Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3234303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: IIrPim1eKbtrF9j4uLxSQOhxbQL4M8VyT7CNrDyBUE4=
Subject key identifier: 11:09:EF:63:37:E9:DA:CB:47:1A:3F:0C:26:2C:FE:A5:76:F3:AC:A9
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6F2FC3BC92A0AFA892D1993A8BA7A39769393EC0
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:19 +0000
ROA not before: Mon 26 Sep 2022 09:55:19 +0000
ROA not after: Mon 25 Sep 2023 10:00:19 +0000
asID: 59282
IP address blocks: 2400:d680:240::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:2f:c3:bc:92:a0:af:a8:92:d1:99:3a:8b:a7:a3:97:69:39:3e:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:19 2022 GMT
Not After : Sep 25 10:00:19 2023 GMT
Subject: CN=1109EF6337E9DACB471A3F0C262CFEA576F3ACA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:0f:6c:25:a8:be:71:2f:d2:1b:a5:61:55:5a:
d3:be:29:4d:7f:45:46:30:9c:44:19:7b:d0:0f:ca:
37:2c:2e:e0:9b:e2:46:b6:8e:58:30:09:eb:b3:d9:
41:8e:8b:a4:ca:13:c6:95:c6:a7:37:ad:f7:f5:ed:
f8:f6:e2:33:0b:3e:a2:10:7e:4b:14:e6:ec:51:b2:
9f:39:cf:9e:ca:7b:0e:82:de:9e:d3:42:ad:89:9c:
04:07:21:40:b8:c1:66:c7:e3:16:af:c3:a9:bf:b7:
d2:6e:0f:b0:2d:01:bd:96:cd:72:0b:45:0c:6e:23:
34:58:70:14:9f:34:24:a2:d5:07:22:92:0f:20:ba:
42:10:06:b9:a4:d9:23:07:03:a9:b3:4e:b4:d4:b2:
15:ed:42:66:a8:ae:c7:87:8e:c6:7e:f2:f0:a6:87:
8d:65:0b:5b:26:e8:3f:d2:57:55:d5:93:ee:50:13:
9f:aa:e2:43:2d:af:a5:97:ef:50:a8:1e:f1:fc:06:
c2:df:9b:c8:8f:76:e6:56:7f:7e:9c:24:f6:ab:5a:
6d:11:a5:65:26:a1:06:88:ef:8b:f2:0b:2e:61:ae:
12:2d:84:e4:3e:a2:61:fb:37:8f:7c:13:b4:f1:b8:
48:5f:0e:24:58:2c:af:e1:43:50:03:05:dc:f2:ec:
dd:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:09:EF:63:37:E9:DA:CB:47:1A:3F:0C:26:2C:FE:A5:76:F3:AC:A9
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:240::/48
Signature Algorithm: sha256WithRSAEncryption
75:f4:04:98:b4:80:32:9d:0c:81:dd:8d:4a:fe:54:2a:37:15:
d1:36:b4:77:2e:4c:e4:a4:66:62:49:de:43:48:34:43:3a:51:
fe:09:51:43:77:9d:97:82:43:83:4e:eb:a4:51:1c:89:f8:8c:
8e:79:5a:b8:a7:6e:4f:62:fa:ae:de:1b:86:9f:df:54:c1:76:
44:4c:a9:9e:c0:ff:4d:98:e3:a2:15:18:42:3e:c8:7d:e3:84:
40:97:4f:3a:0d:35:d9:f2:2f:2c:84:fd:8c:89:01:ad:c0:e1:
e0:a6:73:65:66:80:37:30:3d:20:3c:40:42:3e:2f:27:66:8b:
7d:72:43:47:cc:53:21:4e:01:0f:48:1b:2e:e4:e8:db:23:8a:
f7:9b:21:7e:e5:a8:3c:8f:fb:22:cd:26:67:ed:38:5a:9e:12:
64:da:87:15:47:66:4e:3d:c3:23:3a:77:c2:38:f6:ed:e5:67:
19:3a:5d:6e:79:e0:60:17:3b:47:98:e5:3b:2a:4b:9c:5e:4e:
91:75:5e:07:1c:ed:c0:40:37:72:86:a0:00:37:73:cf:ec:6f:
9b:b7:0d:a8:93:d8:ea:0d:c1:eb:26:9e:3c:03:a1:8b:c6:b7:
f7:5c:fc:f0:e9:be:b4:1e:c6:0b:b7:de:54:c1:ce:c5:fe:f0:
f3:46:65:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org