Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3239633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: mr8WscwQ6NjmkFvYJS4CCrlAvZeqfIgxwvWqdJVkfHY=
Subject key identifier: D5:EC:9E:BA:2C:C0:2B:46:AD:6C:9A:8C:AC:C6:39:83:BF:E5:62:AB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3337EF16E1F77A59D7FB6FCD247C9293E64DF443
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:09 +0000
ROA not before: Mon 26 Sep 2022 12:55:09 +0000
ROA not after: Mon 25 Sep 2023 13:00:09 +0000
asID: 59282
IP address blocks: 2400:d680:29c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:37:ef:16:e1:f7:7a:59:d7:fb:6f:cd:24:7c:92:93:e6:4d:f4:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:09 2022 GMT
Not After : Sep 25 13:00:09 2023 GMT
Subject: CN=D5EC9EBA2CC02B46AD6C9A8CACC63983BFE562AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:16:4d:0e:81:d4:06:3a:d2:bc:de:62:a8:10:
b3:31:cc:49:67:13:0a:45:e7:12:2e:0c:dc:f9:06:
83:1d:76:3a:6d:c3:69:14:dc:ba:18:f3:5a:e7:d6:
7a:1d:75:a8:b8:75:eb:df:14:78:6f:e1:b1:03:77:
8d:59:72:09:76:1f:cf:14:74:d8:f7:12:59:54:6c:
0c:73:5a:dc:4e:7c:52:63:9e:91:d7:0e:20:3a:c5:
3c:04:17:9b:74:2d:76:94:14:91:ea:2e:cd:ee:7a:
75:e3:de:0a:93:c6:e5:1c:60:88:87:36:03:c0:e0:
14:6e:30:d1:c4:83:7c:af:d2:e9:08:34:68:8b:d2:
56:31:58:e4:2c:67:cd:41:5a:ce:57:e8:a1:55:11:
18:c8:ca:18:e5:77:ba:81:28:ad:56:de:02:aa:61:
ac:a5:27:c6:85:1c:2d:35:98:c8:a8:a3:ac:02:cb:
aa:2d:00:53:01:18:52:6e:2e:64:32:fc:12:1b:4c:
3e:19:4c:06:f5:d7:7e:64:00:15:c6:b1:21:56:e2:
97:7c:2b:ab:8c:b7:cf:db:42:8a:33:c2:9a:dc:6a:
01:67:c7:d8:90:42:12:fc:b5:d3:2a:fa:f1:a5:79:
7b:47:52:a7:54:92:41:4b:0b:88:53:60:27:51:2f:
7c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:EC:9E:BA:2C:C0:2B:46:AD:6C:9A:8C:AC:C6:39:83:BF:E5:62:AB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:29c::/48
Signature Algorithm: sha256WithRSAEncryption
1c:d0:07:bd:46:94:88:4c:f2:f3:28:42:4d:15:35:a0:b6:c4:
d5:fd:c6:d6:b8:ad:34:0d:b8:0d:f6:c8:9a:c5:e9:e3:90:d6:
7d:cb:a9:f5:a2:59:7e:a7:a0:6a:a0:c9:64:8e:f8:bf:25:1c:
1b:0a:3f:9c:55:1e:34:2d:b0:2b:52:19:1a:29:2f:e8:5d:98:
e4:0d:a1:35:54:43:90:de:bf:7b:67:b2:d7:3e:af:8c:6d:9f:
9e:44:1e:c5:05:3d:85:2d:b8:c8:cb:e1:a8:4c:ed:6f:06:17:
32:3f:02:cc:e0:2c:c3:d1:36:8c:ad:4b:83:df:06:3c:fa:da:
60:c3:21:2d:d3:b8:53:ce:1b:92:78:ee:ba:de:ac:ef:79:49:
fd:71:61:ba:bb:6d:6c:7a:b6:04:37:47:cd:9f:91:12:88:2a:
bf:df:29:05:3d:8b:fe:07:be:ea:ca:c7:2a:ca:9f:cf:59:3b:
9b:08:aa:9f:95:c7:09:16:aa:22:b6:d0:1b:b8:b8:a9:6a:6d:
fc:4f:21:07:a1:f4:33:bf:7f:10:01:25:0a:f0:d8:8b:b5:60:
50:a7:b8:9f:21:8b:c4:ef:3b:50:b4:4b:15:eb:22:a0:3f:0d:
90:80:2b:a9:e0:53:eb:63:5e:d0:1b:1b:17:aa:bb:a0:5e:81:
ad:6c:61:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org