Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3233633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: li+tpRHR6nRBwMyHzmbZttM5El1D6Q2c3ndCHYHd+J8=
Subject key identifier: 8D:66:72:AB:24:53:43:C2:DA:CC:49:7F:DA:42:F0:89:7F:40:28:49
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6A98DC36854DAA42D6A4EFFCC6CAAC0560A37574
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:07 +0000
ROA not before: Mon 26 Sep 2022 09:55:07 +0000
ROA not after: Mon 25 Sep 2023 10:00:07 +0000
asID: 59282
IP address blocks: 2400:d680:23c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:98:dc:36:85:4d:aa:42:d6:a4:ef:fc:c6:ca:ac:05:60:a3:75:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:07 2022 GMT
Not After : Sep 25 10:00:07 2023 GMT
Subject: CN=8D6672AB245343C2DACC497FDA42F0897F402849
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b0:0f:a6:95:41:9e:b0:be:95:db:d5:a2:9c:
29:84:8f:eb:da:4e:5d:68:bb:6d:f1:73:44:55:3b:
0d:fb:ad:e0:5c:a9:56:94:24:95:bf:0b:53:54:42:
1c:9d:c8:00:c1:1e:2b:34:b7:1f:96:bb:8a:22:59:
7c:1f:5b:34:a4:ab:e9:46:31:97:11:e6:13:ea:fb:
e1:f2:24:91:ef:d6:5f:29:17:7c:68:12:0d:7e:81:
32:9b:51:07:14:48:4e:33:23:cb:00:6a:63:a8:e1:
bd:1b:cd:7a:d2:ca:57:9c:d7:ce:4f:1b:25:bd:19:
5c:4f:12:28:fb:11:79:a6:36:3e:7c:99:16:cd:3a:
05:97:f5:e2:1b:b2:16:09:86:05:90:43:38:3a:ff:
59:5b:74:70:fb:e3:49:77:5f:be:f5:0c:65:a2:ad:
ad:23:e8:8d:ac:c2:10:db:64:f4:ee:f3:00:14:f2:
af:8f:2b:6d:26:25:f5:f1:0f:d5:07:91:25:64:ec:
fd:92:a0:14:03:dd:cf:37:25:a5:8f:48:a6:ed:c9:
bd:53:f2:1c:fd:a9:87:99:f8:60:f8:89:15:be:7f:
ad:fe:82:8b:f0:06:43:00:23:22:4c:af:82:74:23:
5b:a1:29:3b:b2:3d:c1:21:1f:97:1a:d2:9e:a3:41:
6f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:66:72:AB:24:53:43:C2:DA:CC:49:7F:DA:42:F0:89:7F:40:28:49
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:23c::/48
Signature Algorithm: sha256WithRSAEncryption
60:3e:9e:99:d6:6a:85:d7:54:4e:b1:16:db:71:5f:dd:19:62:
29:69:42:a8:1b:b3:9b:37:80:01:d2:a6:52:0d:a9:c5:0a:c7:
ab:86:a1:91:be:42:be:14:79:d6:09:9d:b0:c4:49:00:0f:f5:
12:15:e3:71:6f:55:f1:f9:b6:f0:b0:60:03:24:e5:5b:12:7e:
dd:af:a9:74:5a:cc:cf:36:3d:44:a1:44:17:ff:f5:42:20:ea:
91:57:4e:c7:4f:06:1c:65:7b:c4:2a:86:5e:18:9d:68:a3:60:
53:20:f8:54:e8:ac:13:0d:64:75:58:48:94:b5:bd:d1:05:0b:
50:74:40:79:f1:11:d5:74:95:fc:b5:f4:71:b5:f3:5d:64:3b:
b9:19:14:a8:6e:e0:18:02:1d:b3:00:b3:c6:d2:5d:f0:b8:b8:
2d:e9:f9:51:0e:e7:ad:cc:91:ce:ea:99:89:d0:ce:18:05:03:
6a:47:ba:0e:cc:92:9a:8f:90:7a:29:3a:00:24:e3:af:c7:0b:
b4:99:b6:30:6a:cd:d7:d8:9f:56:5b:a2:a3:ea:a6:a6:13:a0:
d0:4f:63:04:9a:e8:77:8b:d9:4f:0b:5d:10:54:31:d6:51:c1:
cb:69:0b:de:52:ab:84:28:35:a0:9a:12:35:b2:71:99:88:02:
81:2f:b4:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org