Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a32383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 9AxDzbOEtDoX428udsu5+QCvnTcP+9GQDWQVIcHskWA=
Subject key identifier: 4F:C3:94:1E:A5:8E:9A:8B:65:1E:E3:60:78:02:68:47:1C:F8:D3:54
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5B242CCF670A9C9805ECEEE65591A2EBA0B0C517
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 15:00:00 +0000
ROA not before: Mon 26 Sep 2022 14:55:00 +0000
ROA not after: Mon 25 Sep 2023 15:00:00 +0000
asID: 59282
IP address blocks: 2400:d680:28::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:24:2c:cf:67:0a:9c:98:05:ec:ee:e6:55:91:a2:eb:a0:b0:c5:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 14:55:00 2022 GMT
Not After : Sep 25 15:00:00 2023 GMT
Subject: CN=4FC3941EA58E9A8B651EE360780268471CF8D354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e6:1e:56:da:d2:0f:bf:8d:ce:7a:bd:bb:7f:
70:28:d6:53:9d:f5:08:f5:c9:0c:05:24:76:07:c1:
04:b4:af:f9:b6:e5:6f:d6:a2:5f:18:09:aa:90:91:
f8:7c:57:dc:0b:58:1e:fa:0a:52:45:30:98:78:19:
68:75:b2:91:31:95:4a:4c:e2:0a:64:72:34:8d:b5:
ae:30:61:0b:89:e8:0c:2b:ab:2d:c3:7e:5b:f1:c5:
12:e9:2a:cf:4d:3b:dc:bb:88:d4:cc:bf:a8:bd:ae:
0d:43:fa:49:13:44:ba:64:ed:ac:76:8e:f7:1c:4c:
74:3d:19:7b:05:1e:bc:aa:2f:cc:e7:83:3b:30:e3:
09:6c:72:5d:76:00:75:c2:a1:7e:29:08:a0:14:3f:
54:7b:db:e1:0b:df:df:ce:1d:f0:95:ed:17:18:c2:
76:a8:84:9a:e2:3a:ad:ae:9d:a9:8a:99:51:50:68:
e2:2f:7e:38:cf:2e:4c:1c:c7:7c:b0:7c:34:5c:2b:
72:19:27:d5:35:0c:9c:17:d1:b0:56:9f:20:cb:b5:
16:70:c7:f8:cd:8d:d6:c6:2b:77:8d:0c:ad:03:8f:
40:14:ac:ff:63:a4:5c:f9:71:84:f6:e1:1e:ef:49:
a1:4a:b5:f4:d8:ec:54:a8:ed:d8:56:52:f3:9f:32:
50:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:C3:94:1E:A5:8E:9A:8B:65:1E:E3:60:78:02:68:47:1C:F8:D3:54
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:28::/48
Signature Algorithm: sha256WithRSAEncryption
74:9f:a2:06:7c:52:4e:08:0b:89:3a:d2:7c:82:dd:41:5e:4f:
51:04:42:81:3e:76:d8:74:e8:2f:56:7a:2f:db:71:20:d2:69:
22:02:8b:c4:1c:63:a3:e4:a6:fd:f2:36:06:97:6b:48:c6:a0:
5a:35:ee:6c:bf:1f:fe:e1:35:09:96:62:3a:dc:53:60:be:a3:
d5:78:65:b4:b9:3d:62:b0:2d:c6:bf:a3:29:71:86:4d:ae:89:
1c:ca:b4:6d:12:ea:b0:7f:2b:e7:2a:3a:9d:87:7c:52:45:50:
14:25:b7:8b:7d:a8:59:3b:ec:f8:55:70:2d:c1:f4:13:17:1e:
d4:e3:b6:5b:1e:06:57:eb:59:9c:9c:99:18:b1:49:43:da:19:
b7:d8:c2:08:45:f7:07:0a:dc:9e:6b:95:46:4d:e4:19:b0:ce:
1b:a0:56:65:5b:80:d8:a1:cc:1a:2b:a2:d7:cd:6e:3a:af:11:
b0:5f:dd:33:36:d2:a0:21:96:86:d8:6d:47:37:2e:a1:48:8f:
3c:85:e1:1f:f0:29:42:36:9b:19:e8:3f:20:40:e6:9d:9a:0e:
aa:7a:2d:81:72:f4:53:d9:0a:2f:43:ea:9f:be:f2:f3:91:39:
cb:46:d5:bc:74:ad:38:3b:3f:9c:f0:9e:7c:73:79:7e:f0:80:
5e:b5:48:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org