Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3239393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 8DUZqUzjGiNJGC1q/L/KWn2N8zIiKaVzf0N/Dg9I32E=
Subject key identifier: 2F:65:FC:07:D6:FE:83:BD:26:29:6B:8B:1F:FB:83:9F:75:6D:67:55
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 354AAD4C4D09F699B82A3000EBA1A52C83B17548
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:20 +0000
ROA not before: Mon 26 Sep 2022 12:55:20 +0000
ROA not after: Mon 25 Sep 2023 13:00:20 +0000
asID: 59282
IP address blocks: 2400:d680:299::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:4a:ad:4c:4d:09:f6:99:b8:2a:30:00:eb:a1:a5:2c:83:b1:75:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:20 2022 GMT
Not After : Sep 25 13:00:20 2023 GMT
Subject: CN=2F65FC07D6FE83BD26296B8B1FFB839F756D6755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4c:3b:1a:3e:90:53:d2:15:c6:94:b5:67:08:
24:ac:7a:a5:5b:54:73:12:1a:3f:2d:e9:96:51:5c:
17:ef:07:a2:f9:74:49:be:3d:47:a7:39:f5:3e:cb:
30:30:fe:f7:38:fa:05:1c:33:db:b1:71:39:84:26:
e3:f7:bd:da:fa:2d:fc:1d:5f:a4:f5:5d:61:39:0f:
ba:e7:f2:4c:78:97:9e:0f:9f:25:2f:3e:0b:7f:93:
ab:f2:dc:32:23:49:3c:c1:5d:c4:39:aa:a5:bd:42:
a2:17:b3:a7:ea:2a:43:82:c0:da:c8:38:76:b5:52:
23:2c:82:7b:64:cf:58:bd:a0:4c:25:e9:90:29:cb:
d4:26:79:1a:3a:ee:fb:25:dd:30:52:19:5d:59:2a:
a7:ee:38:88:db:92:b9:40:9d:46:c9:ee:0a:e2:cc:
3f:cd:da:fb:c7:0f:5b:12:1e:7e:08:8a:61:42:a4:
7b:5a:72:7f:6d:77:39:95:4d:68:0e:9d:63:07:1c:
db:01:35:d9:9d:1e:8b:ea:20:84:87:46:b6:8c:fd:
b5:da:c7:ee:15:e3:de:05:dd:60:6e:7b:a6:ab:98:
c3:ec:f1:6f:20:9a:e9:96:7c:fe:ed:fd:13:07:73:
5e:b7:fa:71:e3:7c:b8:5d:40:2f:6b:f8:22:a6:9b:
fb:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:65:FC:07:D6:FE:83:BD:26:29:6B:8B:1F:FB:83:9F:75:6D:67:55
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:299::/48
Signature Algorithm: sha256WithRSAEncryption
43:9c:b4:21:15:2f:23:55:5c:02:91:0d:a9:40:eb:fc:99:27:
31:2a:06:6d:d0:f1:73:f3:60:ed:b5:0e:12:5d:1b:be:c1:dc:
71:92:36:0a:68:44:4a:50:23:0e:13:43:67:ba:93:05:e4:ef:
e9:0a:0e:d3:5e:63:83:f1:04:d4:38:ea:16:77:f9:7b:aa:fe:
53:3e:69:2f:c5:97:35:22:d6:d8:c2:b6:d8:1c:43:db:09:59:
2f:22:33:9b:3b:3c:bb:fb:2f:05:c6:67:d8:20:83:bd:0b:15:
9f:67:71:2d:b2:5a:c2:a8:d1:b8:49:b5:f3:9c:b2:60:0c:d0:
1a:e0:e5:11:8c:81:a9:97:e4:3c:62:69:89:f1:59:35:d0:a8:
07:76:fa:78:cf:6a:97:f2:46:b6:9d:f8:71:f1:72:bc:b3:29:
79:43:c1:4e:41:b7:f5:00:e7:1c:49:85:e7:2c:4b:63:4d:5d:
91:99:2b:6e:11:50:57:73:9e:26:f3:9b:a3:92:3b:f9:79:0f:
d0:98:d7:65:b8:be:82:e9:4a:13:0f:1b:af:15:49:b6:0d:e9:
4a:a0:73:fc:f5:26:99:86:e3:52:34:32:dd:0e:a5:85:cb:27:
c1:64:7f:f8:df:46:a7:58:8e:3f:eb:9c:3d:ae:50:75:83:f8:
d1:46:f8:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org