Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3239373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: usdYHWhEUEKIU/Fv5DL6e9AjDFO3sr8qqKuH5HTe9Rg=
Subject key identifier: 2D:1D:F6:0C:83:B4:E9:12:8B:55:FC:C1:70:83:A6:01:FE:F2:DA:D3
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 100EDC1D74AE8E0BC7FCB497DF0B90914E35F983
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:18 +0000
ROA not before: Mon 26 Sep 2022 12:55:18 +0000
ROA not after: Mon 25 Sep 2023 13:00:18 +0000
asID: 59282
IP address blocks: 2400:d680:297::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:0e:dc:1d:74:ae:8e:0b:c7:fc:b4:97:df:0b:90:91:4e:35:f9:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:18 2022 GMT
Not After : Sep 25 13:00:18 2023 GMT
Subject: CN=2D1DF60C83B4E9128B55FCC17083A601FEF2DAD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:3e:b9:4f:dd:97:45:fb:50:9c:45:08:b3:3f:
0c:3e:be:e1:93:4d:d0:ce:96:11:d7:e5:a1:6c:2f:
9f:7a:3c:1c:8e:9d:a3:5e:50:4a:fc:4a:c9:e9:79:
41:ee:28:39:15:63:ee:6a:90:89:c1:62:89:1e:73:
ce:ee:37:16:f0:4d:55:aa:6f:b9:27:fc:1f:d3:51:
0d:ad:bb:42:d1:f7:08:55:3b:d7:d0:b8:93:b0:44:
cc:07:03:4c:9e:94:dd:97:c7:60:3a:54:42:6a:eb:
b4:db:d8:b3:0d:59:43:41:41:5f:37:bb:d9:1f:fc:
37:34:21:15:ec:9e:d4:a4:57:07:ba:77:40:e6:29:
bf:52:e9:a9:db:4d:06:15:c5:75:30:4a:36:4f:5c:
6b:92:b1:c5:24:02:af:56:25:c1:f6:4a:e8:b7:b8:
9f:b5:26:53:3a:6a:4c:8f:b3:88:a8:b8:41:5e:66:
fa:07:d4:5e:bf:b6:30:6f:70:a4:31:9f:f5:c6:12:
ab:0c:fc:92:02:08:d4:3c:38:64:81:49:1e:44:aa:
6a:19:83:4c:99:74:3c:02:5e:91:06:77:38:a8:71:
21:9c:e3:8b:6b:05:40:21:81:2e:be:71:28:57:c9:
e5:89:52:58:bb:e0:cc:57:b0:40:c2:fa:90:65:94:
42:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:1D:F6:0C:83:B4:E9:12:8B:55:FC:C1:70:83:A6:01:FE:F2:DA:D3
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:297::/48
Signature Algorithm: sha256WithRSAEncryption
bf:98:36:80:59:26:dd:5f:10:5a:4a:47:6f:09:f4:ae:15:b5:
c9:68:27:52:b2:c0:8b:bb:51:09:c1:09:2b:3f:00:7c:26:e6:
bb:db:83:5c:8d:36:f8:e1:da:cd:79:ff:b7:41:ad:12:ef:50:
82:d6:bf:d5:d4:74:db:4c:e4:d7:f7:e4:41:3a:25:00:48:04:
37:e2:7c:7e:ae:48:29:a0:5d:ad:5e:a5:c9:f2:5f:8c:35:fd:
b8:85:d4:a8:34:17:a2:75:9c:ed:d3:3d:78:e7:43:c1:40:e8:
43:f1:9e:8b:68:55:37:d1:08:dd:de:fd:c2:e8:00:ca:1f:90:
db:b8:9a:78:c9:03:b1:f7:d8:41:e4:e9:31:a6:64:6b:24:31:
7f:02:d9:a8:6f:e4:01:ac:ea:e0:f2:ff:0a:17:aa:3d:81:d0:
61:68:d3:f3:1b:5d:fc:e5:d7:94:0b:1a:76:88:0d:08:a4:c0:
5e:ef:04:82:10:e4:c1:7e:fb:25:df:45:e0:1d:64:69:9c:7c:
8c:a1:fa:88:c7:40:d5:b1:a3:22:be:23:0a:cb:f0:9a:e0:23:
f1:79:18:14:dd:c3:76:a2:91:08:81:2b:69:62:ca:a0:b0:4a:
97:61:2c:fe:31:50:f1:08:9e:0a:0b:25:f7:82:11:2b:9d:52:
d7:cb:07:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org