Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3261303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: qe8N/Ll70yc/YVH0E0XivjdhlTCHjbRet10E/sWk7Bs=
Subject key identifier: D0:C4:BF:9E:50:22:E3:B1:1A:F3:E3:C3:68:3B:1C:A8:29:B6:54:C4
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7B7AAA150DD162C947D816B4717AEFA455AC2EFC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:16 +0000
ROA not before: Mon 26 Sep 2022 12:55:16 +0000
ROA not after: Mon 25 Sep 2023 13:00:16 +0000
asID: 59282
IP address blocks: 2400:d680:2a0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:7a:aa:15:0d:d1:62:c9:47:d8:16:b4:71:7a:ef:a4:55:ac:2e:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:16 2022 GMT
Not After : Sep 25 13:00:16 2023 GMT
Subject: CN=D0C4BF9E5022E3B11AF3E3C3683B1CA829B654C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:9a:b6:36:1c:34:ec:f4:36:ba:6c:a5:28:0a:
5c:1d:5e:4a:74:ee:97:14:b8:02:85:8b:74:7e:ae:
6a:bb:1d:3a:cf:77:0d:7c:ef:33:bd:74:f4:e4:4d:
64:7f:7e:aa:b2:73:d8:8e:61:11:b5:ff:1f:00:e7:
60:28:48:e0:1d:f1:16:a8:19:38:4d:fe:3f:43:6c:
cd:b3:8c:c7:de:2e:ff:02:e1:e1:3e:07:d8:41:89:
d6:26:60:41:cf:9c:c3:60:10:51:e6:59:2e:10:73:
69:07:18:ca:32:ed:97:aa:3b:3c:77:fd:91:20:56:
b7:6a:35:7a:e2:7d:b5:ac:34:d2:2b:95:d6:88:ac:
51:9d:90:2a:7e:6d:d4:85:60:5f:fe:8a:c6:2f:6b:
63:d1:50:45:74:5b:d1:a7:8e:5d:93:c9:f7:ea:16:
cd:58:c8:41:cb:76:46:3a:da:68:d6:9c:b9:b0:1b:
88:da:cb:f7:92:b7:54:25:4a:ad:d2:d0:b7:c2:2d:
e2:ca:ed:f3:48:2d:7a:8b:4f:88:9b:8e:ed:3f:22:
54:00:f5:b5:8a:6b:03:ac:01:7b:b3:f0:e0:6a:d1:
1b:49:92:a1:25:49:91:92:9b:bd:0a:63:61:1d:f0:
41:15:2f:6a:37:da:5e:a7:63:77:ac:08:20:67:6f:
5d:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:C4:BF:9E:50:22:E3:B1:1A:F3:E3:C3:68:3B:1C:A8:29:B6:54:C4
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2a0::/48
Signature Algorithm: sha256WithRSAEncryption
8b:3f:99:a4:90:24:74:ee:98:9d:50:c2:9e:e1:ba:fb:98:e2:
48:97:d2:56:9f:8b:5d:6c:95:b9:09:8c:00:55:2b:1d:05:c2:
b8:b5:8a:ab:80:2d:46:8b:03:d5:38:7d:60:85:46:b6:dc:70:
4d:ba:e6:06:9f:e0:4b:60:61:0d:5c:96:f2:95:1f:9a:d1:77:
54:35:c2:57:7c:a6:50:fe:2c:d3:4d:ae:79:02:13:01:4c:56:
ad:8f:ec:7e:69:c1:65:fa:98:d1:d1:3c:49:98:30:4d:e1:5d:
a6:ce:fb:3b:8c:76:9b:a6:eb:20:e1:de:16:23:12:25:4e:07:
1f:03:49:41:a9:7b:cb:64:45:00:52:1c:d4:13:1a:ad:f0:db:
c1:31:d6:4c:6b:3f:5c:1e:40:e5:d5:76:97:a8:98:89:89:92:
a5:d2:c5:d3:ab:10:e1:5e:29:bd:19:03:05:6f:8e:a7:dc:74:
60:c0:32:d8:ae:7b:24:16:f3:c0:b3:20:34:59:8f:c6:4f:98:
0c:80:68:28:2d:c8:bd:7c:8f:e6:32:21:7c:e1:26:da:18:ba:
16:ee:bf:e7:f8:5d:1f:40:b9:1d:ae:eb:f5:66:59:a2:61:52:
78:55:62:6c:e1:43:53:3f:d4:8d:1d:d6:24:0f:55:a3:b4:1e:
9b:31:62:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org