Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3263333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 2n0odxdeI9kCrHKDW6B2cKGLX/3P/d//RM+DRfvoa0c=
Subject key identifier: 94:54:37:73:D4:AA:9C:68:DC:FC:C0:6C:2A:91:04:17:A8:28:F6:77
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0CE975648B6520B01DFF791AFCEFF733B996F81B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:14 +0000
ROA not before: Mon 26 Sep 2022 12:55:14 +0000
ROA not after: Mon 25 Sep 2023 13:00:14 +0000
asID: 59282
IP address blocks: 2400:d680:2c3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:e9:75:64:8b:65:20:b0:1d:ff:79:1a:fc:ef:f7:33:b9:96:f8:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:14 2022 GMT
Not After : Sep 25 13:00:14 2023 GMT
Subject: CN=94543773D4AA9C68DCFCC06C2A910417A828F677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5d:2e:9a:ad:a3:f9:25:d7:62:08:9a:15:b6:
32:38:85:45:a1:69:7b:37:fe:f3:76:86:05:1e:8e:
22:20:d2:65:d6:d4:18:c8:c7:c1:ba:13:bc:1e:4d:
5a:54:d3:0d:f0:ba:5d:c6:af:3b:69:5f:2b:27:cb:
ca:20:fa:0a:8f:f1:08:23:ac:9c:da:87:77:81:20:
4d:09:93:c1:16:d5:2f:d5:dc:cf:02:59:b9:dd:e2:
b3:19:29:97:17:9f:06:a9:54:25:b3:9d:d6:08:96:
07:be:aa:b6:cd:76:c2:0e:d3:85:c0:2c:97:2d:93:
39:c6:27:ca:ba:9a:2c:2d:b3:bb:5c:13:c3:34:f5:
0e:3d:ea:ae:b0:75:5e:a8:0a:f9:1a:84:30:3b:c6:
37:a6:0b:eb:53:6e:4c:a8:5b:da:e2:1a:f9:ba:d7:
87:01:ad:7a:cf:33:55:67:8b:8b:32:42:b1:e3:21:
82:b8:27:bc:6e:b6:de:1b:ac:a3:72:d5:f1:b6:13:
95:2e:3b:2f:82:e5:4e:81:cf:ec:c7:60:8f:05:78:
88:ea:4c:04:4e:11:60:5e:41:9b:a0:d8:b4:a6:eb:
45:1b:51:3c:34:72:c1:98:55:68:ff:13:7c:ac:c0:
7c:3a:49:90:ac:a2:bf:9f:1d:63:da:30:01:eb:8c:
50:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:54:37:73:D4:AA:9C:68:DC:FC:C0:6C:2A:91:04:17:A8:28:F6:77
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2c3::/48
Signature Algorithm: sha256WithRSAEncryption
4a:e4:32:f7:89:1a:c7:52:05:d8:2e:3b:5c:79:d8:b6:92:59:
74:2e:b6:18:82:eb:9a:72:c9:cc:fe:d2:29:b5:b5:27:76:e6:
9a:2c:ec:f2:3c:11:93:ae:83:42:61:cf:1e:da:1d:cb:12:a6:
d0:49:c4:b6:51:1e:9f:12:2e:58:70:05:4b:46:78:92:2c:94:
75:09:7f:f3:04:16:ba:d4:32:86:bd:e8:88:ff:e4:fe:1a:0d:
7a:35:ee:33:11:0a:08:ac:12:54:81:55:91:b5:dc:bb:5d:15:
55:9a:14:a6:f6:f2:0f:65:ef:60:a5:09:e4:7a:c0:fd:2e:a0:
9a:38:a3:af:22:cd:4e:f7:d0:96:6e:15:4e:d0:60:c5:c9:4c:
1c:f8:e5:f8:ae:c1:7e:76:a0:17:d6:27:55:80:93:76:63:67:
e2:02:81:fa:4d:f2:24:1e:04:65:15:84:a5:29:29:98:83:59:
0f:14:6a:6f:aa:12:a1:f6:4d:68:ff:d8:93:36:6f:80:35:72:
95:88:39:79:56:bf:e6:bd:b7:35:26:68:c8:b4:78:3a:1d:8d:
8f:8e:cc:cc:ef:60:e6:23:80:d7:dd:d2:86:b4:2f:84:73:8d:
af:92:74:fa:55:b5:5d:78:25:7e:c1:a8:ad:2f:5c:a9:fe:66:
8d:b9:4c:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org