Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3236343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: xBqzlSYnNmXZSFvstm63OVSAeGQrCLqvkvIoywMAajg=
Subject key identifier: A0:F3:46:8D:C5:B1:52:C0:EF:57:3B:9B:F1:19:73:14:CD:E6:D3:AD
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4FFE798946860E733C77472817CBE2E97CE5538F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:05 +0000
ROA not before: Mon 26 Sep 2022 09:55:05 +0000
ROA not after: Mon 25 Sep 2023 10:00:05 +0000
asID: 59282
IP address blocks: 2400:d680:264::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:fe:79:89:46:86:0e:73:3c:77:47:28:17:cb:e2:e9:7c:e5:53:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:05 2022 GMT
Not After : Sep 25 10:00:05 2023 GMT
Subject: CN=A0F3468DC5B152C0EF573B9BF1197314CDE6D3AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:13:eb:25:ca:d2:20:a3:6c:03:5d:80:2e:11:
58:8a:63:45:dc:3d:ba:40:3d:1c:81:22:18:70:93:
a0:ef:02:ce:e9:37:f5:db:a0:f0:d7:15:c1:25:c3:
34:d8:e8:93:04:a5:5c:bd:17:19:ae:5f:5b:1a:17:
e7:31:bf:d3:2a:43:ce:37:a8:fa:07:26:6a:68:ce:
f0:f8:ba:85:f1:e4:c3:bc:84:9a:74:7f:e5:52:f5:
41:20:68:9e:f9:01:b6:1e:d0:52:6b:51:6f:de:5b:
ad:7a:aa:e7:92:56:e0:75:19:4f:4b:ae:57:b5:77:
70:a9:97:2b:e0:38:b1:2e:6d:f4:fb:5c:70:51:0a:
8f:d8:40:c3:73:3a:80:00:84:8c:6a:c1:cf:d5:8e:
ed:fc:0a:e8:d5:b7:10:96:27:c6:a5:7f:b5:8b:57:
03:ba:3b:e9:b4:6a:45:6d:ea:e4:44:af:05:f5:c0:
ef:ff:c3:24:5d:1c:ed:28:ac:79:1b:ba:f0:ce:36:
e9:44:ce:d2:43:31:fc:c0:be:e0:22:2a:ec:c0:19:
06:9f:b9:3b:3c:a4:f9:1c:61:e4:7d:a9:fd:06:c8:
b8:a3:38:51:26:5a:0e:c4:fc:1c:75:08:8d:1f:7d:
bf:35:ba:06:7e:ee:e4:3c:50:52:8e:65:8e:13:4d:
fb:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:F3:46:8D:C5:B1:52:C0:EF:57:3B:9B:F1:19:73:14:CD:E6:D3:AD
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:264::/48
Signature Algorithm: sha256WithRSAEncryption
91:94:42:19:6c:a0:2c:c7:28:e3:11:0c:fd:3d:ff:2b:12:cb:
b9:21:9d:b0:16:f8:7d:6b:4a:54:be:64:48:80:9f:3d:cb:df:
72:4c:97:26:f7:04:ba:b5:b0:46:f0:0b:a4:16:c6:10:18:9b:
05:c9:02:d0:bb:4f:ce:c8:bf:bf:c3:be:bc:15:57:c7:2a:a7:
e1:2c:67:61:39:b2:fe:4e:5f:79:94:7a:3e:2b:ba:28:94:83:
2f:f8:b1:58:3b:dc:81:72:7f:cc:c7:96:6f:eb:06:93:a2:df:
51:ec:ec:35:a0:c6:c7:3e:5d:1b:43:fc:99:78:a9:84:c2:3b:
d9:f9:df:4d:f1:4d:a1:9d:cc:25:2c:df:f7:7d:a7:51:c4:46:
51:3c:a8:b9:e0:2d:19:5c:ac:d8:ce:f9:09:2c:9f:d9:c5:ad:
c3:9f:3b:76:73:d0:e5:ca:aa:5e:f9:65:3a:12:d9:65:58:5d:
cf:df:94:b7:30:ec:1e:49:6d:de:d8:1b:e4:1f:83:4a:f1:a2:
a1:82:e2:ce:28:ae:ab:15:7b:67:40:6f:cd:70:71:28:39:c2:
2b:38:31:2e:db:51:be:29:4a:d0:fa:aa:7b:6e:c5:5e:f5:81:
3a:55:ca:24:2a:bb:98:81:e6:4b:5d:57:35:5a:c5:39:0b:b2:
f4:db:f6:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org