Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3238353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: nKEH+SNuseqCy0e6GbDLhYfJu6xmcQvApKkU8wQjsK0=
Subject key identifier: E2:1D:29:67:87:29:67:9C:AB:59:D2:58:35:C7:64:89:7D:6C:A2:D9
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0D8E2FEDFD401A2E5E886CB3CB0F829A3070144B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:05 +0000
ROA not before: Mon 26 Sep 2022 12:55:05 +0000
ROA not after: Mon 25 Sep 2023 13:00:05 +0000
asID: 59282
IP address blocks: 2400:d680:285::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:8e:2f:ed:fd:40:1a:2e:5e:88:6c:b3:cb:0f:82:9a:30:70:14:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:05 2022 GMT
Not After : Sep 25 13:00:05 2023 GMT
Subject: CN=E21D29678729679CAB59D25835C764897D6CA2D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:8d:79:a5:65:e5:09:21:80:22:22:e8:9e:76:
31:b2:cf:1f:a7:d6:2e:4b:4e:9a:b0:8c:73:4c:44:
2e:6b:86:24:0c:8d:5a:67:9c:19:b8:51:f5:3c:ff:
f6:5c:37:cd:03:93:09:e6:00:c2:a9:e5:20:a8:b2:
d8:dd:74:3e:7f:8b:e4:b1:10:f2:53:1c:a1:f7:31:
40:b3:5e:2e:e9:15:d1:d3:41:56:7c:8a:e5:cb:15:
5f:d0:3e:f9:44:15:2c:36:ab:07:8d:df:4a:b0:a6:
bc:27:f6:04:37:96:68:4d:b4:04:90:6f:db:60:92:
32:bc:21:37:03:26:52:4c:24:a8:73:fe:bd:e4:b7:
e0:bf:dd:b2:77:2b:f2:7e:44:f4:9d:0e:d1:2a:7f:
32:df:77:8f:00:7f:9a:7d:a6:1e:fb:3f:39:0e:4d:
ab:e1:27:cc:ff:9a:42:7b:a7:b2:a6:86:3b:a8:bf:
b0:fd:83:3b:f6:c8:9a:1a:92:ba:21:0d:cc:25:7f:
b7:a9:6a:d8:63:d4:84:6e:97:6b:c1:57:a5:ad:f4:
7f:06:e1:26:ab:a4:26:03:ef:4e:1d:67:66:18:0c:
d7:e3:1b:f7:a1:8e:26:2c:1e:f0:1a:e9:84:be:d9:
15:73:f5:94:af:37:d2:e7:48:55:f0:23:72:93:79:
ac:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:1D:29:67:87:29:67:9C:AB:59:D2:58:35:C7:64:89:7D:6C:A2:D9
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:285::/48
Signature Algorithm: sha256WithRSAEncryption
91:55:82:89:84:2e:dd:19:84:e5:e7:06:03:42:e8:a3:50:c1:
39:c4:97:92:70:64:91:dc:de:df:0d:1a:0d:a5:b0:d7:34:b7:
0f:c7:b1:62:c5:d2:b0:9e:36:aa:d6:c2:91:75:ba:8d:c7:ae:
a7:a5:ab:93:3c:c1:08:8d:5e:dd:2d:b5:cc:f5:14:fc:86:c5:
c9:ca:17:ec:bb:b9:6d:4c:1a:1a:85:cf:55:fc:d6:3d:d2:5b:
4f:97:9d:74:c8:90:fb:ae:e5:54:13:8d:36:5b:cd:27:56:ba:
5e:33:39:41:c9:38:47:d9:7f:56:6c:66:ab:82:1c:2f:f3:fe:
36:72:56:f3:67:6e:55:40:f3:62:f3:b6:ed:01:52:be:8b:2a:
a2:1d:6f:ec:b7:cb:24:c8:b8:71:c1:be:00:d7:4e:16:f9:4f:
48:a4:8a:47:6d:b2:2e:b5:e4:47:56:02:eb:da:bd:de:68:13:
b2:59:c5:56:9f:65:84:d4:f0:99:5b:d1:70:da:ef:ef:35:de:
0c:8e:84:59:5f:03:bf:f2:54:0d:70:d5:e5:a6:c6:80:ae:83:
c5:83:89:0a:d8:e4:0b:a6:f2:29:76:73:51:6a:ec:d4:5f:ef:
79:a7:1c:da:c9:d9:34:1b:48:85:66:77:20:15:d9:05:d2:dd:
bf:e7:fd:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org