Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3237303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: OHKqQNNLX9CVieg6/weIcee0w4TAk8bMj/V1Hx0e3qA=
Subject key identifier: 72:54:41:14:A9:6A:6F:52:36:22:04:8F:2F:6C:1C:29:6B:6E:E1:21
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1C3F5122F691819D1DF8DF5A8FC4A09D08336FB9
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:14 +0000
ROA not before: Mon 26 Sep 2022 12:55:14 +0000
ROA not after: Mon 25 Sep 2023 13:00:14 +0000
asID: 59282
IP address blocks: 2400:d680:270::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:3f:51:22:f6:91:81:9d:1d:f8:df:5a:8f:c4:a0:9d:08:33:6f:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:14 2022 GMT
Not After : Sep 25 13:00:14 2023 GMT
Subject: CN=72544114A96A6F523622048F2F6C1C296B6EE121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bb:e8:ec:09:b2:7e:68:e5:67:2f:52:e9:33:
7d:ff:d0:4f:4e:38:77:b6:46:d0:cf:77:f9:d4:84:
36:f8:0a:fb:59:8d:01:68:0f:27:46:72:91:fe:8f:
54:22:b7:29:d3:dc:f8:2d:30:64:79:93:b3:4d:3b:
ba:bb:09:cf:97:6a:91:d9:b1:25:51:32:00:11:05:
8e:31:87:fe:85:7d:39:5f:52:53:06:78:96:88:7c:
9b:a6:fb:c2:c2:ec:4e:48:75:c9:34:1f:b9:d6:c7:
68:f9:63:28:61:80:59:f2:74:04:3d:42:55:51:f3:
89:1e:3c:f8:53:16:6b:e7:36:24:a8:a6:3e:41:e1:
91:b7:ec:0e:73:94:10:88:e7:4b:73:3b:5f:22:46:
cd:73:42:ea:7f:50:a8:b4:a6:e7:d7:df:b7:79:50:
9c:80:97:82:26:11:2b:2d:18:3d:93:0c:50:e5:3c:
a8:50:33:57:4a:ad:13:37:e9:5d:ce:d3:c8:24:a0:
8c:21:cf:1e:9b:0d:bd:f9:98:80:11:20:e9:26:3a:
a1:0d:52:73:a5:a7:c2:80:36:45:27:18:1d:ef:0e:
f3:83:a4:90:e7:56:96:3e:64:e2:d4:f5:c9:f1:78:
3d:43:1d:e1:fe:36:65:e3:be:7a:ca:cc:f7:26:da:
27:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:54:41:14:A9:6A:6F:52:36:22:04:8F:2F:6C:1C:29:6B:6E:E1:21
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:270::/48
Signature Algorithm: sha256WithRSAEncryption
6e:d9:cb:ea:0e:f1:9f:66:89:f6:46:d1:e3:44:e6:55:ee:a0:
03:5b:e2:04:3a:38:bd:e9:f9:bf:b7:e3:52:19:35:55:27:c1:
7b:22:b0:5a:b6:d6:cb:28:0c:6a:17:c3:95:cd:8d:05:77:cb:
06:66:cc:f0:9c:d3:c2:78:43:01:45:85:85:a6:3f:9c:5b:02:
fc:fd:c5:18:36:32:54:26:b4:1e:ae:73:3f:1c:34:d2:e3:7d:
fd:95:bd:f0:f3:76:01:eb:63:3d:b5:9c:5d:c6:19:35:f8:cf:
d7:1c:60:04:e0:e9:55:8c:43:57:49:a5:75:b3:d6:d6:36:21:
d8:88:d6:a3:f9:2d:6c:a0:c5:a7:dd:a8:f8:40:3d:b7:75:eb:
5d:ac:cd:7b:07:30:52:1a:13:e7:52:6f:b9:dd:e0:53:4b:ee:
cd:9d:97:c0:3b:26:76:8d:08:b3:53:5c:c7:9d:cb:f1:9d:96:
fa:12:35:95:b6:cc:17:30:2c:63:3f:d8:71:b4:f1:d2:eb:0c:
87:71:45:8a:2d:a3:6d:0b:fb:a6:bd:d8:26:d6:91:17:36:da:
62:4d:f4:ec:e6:61:7a:b3:dd:32:d7:c1:64:7b:98:eb:0d:0e:
40:a1:db:aa:32:52:ec:ef:3d:cc:4f:cb:7e:a9:b1:d8:ae:9e:
fc:20:f1:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org