Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3238303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: wBjJJBhesjzzOt7Wc+paMg5ELRgwRizlFtXnJRoJPQU=
Subject key identifier: 57:35:1B:9A:7D:E1:D9:38:07:04:BA:63:63:8F:8A:28:7E:A8:76:A8
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7FD5F610DDBFE944454DB613457990AE9BFB9BEC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:12 +0000
ROA not before: Mon 26 Sep 2022 12:55:12 +0000
ROA not after: Mon 25 Sep 2023 13:00:12 +0000
asID: 59282
IP address blocks: 2400:d680:280::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:d5:f6:10:dd:bf:e9:44:45:4d:b6:13:45:79:90:ae:9b:fb:9b:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:12 2022 GMT
Not After : Sep 25 13:00:12 2023 GMT
Subject: CN=57351B9A7DE1D9380704BA63638F8A287EA876A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:64:d4:07:20:87:39:4f:1e:3e:ba:0b:80:a4:
18:dd:fb:bb:38:48:62:d2:37:07:1c:28:9b:a4:73:
e1:53:e0:ca:93:fc:cd:92:62:34:fe:1c:92:7b:33:
be:97:c0:f6:4a:9e:08:c5:8f:bc:4b:d1:67:43:a8:
71:82:9d:6b:e7:0f:a2:e0:fa:ad:2f:6e:83:0f:2b:
bb:e3:e1:d6:4c:9f:34:14:1e:73:06:db:e0:a0:f9:
c1:5e:09:c0:7d:d8:e2:56:aa:89:70:27:85:44:1d:
e9:df:26:4f:b6:70:59:b2:2a:aa:a5:4e:75:c1:81:
08:7f:39:7c:be:ba:0b:87:4c:35:53:08:e9:1f:6e:
5a:a3:c4:35:7e:11:90:a3:f8:a9:18:e5:89:de:d3:
38:be:21:ea:ca:8d:22:71:41:ed:c3:b9:6c:89:bc:
05:6f:20:2b:84:a0:31:96:0d:1e:bd:fb:84:16:c4:
1b:17:d8:b9:6a:c5:6b:5f:f7:75:01:31:cf:08:97:
2d:c8:11:c1:4b:ad:df:f7:54:88:ba:aa:7d:6b:77:
9e:f9:72:61:bd:b9:b7:9a:2b:64:0b:d0:55:b4:72:
8b:31:2f:03:aa:e0:62:ac:a5:f2:79:1e:9c:17:6d:
2f:3f:78:28:f0:ce:53:85:ee:dc:c3:15:f2:db:42:
d6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:35:1B:9A:7D:E1:D9:38:07:04:BA:63:63:8F:8A:28:7E:A8:76:A8
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:280::/48
Signature Algorithm: sha256WithRSAEncryption
97:e7:5a:62:4b:17:de:9b:a0:46:d8:11:e6:c4:0e:1c:93:63:
b6:72:ff:62:99:a5:41:eb:12:db:af:04:06:43:3d:e8:00:dd:
b0:14:ac:d5:97:98:1e:91:98:54:2f:18:ff:ae:63:9d:77:92:
6a:77:7b:35:bd:98:e9:79:ac:7c:37:2d:a0:9b:2e:7a:5c:33:
f5:aa:eb:bf:79:2b:44:22:5d:f6:60:ac:56:47:9c:d2:b7:bb:
e7:74:07:a5:74:ef:0a:f7:dd:91:23:b2:d7:f2:64:a2:e0:d6:
da:7c:0f:2b:83:82:c0:4f:f5:b4:34:b9:af:ff:e2:38:ea:ae:
73:c1:cb:d8:4f:0f:e1:be:15:55:b0:b6:df:db:34:3c:17:f0:
14:a5:99:05:33:d8:3e:a7:dc:36:c7:88:6b:c1:5d:90:e8:15:
35:29:ff:76:5a:c0:8a:d6:0f:7a:2f:af:08:b3:55:37:5b:ac:
05:62:32:da:e8:af:37:61:d2:fe:13:bf:cc:57:f7:59:5b:a1:
e8:3f:00:da:53:e5:a1:3d:e2:4b:44:54:04:57:af:54:03:63:
04:60:22:05:a6:69:9b:24:71:85:42:8b:65:50:6d:e0:db:b3:
e0:f5:3d:d6:72:f2:f1:8f:d1:aa:a3:00:0d:73:f6:5f:9f:9d:
f0:24:e6:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org