Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3234353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: CvVU6QUrRo6XCl9doUZYfjOFes35eS72BGZNhca7hqE=
Subject key identifier: 0A:55:27:8E:D9:80:7D:56:CA:D9:50:F6:75:4F:01:C6:02:01:CE:3F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5D51372691246389CC1595C4A752E93663BA0C43
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:16 +0000
ROA not before: Mon 26 Sep 2022 09:55:16 +0000
ROA not after: Mon 25 Sep 2023 10:00:16 +0000
asID: 59282
IP address blocks: 2400:d680:245::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:51:37:26:91:24:63:89:cc:15:95:c4:a7:52:e9:36:63:ba:0c:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:16 2022 GMT
Not After : Sep 25 10:00:16 2023 GMT
Subject: CN=0A55278ED9807D56CAD950F6754F01C60201CE3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e6:78:d0:ec:e9:c4:87:7b:7e:70:be:75:6c:
b1:34:e4:32:7a:ea:6b:df:66:17:b5:32:95:32:de:
87:f6:7a:20:98:9c:8e:4f:1d:8b:10:58:c5:12:90:
c4:68:91:9b:ea:ef:ec:90:b1:1b:31:00:ba:d8:fa:
f2:3b:e6:2a:45:33:b3:c1:ee:dc:de:9f:2c:c8:81:
d9:a6:d7:fa:04:bd:bb:21:81:cf:5f:9a:78:f4:a0:
03:ee:1d:46:fb:28:74:c9:6a:dc:c8:cd:d9:d6:58:
10:0b:3e:99:7e:78:ce:86:a8:9d:4a:1d:5b:3b:fa:
ff:55:71:fb:6d:f8:e3:d4:8e:0a:73:27:54:82:71:
b1:f2:5a:15:45:a6:5c:c1:54:88:07:a5:7f:2b:eb:
76:68:d3:b9:7f:bb:90:f8:60:11:d9:21:cd:12:b7:
e5:d1:32:33:db:31:d2:d0:05:a3:4e:7d:6e:d6:47:
61:99:98:34:4f:be:9b:71:8f:58:4d:0f:3b:17:a1:
3d:93:0f:c2:7c:2e:2c:84:64:f4:5e:41:e8:5f:f9:
db:b3:88:1a:71:d1:b1:39:05:89:55:50:d5:33:d4:
e5:0c:35:30:b5:8d:29:a1:8b:9a:76:84:4c:92:06:
ca:e9:46:6f:36:e5:af:6f:89:c9:fb:81:24:aa:bb:
b0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:55:27:8E:D9:80:7D:56:CA:D9:50:F6:75:4F:01:C6:02:01:CE:3F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:245::/48
Signature Algorithm: sha256WithRSAEncryption
a2:c8:93:fa:c7:f3:f5:29:60:6d:82:84:8d:58:c6:2e:66:9a:
0d:b2:20:a8:99:7e:44:29:99:ed:8b:7a:93:0b:9f:c5:2a:9b:
71:8c:a5:3a:87:7f:c7:bd:65:23:3b:0f:8a:49:29:ed:2c:37:
66:b7:c4:5a:c3:87:cc:57:c7:f7:cd:c4:8c:0a:e2:35:82:e2:
72:52:48:75:8b:c7:f3:0d:20:6e:b9:5b:bc:68:fc:ec:b3:dd:
d0:f7:22:d5:b0:70:77:6d:b1:67:af:75:d0:ac:60:0e:2f:67:
ce:59:55:2b:e5:89:e8:1b:cb:c8:d8:5a:33:2a:c7:f6:8f:5b:
03:4f:82:e7:a6:43:a6:9a:6e:38:c5:08:9f:49:c5:7f:21:d3:
7f:ff:86:7d:8f:28:f6:7c:d8:90:17:3f:14:d2:8d:e2:36:d5:
be:82:8c:85:e5:0f:5e:d9:6a:d8:f8:a4:f9:27:0b:b6:15:b7:
de:73:30:e4:0e:10:78:4e:0e:0b:ad:b9:8f:b5:e7:de:aa:41:
11:01:81:d0:87:86:b6:bf:32:43:e8:a5:ad:af:a3:7c:4e:97:
00:c6:3a:44:0a:75:ee:45:17:80:4e:df:96:4a:38:e2:ae:10:
f3:2e:63:5e:64:4a:74:2e:9c:96:a2:be:68:6e:c5:73:12:fe:
64:69:1b:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org