Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3236643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: NuOYolpDGtL4sGAt6sVGmQdzrjHpD59nEEGwNnZLhQE=
Subject key identifier: 36:26:7E:49:5D:78:D1:FD:64:1B:EE:66:DD:B7:63:F9:67:18:58:B0
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3E6B1F6148A86F93E6C21C99D2CA23EE91BBA894
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:03 +0000
ROA not before: Mon 26 Sep 2022 09:55:03 +0000
ROA not after: Mon 25 Sep 2023 10:00:03 +0000
asID: 59282
IP address blocks: 2400:d680:26d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:6b:1f:61:48:a8:6f:93:e6:c2:1c:99:d2:ca:23:ee:91:bb:a8:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:03 2022 GMT
Not After : Sep 25 10:00:03 2023 GMT
Subject: CN=36267E495D78D1FD641BEE66DDB763F9671858B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:67:f0:5b:9d:a7:c5:77:69:63:34:a7:8b:3d:
27:b5:87:82:2e:26:f3:03:c6:22:40:7a:32:7f:1d:
65:f8:88:2d:14:b5:ac:ad:83:c9:7a:23:74:00:92:
d4:fe:b6:52:92:0f:3b:4a:4b:f9:8a:4d:21:1a:3b:
06:3e:db:ff:4f:5e:e8:a8:b2:ef:10:6b:c0:46:18:
82:c8:66:43:c0:5e:97:00:04:a1:f9:6a:f0:f1:ac:
bb:ea:81:df:bd:3d:0a:80:06:e0:e2:19:b6:91:f7:
c3:b5:48:d5:8d:e7:55:8f:38:15:8a:14:7a:7e:7e:
4c:5c:5b:5d:c6:e9:5f:89:97:02:a9:f9:86:68:b6:
af:57:d1:ba:0c:e4:f7:6f:e7:87:5d:ac:18:66:5e:
b3:f4:cd:0c:85:b8:1b:c5:61:61:81:74:0e:3d:64:
f7:40:50:8c:01:36:66:8e:e5:54:d6:91:96:91:d4:
42:20:15:d4:18:42:59:22:da:91:7e:d2:d4:3e:1a:
fa:d0:f8:1d:cf:d5:fb:f9:78:c4:58:07:4b:ce:03:
7d:59:65:69:06:bd:9c:da:71:0e:4f:9c:5f:b3:75:
70:24:ad:32:eb:5e:69:9d:43:d4:dc:16:55:44:5c:
5b:a0:5f:9b:62:ab:4a:e3:cd:25:d5:27:5e:bd:e8:
21:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:26:7E:49:5D:78:D1:FD:64:1B:EE:66:DD:B7:63:F9:67:18:58:B0
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:26d::/48
Signature Algorithm: sha256WithRSAEncryption
66:01:e5:01:e4:9a:cd:2d:52:30:9d:a0:26:4c:6d:61:7b:97:
9f:97:63:7b:e9:54:9e:f6:cb:50:bb:ea:3f:1f:6b:90:06:73:
c5:58:d6:5f:60:d9:53:2c:b7:6c:db:5f:17:8f:d6:fa:d6:e3:
14:8c:9b:1d:fa:26:75:3a:e3:8e:2f:d1:b8:9c:81:66:2f:50:
fe:7f:dc:05:d9:61:34:3b:2e:bb:14:86:8e:23:53:63:62:29:
f7:b1:0b:02:19:65:6f:aa:45:37:30:8b:ea:80:77:29:79:b8:
39:1e:95:aa:5a:e0:bc:50:5a:63:1c:bd:45:f3:dc:7b:df:e5:
c4:10:88:26:a9:f0:f6:8b:cd:2d:0d:b6:5c:e0:0f:f9:50:44:
6e:29:8d:c8:c6:46:be:a3:e5:57:ea:0d:19:1b:84:01:c5:03:
fb:9c:85:12:64:b4:7c:e5:dd:5e:65:78:6f:e5:7c:0a:fc:32:
15:ef:48:20:78:46:2b:f8:03:85:85:3c:51:83:a2:3c:74:52:
ef:07:02:2b:7c:fa:94:89:de:01:af:c3:27:87:4e:ab:3d:31:
b5:e0:d8:22:61:ba:aa:03:a4:7e:a0:de:fd:5e:68:87:6b:e5:
b5:ce:68:6e:d1:83:18:f2:1e:22:0c:ef:60:47:8f:76:22:51:
a6:b4:c7:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org