Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3239313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: xh4hS5Srnb+sy/uF6zHHzEtwwVCP/QVXm2teYlg0g4M=
Subject key identifier: 35:99:71:2C:CC:A2:D4:FD:11:6B:6E:73:EE:AE:F9:D7:86:8A:BC:9C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 38A1962BBEF27944520BA8D4654E8E0C63B08911
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:19 +0000
ROA not before: Mon 26 Sep 2022 12:55:19 +0000
ROA not after: Mon 25 Sep 2023 13:00:19 +0000
asID: 59282
IP address blocks: 2400:d680:291::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:a1:96:2b:be:f2:79:44:52:0b:a8:d4:65:4e:8e:0c:63:b0:89:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:19 2022 GMT
Not After : Sep 25 13:00:19 2023 GMT
Subject: CN=3599712CCCA2D4FD116B6E73EEAEF9D7868ABC9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:20:3b:71:9f:11:4a:45:88:f8:d2:c9:7c:ab:
3f:9d:68:42:2e:0c:e2:4b:c0:ed:e6:3b:db:32:ad:
be:46:af:41:a2:c6:a0:5a:6f:58:fe:af:9a:17:60:
d3:fc:a4:b6:02:c6:92:2b:fb:ff:e4:c9:dc:c6:a9:
03:d5:f4:24:83:95:d5:93:5b:b2:e8:f5:ac:1a:b0:
84:2e:b5:6c:9a:b8:d4:1b:c0:83:ac:bc:c0:ca:ab:
18:fa:c3:6d:df:fb:94:d8:2a:b3:06:43:28:f1:20:
f5:7a:56:7b:7b:35:86:c2:80:77:fa:47:a7:1e:13:
09:8f:b6:93:a9:3d:3a:05:77:e8:ef:ab:3b:fc:5f:
0e:44:36:d3:0f:03:d5:bd:0c:2f:40:32:9c:c9:da:
5a:1a:eb:03:33:03:e8:d9:5e:1f:4b:0f:3a:2d:4c:
aa:7b:c7:f0:fe:21:59:82:51:27:35:7f:fe:9e:20:
ad:9b:bc:f9:13:08:bf:ba:3a:b8:8b:f2:14:74:07:
8e:7b:36:d1:f0:d3:36:d7:2c:45:aa:da:ba:48:83:
03:1b:67:e3:ae:d7:ee:5d:49:38:2b:4d:99:4e:a5:
e2:4b:c4:30:42:0d:31:92:30:a6:67:ed:2d:9d:fe:
6f:8e:21:8b:bc:12:7c:ea:20:c5:85:27:98:bc:5b:
7d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:99:71:2C:CC:A2:D4:FD:11:6B:6E:73:EE:AE:F9:D7:86:8A:BC:9C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:291::/48
Signature Algorithm: sha256WithRSAEncryption
7b:bc:47:54:5d:45:01:63:15:11:77:d6:08:ab:7d:c4:b8:91:
07:db:d1:f9:4c:ec:21:3a:eb:d9:5e:29:9e:ab:9f:80:51:6a:
e3:35:ea:34:ae:23:33:3d:99:57:e1:bc:82:ee:bf:74:38:ba:
5f:f8:ca:72:cd:04:bb:08:5a:57:3d:93:e5:f6:4f:03:c2:92:
d0:43:ce:e9:21:92:ec:f5:77:9c:bb:1f:0a:32:43:33:36:b6:
a5:1c:fc:a9:6e:82:fc:d6:4d:93:28:d1:34:79:04:d5:c9:44:
5b:16:ff:81:9f:d8:9e:66:11:b6:be:e0:9a:8e:06:03:7b:61:
8b:e7:0d:52:e5:e3:fc:7f:27:9e:95:46:bf:1c:bd:6f:99:bb:
06:5a:7e:7b:b5:4c:20:d2:fe:e5:91:d5:ce:56:86:81:b4:b3:
21:d5:98:fc:bc:2d:c2:7e:4d:78:84:76:09:42:67:af:1a:d1:
98:73:5e:f7:e2:e0:2b:5c:73:05:df:dc:0a:54:79:2c:2e:7c:
be:a0:55:b4:f1:44:7b:21:f4:a4:15:05:aa:0a:60:8b:88:04:
cc:9e:4d:41:33:a2:b1:26:cb:c1:cf:f3:14:55:ff:90:e1:9f:
fa:68:54:8a:26:2a:6a:6b:1e:c8:04:cb:b0:ed:0f:8a:f6:09:
82:8c:40:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org