Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3234383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: oJj/VGjQsbzlGLICkPxd+H+V+74JdJsdYFCeiEz65Hg=
Subject key identifier: 6B:71:CC:6D:2C:5C:23:33:3B:49:5E:4F:27:3F:88:91:E8:ED:5B:41
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4F8EECBE6683A360D1A0ACD57D48E18E5A3BEE2C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:31 +0000
ROA not before: Mon 26 Sep 2022 09:55:31 +0000
ROA not after: Mon 25 Sep 2023 10:00:31 +0000
asID: 59282
IP address blocks: 2400:d680:248::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:8e:ec:be:66:83:a3:60:d1:a0:ac:d5:7d:48:e1:8e:5a:3b:ee:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:31 2022 GMT
Not After : Sep 25 10:00:31 2023 GMT
Subject: CN=6B71CC6D2C5C23333B495E4F273F8891E8ED5B41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0c:b7:fc:f0:c6:31:e0:98:69:7b:c6:95:05:
48:5f:7f:6b:44:d0:20:36:4e:70:eb:4d:bb:b3:41:
f2:dc:2b:0f:65:95:63:65:6d:e7:9b:5d:d9:4f:6a:
fc:d0:f3:f8:b4:7d:a8:00:89:38:07:f2:6c:01:89:
6f:fb:25:83:64:68:29:32:74:c3:ce:fd:8b:04:64:
f5:47:bf:55:47:74:ff:f5:85:28:82:7f:9e:99:e9:
3d:c7:76:00:58:e6:b0:7a:c3:4c:ff:07:eb:25:41:
b3:ea:b0:b3:19:81:0b:2c:7f:85:fd:8f:b6:95:50:
eb:c6:97:6c:b0:0c:d5:b6:8c:d6:f1:68:08:0e:17:
81:fb:fc:be:0e:d8:b9:c0:00:fb:0f:98:ec:94:10:
8e:cb:2e:bd:65:df:ec:6d:6f:05:77:57:92:48:76:
1c:33:d8:6a:bb:41:25:b3:6b:a6:c6:51:21:2f:e2:
f3:d3:b1:ab:7d:ca:32:d8:f4:6f:ae:b6:3c:c8:e5:
6e:7c:0a:c5:46:92:6c:11:76:7f:33:d9:81:7a:1f:
20:72:86:fd:fd:16:dc:1b:b6:d2:04:e7:76:b3:2c:
fb:ab:72:35:ef:85:df:42:4b:0d:10:65:13:cc:2e:
0a:f1:c0:cc:75:52:37:e2:d1:98:34:c3:1f:9b:0d:
5d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:71:CC:6D:2C:5C:23:33:3B:49:5E:4F:27:3F:88:91:E8:ED:5B:41
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:248::/48
Signature Algorithm: sha256WithRSAEncryption
58:11:1e:da:81:d7:69:81:ca:84:c4:d7:aa:8e:c4:ff:a6:82:
7f:52:69:61:3e:b7:9b:fe:c4:d1:dd:48:0e:af:83:4b:7f:5f:
7f:ed:09:36:b5:e7:aa:f8:b8:55:c8:b0:74:62:ef:b7:d7:eb:
6d:bd:c1:20:15:22:37:53:94:bd:d5:64:d7:be:48:26:c7:f1:
cf:9b:b2:0e:8f:f9:df:2d:4a:26:8e:39:70:d1:31:f4:63:7e:
53:49:fd:48:48:a2:e7:fa:28:6d:69:c9:9e:b1:e3:db:bb:c4:
e0:28:c7:f0:05:52:0b:a4:89:62:93:e7:c0:7a:8d:7f:40:b9:
a8:3d:28:08:c4:0b:53:8d:cb:75:86:4c:41:95:c5:73:cf:0a:
5b:7f:3e:1f:a7:79:4f:ca:ab:6a:bc:91:8f:ba:c6:8c:75:d2:
10:32:80:a3:b3:ba:38:04:44:34:0c:a2:db:67:53:7f:6f:3e:
39:d2:a1:d9:dc:f2:18:66:e1:31:06:2a:d9:96:87:ac:42:98:
90:7c:a2:4f:a4:02:a7:ed:5d:de:64:7c:9c:f4:2a:32:32:38:
a2:5e:2f:8c:74:16:7e:b4:c9:6f:b3:9c:fb:ba:65:be:67:f2:
82:fc:f8:be:b0:67:6b:c7:66:01:f5:6c:15:e1:db:13:d9:d4:
f3:5a:46:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org