9e:a6:30:49:e1:fc:ac:1b:5a:42:cb:bb:
fa:f0:15:67:f1:6a:4e:a3:80:7c:fd:5d:66:80:76:
75:ca:8b:e2:08:f5:fc:b8:58:94:17:4e:04:86:d7:
86:3f:e6:58:3e:54:40:ff:ad:0e:ad:e3:44:dc:21:
da:ee:aa:04:6a:71:79:1a:88:5f:1a:37:be:b1:70:
bf:ae:a9:63:25:25:45:75:c9:31:b4:f2:b3:a0:80:
67:0e:f4:66:96:d3:96:25:6d:7b:8b:c2:22:88:28:
e9:86:0a:4d:8a:fe:23:d7:e2:fb:49:72:4e:41:32:
95:07:90:3c:da:42:21:31:70:ae:72:de:9a:5f:57:
90:1d:86:4a:60:87:72:1d:39:35:3a:56:66:48:c2:
92:d1:9b:51:4e:a2:c0:e1:fa:ea:ce:41:7f:8c:3f:
95:15:43:ab:83:50:87:ae:c9:05:27:b1:ae:d4:9d:
b4:64:1d:22:ea:53:ef:3e:68:1f:55:e4:08:00:4a:
99:20:bb:c8:e6:c6:d0:e5:8d:29:87:c7:7e:5c:a9:
26:73:ef:19:5c:a3:58:a4:26:20:97:c3:e9:07:41:
0a:8c:63:83:72:60:9e:89:47:c6:1b:b4:06:67:4d:
5a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:78:B2:3C:EF:A6:6D:24:22:6C:90:F4:F2:5A:62:35:A5:A8:05:D3
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:231::/48
Signature Algorithm: sha256WithRSAEncryption
63:9d:38:99:d7:70:fc:cb:97:1a:4e:3d:30:d9:9c:6f:6b:6b:
2f:ae:ec:9b:4b:9e:e6:69:33:0c:4e:00:45:df:c2:09:67:bc:
66:56:1f:ce:85:92:77:23:98:7c:09:c9:ef:0c:7a:30:28:9f:
55:03:c9:d6:36:9a:7e:cb:4d:e2:95:de:dd:00:5c:dc:15:5e:
4a:1e:84:24:9f:52:2e:c1:37:ee:b2:ca:92:1b:54:53:72:aa:
14:8a:87:b7:7e:32:3b:44:c9:51:99:95:12:22:f8:70:47:3b:
25:ed:43:b1:15:72:17:16:ec:d3:e6:5a:3c:13:f3:e4:33:b0:
79:aa:6b:37:ae:a3:d0:7e:e3:8c:ca:c9:4d:08:b6:a4:34:36:
db:29:57:a6:37:0d:71:6d:27:e0:78:c8:5e:0f:7c:53:fa:25:
ad:ae:15:97:46:14:e1:72:e4:6b:d9:00:56:97:21:0d:24:e3:
9f:89:09:b9:f7:d1:d0:7e:b9:b2:8c:54:bf:49:36:52:39:7a:
90:79:ff:d4:48:66:e2:b9:ad:d2:4c:11:9a:a1:87:5c:ca:ee:
6a:9a:2d:c2:60:26:68:1b:67:23:3b:67:9b:3e:6b:4b:1e:92:
ca:02:0a:3c:08:19:94:25:33:1a:b7:52:8f:87:48:ce:ae:b3:
6d:59:d8:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org