Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3234623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: hGVUUTlTV3HZfIivzzTGzi2pXi+vEzCm1UEFuJGUcrQ=
Subject key identifier: 07:4E:D5:CE:72:4E:14:BA:7D:73:DD:7A:C3:E5:30:65:FD:9B:01:AD
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5097BD5FE06719652FD862F422EACDB1378362DB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:09 +0000
ROA not before: Mon 26 Sep 2022 09:55:09 +0000
ROA not after: Mon 25 Sep 2023 10:00:09 +0000
asID: 59282
IP address blocks: 2400:d680:24b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:97:bd:5f:e0:67:19:65:2f:d8:62:f4:22:ea:cd:b1:37:83:62:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:09 2022 GMT
Not After : Sep 25 10:00:09 2023 GMT
Subject: CN=074ED5CE724E14BA7D73DD7AC3E53065FD9B01AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:00:14:7c:30:22:02:ce:4c:bf:63:1b:90:3e:
01:a6:26:e4:45:9d:b9:86:3c:b1:58:34:01:17:48:
c3:09:48:96:d3:98:3c:c7:f4:07:4a:8c:75:6f:2d:
20:4d:ee:de:6f:3a:33:7b:94:16:e5:ff:d9:2e:3e:
a8:72:f3:ed:ed:f5:ab:20:8d:0d:1c:49:20:80:06:
01:13:a5:98:60:91:dd:87:ea:b0:06:fd:cb:8a:6d:
99:d2:57:29:71:d7:7e:43:a2:64:f3:f4:b1:9c:1e:
87:ad:9d:ff:09:24:8a:0e:dd:30:04:81:98:be:ba:
84:eb:1d:e2:fa:99:e9:04:d6:19:95:98:5e:a1:b2:
b3:be:c9:d6:aa:c8:0e:29:7e:48:4d:3f:dd:40:65:
3c:e7:c5:a4:1f:3b:d6:c4:1d:a3:b2:74:47:d6:fe:
7d:e7:07:a5:74:98:7a:91:e3:97:27:42:75:99:c5:
d8:ba:13:08:be:76:9f:6b:e0:f7:8a:99:67:27:b1:
d5:68:13:bc:08:1c:4e:e0:12:8b:d9:46:56:14:77:
4f:1b:30:7a:0e:af:a0:78:17:91:11:3b:c8:d2:10:
e2:9e:c8:fe:a2:02:5d:95:60:d6:41:98:72:bf:66:
2c:bc:da:c6:2e:77:ad:37:9a:33:aa:26:78:87:11:
ec:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:4E:D5:CE:72:4E:14:BA:7D:73:DD:7A:C3:E5:30:65:FD:9B:01:AD
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:24b::/48
Signature Algorithm: sha256WithRSAEncryption
60:31:e2:68:a8:4c:b6:73:62:9e:32:1e:54:72:8a:fe:e6:c3:
95:3e:14:92:7f:e2:8a:e2:f8:d8:db:8f:d7:b3:5c:6e:35:78:
fd:e8:06:c2:47:b4:c2:b7:c3:ba:fb:2b:6c:27:68:aa:22:9b:
0d:d1:31:60:7a:2e:74:ad:d7:c5:45:37:af:64:83:02:c7:96:
22:cd:1f:3f:72:a3:0e:57:76:3c:cf:66:10:b8:86:51:0c:e5:
79:c4:43:cc:35:84:5d:ce:aa:91:98:0e:39:f7:ee:5f:c6:6a:
aa:9a:98:17:0f:46:98:11:c6:51:d1:44:d8:2b:a6:04:af:00:
cf:6b:4b:58:b7:94:86:51:cc:e8:44:d4:dd:4a:6e:9a:e2:a0:
02:7e:0b:a5:27:9c:c8:49:51:ec:a5:88:3b:bf:1c:67:ea:87:
95:3d:0d:cb:34:ca:53:eb:c7:94:26:a8:ec:38:49:0f:3d:8a:
ae:06:4d:43:9b:49:93:f5:0f:3f:a3:82:e9:9a:69:3b:5b:2d:
3b:7e:a5:6a:bd:3a:3d:fe:cb:d2:07:44:b7:1a:96:8f:99:4b:
df:5a:29:44:5f:03:03:bd:6b:ec:33:22:5c:89:8c:92:44:70:
c4:34:99:a0:c0:06:60:89:69:41:26:5a:30:4b:92:f8:33:6d:
92:71:79:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org