Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3234323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: fJhqA1x+0MH9/6qaXY06ygQb+qAadoNxtuqNe6dsSX4=
Subject key identifier: B4:B9:CC:3E:5B:C3:22:BC:19:5D:C9:23:9B:51:3E:B1:AF:01:FF:C3
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0C1D876DA3E13DE37572C00D28B91116C583FC54
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:23 +0000
ROA not before: Mon 26 Sep 2022 09:55:23 +0000
ROA not after: Mon 25 Sep 2023 10:00:23 +0000
asID: 59282
IP address blocks: 2400:d680:242::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:1d:87:6d:a3:e1:3d:e3:75:72:c0:0d:28:b9:11:16:c5:83:fc:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:23 2022 GMT
Not After : Sep 25 10:00:23 2023 GMT
Subject: CN=B4B9CC3E5BC322BC195DC9239B513EB1AF01FFC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:e4:84:38:38:d1:51:73:dc:81:ff:88:23:8b:
5e:db:41:0e:01:ea:21:53:67:80:fd:ad:14:53:88:
4d:46:0b:9b:b6:e0:b0:ee:61:79:cf:79:87:cc:4d:
ea:13:f3:b2:a0:d8:07:7e:e7:2d:12:61:d5:b7:37:
a1:62:ca:40:08:8a:c0:9e:88:55:87:62:27:b1:6e:
f5:40:93:2b:b1:ef:e3:2c:be:b8:51:ca:df:c3:9d:
ce:28:f7:a7:b8:9d:18:e2:f7:0e:5a:fa:4e:91:cf:
d2:ef:2b:99:7e:64:c7:e4:8b:1d:e9:11:65:01:e1:
11:15:a6:01:e2:7d:5f:0b:d7:a4:ce:e6:25:de:cf:
90:1e:73:66:87:68:6a:5b:53:33:7e:cd:6b:d8:cd:
9c:52:c1:db:22:62:0a:5f:57:2d:d7:c7:64:36:80:
73:e5:32:c0:19:ff:72:a0:4c:58:fd:25:84:3f:82:
e7:d6:19:ca:05:bf:51:cc:6f:7c:14:9c:b5:24:7f:
6d:d9:81:eb:cb:7f:d2:df:df:b8:cd:93:1e:da:2a:
be:66:2e:68:b4:12:c5:65:d3:7b:03:4f:f8:b3:28:
9f:24:ba:84:17:be:73:2b:35:ed:8f:a0:cb:2e:b2:
53:7b:69:33:1d:0c:ab:e1:e8:b0:0f:8a:46:b0:68:
0b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B9:CC:3E:5B:C3:22:BC:19:5D:C9:23:9B:51:3E:B1:AF:01:FF:C3
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:242::/48
Signature Algorithm: sha256WithRSAEncryption
14:06:0e:7c:94:6f:52:23:4a:36:f7:33:7c:fa:ad:bb:55:1c:
e6:d6:bf:64:6d:6b:12:18:fe:85:6c:86:1f:86:bf:a6:5d:8c:
23:f1:07:6a:a6:dc:80:e1:76:74:7d:2e:44:be:5e:7b:88:cd:
87:07:67:db:2f:e0:e9:0f:55:0e:cc:6f:f0:37:e1:76:45:3b:
8b:1c:5b:67:30:30:6c:c8:6f:1b:b8:5f:8b:46:e0:9d:0b:4a:
91:3e:20:ed:34:3a:e7:a0:7f:bc:aa:5b:43:ab:da:13:96:68:
b8:43:e8:22:ee:4e:34:ee:38:c3:bd:5f:96:9e:d0:58:49:7f:
36:4d:09:51:d4:3b:b1:bd:68:6d:9f:bc:0e:cd:c5:04:3e:28:
0d:89:30:10:41:09:c7:6c:70:67:5b:70:77:b3:c1:35:0a:fd:
74:a4:06:2a:75:e7:a1:fc:cc:70:64:33:6d:6a:6e:71:95:f7:
4b:6d:8c:44:95:78:d1:85:1b:1a:9e:b7:a7:37:69:0d:44:13:
75:e8:96:5a:15:0f:7e:b1:9c:10:e7:f1:f9:72:ac:32:b3:39:
db:9b:ed:be:7f:eb:79:f4:5b:cd:f3:7f:8e:d6:57:77:a7:97:
59:d9:a4:14:f1:21:2d:7d:9a:89:8d:cb:62:98:e2:5e:e5:74:
70:5d:d6:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org