Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3237373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: qd50VK5gam0THQaImTqRjB8l8sMnv6ZWCzTW9XAxWjc=
Subject key identifier: 8D:1D:4E:8B:3A:51:1F:74:5E:17:1A:2A:0A:1B:B2:DA:24:C6:BE:FE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7FAF65EC45C56C49E91D87CEA218050A4B64B2D0
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:02 +0000
ROA not before: Mon 26 Sep 2022 12:55:02 +0000
ROA not after: Mon 25 Sep 2023 13:00:02 +0000
asID: 59282
IP address blocks: 2400:d680:277::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:af:65:ec:45:c5:6c:49:e9:1d:87:ce:a2:18:05:0a:4b:64:b2:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:02 2022 GMT
Not After : Sep 25 13:00:02 2023 GMT
Subject: CN=8D1D4E8B3A511F745E171A2A0A1BB2DA24C6BEFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b9:12:49:72:05:25:a4:2c:9a:9d:c8:16:70:
5c:a1:a7:2d:44:09:50:89:f3:08:50:06:33:af:cc:
42:07:e1:e1:41:92:f2:62:b8:1b:36:a9:4f:fa:e1:
ef:c1:29:3b:1e:63:3a:8a:e1:00:1d:26:8a:61:02:
77:74:d6:61:7a:97:35:db:42:6e:99:aa:20:d8:0a:
23:85:80:68:4f:61:74:ff:64:be:be:51:d2:5f:c8:
4f:f7:19:96:c9:74:80:61:10:85:06:0b:be:ad:b2:
1b:a4:2b:64:be:1d:76:4f:88:20:e1:0c:78:a0:84:
7e:3f:e1:12:04:48:90:ea:0b:39:34:1b:4b:d1:d1:
10:90:13:9f:6d:72:e2:c5:09:c0:cd:ca:82:35:0e:
55:b3:66:5f:28:7b:80:cf:6a:e3:5d:6f:ae:26:84:
c1:7b:db:5c:64:aa:bc:45:db:5e:85:27:82:9b:04:
0d:16:96:ff:89:47:b3:c5:5b:e8:97:b4:4d:78:68:
51:47:e8:e1:12:15:a3:8e:f8:58:52:89:d3:fb:25:
4c:c9:5c:43:53:18:ea:19:f6:35:dc:c8:e9:39:36:
4b:57:a3:e5:95:31:0c:55:5c:98:fb:89:ff:f8:32:
75:a6:0c:d0:91:ce:0b:12:fe:b0:0a:fa:1f:23:6a:
83:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:1D:4E:8B:3A:51:1F:74:5E:17:1A:2A:0A:1B:B2:DA:24:C6:BE:FE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:277::/48
Signature Algorithm: sha256WithRSAEncryption
40:56:93:76:20:77:ab:83:80:41:87:b5:fb:9f:cc:96:39:f3:
94:bb:2d:b1:f8:40:61:97:0d:ab:b6:20:33:7f:9e:da:a7:e8:
23:34:ad:22:83:44:72:56:21:2b:1a:ce:2b:b7:59:bb:8f:c0:
07:a6:32:bb:a4:dc:5f:1a:94:46:dd:78:70:05:67:99:5a:f8:
f5:62:e3:ac:2c:96:47:ed:17:1f:7f:ea:64:6d:3d:92:1d:ef:
4e:be:e7:85:5e:c7:da:aa:69:14:c0:2d:b7:f9:65:1e:06:ba:
ab:c3:57:12:5d:69:e3:c3:c1:6a:be:9a:a6:f1:da:1d:70:3e:
fe:12:1c:87:f2:1c:f6:b9:4c:dd:e3:db:f1:89:02:b2:49:e4:
4b:81:a3:37:12:68:ac:7f:bb:87:c8:e0:b0:85:5e:3f:90:92:
b7:2a:cc:ad:a5:1a:18:ff:a4:03:99:c6:aa:b9:22:ac:75:54:
66:6b:1d:87:9b:05:af:96:09:f9:2b:71:5c:82:5c:a1:38:0e:
01:6f:bf:57:fe:ac:e9:4a:9f:0a:1b:f1:95:f5:d8:a1:e3:d5:
0c:3c:55:11:ed:62:df:c4:2a:82:51:71:35:54:dd:e0:05:83:
ed:c1:03:3d:9f:22:28:38:90:d5:47:24:36:5c:99:df:ee:1e:
c0:60:bd:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org