Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3234643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: wQ4OXwt33YM3ulIoFrpEM0mCRCfGGaHiPlQjb3pTFxk=
Subject key identifier: D6:B0:AD:83:05:E8:EC:B7:34:F0:5B:EA:09:0B:D7:B4:9C:96:72:61
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7ADC1678A7D5E10B20E3C453801AC967E6652A8F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:23 +0000
ROA not before: Mon 26 Sep 2022 09:55:23 +0000
ROA not after: Mon 25 Sep 2023 10:00:23 +0000
asID: 59282
IP address blocks: 2400:d680:24d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:dc:16:78:a7:d5:e1:0b:20:e3:c4:53:80:1a:c9:67:e6:65:2a:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:23 2022 GMT
Not After : Sep 25 10:00:23 2023 GMT
Subject: CN=D6B0AD8305E8ECB734F05BEA090BD7B49C967261
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:30:7b:35:46:c7:0a:8a:06:0b:5c:dd:f1:86:
6a:8c:5f:f3:e1:5e:7b:09:fa:83:5b:b4:c0:04:fa:
da:3a:c1:06:c6:65:bf:50:00:0e:9f:7c:40:8e:20:
82:56:64:4b:44:12:d2:5e:f8:a7:40:22:af:5a:7a:
a9:16:e6:d5:64:61:cd:e3:1a:67:19:f7:33:94:54:
be:79:f3:2d:e7:46:77:ce:bf:9f:5f:84:98:86:f8:
c1:66:d9:73:4f:9c:93:c2:be:03:24:ce:99:6c:ec:
c6:09:4e:f0:0d:51:8f:1c:51:b2:6d:bd:c7:f4:c7:
3f:9a:08:fa:99:c9:db:f0:f3:e8:83:5a:81:06:e8:
4e:75:d2:b7:1e:03:3f:76:0f:a1:76:dd:34:24:25:
ee:6a:40:89:bd:b3:31:51:d9:18:47:87:4b:7f:50:
d6:e3:23:4a:44:dd:42:b8:66:95:75:cc:73:b3:c8:
1a:c3:e2:96:b6:d3:20:9b:f1:48:a7:27:02:d5:06:
aa:58:f0:69:c9:5e:58:cc:5a:ab:01:35:7b:80:89:
88:33:c8:7a:7a:1b:cb:c8:c3:7e:e3:85:82:52:e7:
d2:79:e2:d4:b9:e5:87:d0:b4:12:ac:01:45:5f:6d:
b7:a8:35:6c:61:6b:a9:6e:90:04:1c:ce:8c:d1:9a:
56:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:B0:AD:83:05:E8:EC:B7:34:F0:5B:EA:09:0B:D7:B4:9C:96:72:61
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:24d::/48
Signature Algorithm: sha256WithRSAEncryption
39:f7:92:61:22:bf:13:da:6a:e3:c4:13:1e:eb:82:49:71:82:
c6:26:49:bb:7b:e0:67:79:21:af:a1:6b:3d:de:0f:81:c6:05:
ee:d6:4c:a3:d2:11:9b:a7:32:8f:53:57:6c:06:44:56:26:eb:
22:79:f9:27:ae:38:c0:f4:21:16:b6:ab:3e:10:bd:64:fa:fb:
44:38:1e:76:73:b1:80:76:31:47:81:40:57:3b:bc:b8:a4:f8:
9c:c2:c8:c1:bd:da:fe:dc:e7:bc:13:46:ce:e8:db:a6:92:cc:
83:a5:75:58:e4:aa:0a:2b:94:3e:49:10:65:82:fe:ed:86:48:
25:dc:84:fc:68:b3:ef:db:fe:7d:89:1c:15:9f:fa:fd:48:d8:
37:4d:08:98:bd:7f:1c:c4:12:5a:b1:15:eb:f4:66:9c:84:f1:
41:a4:d5:db:79:7c:c8:88:84:4e:5b:ca:4b:a1:43:7b:31:ce:
9e:4c:47:43:b9:ae:cf:2d:1f:c1:f5:c8:20:be:fc:37:31:b2:
1c:56:ff:8a:e4:97:ab:80:50:bc:6c:c7:a4:14:8b:0b:c0:1f:
14:1f:70:0f:2d:11:e0:d8:ed:e1:ca:d7:61:d3:fd:5e:0e:39:
30:c9:8a:5f:27:5e:51:4d:10:29:ca:dd:b2:c4:f3:e7:a9:a9:
63:b0:ea:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org