Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3263353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: SQvIm/JduNzFrJYPz8toaKCRses5T368HKbTVrSsAP4=
Subject key identifier: 57:1A:42:F8:53:7E:E9:F3:AB:07:82:2C:3F:D6:40:D4:EB:C7:97:71
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 660F247CE077B9464C0F7AC6FCBEE7F2584BD9A1
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:13 +0000
ROA not before: Mon 26 Sep 2022 12:55:13 +0000
ROA not after: Mon 25 Sep 2023 13:00:13 +0000
asID: 59282
IP address blocks: 2400:d680:2c5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:0f:24:7c:e0:77:b9:46:4c:0f:7a:c6:fc:be:e7:f2:58:4b:d9:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:13 2022 GMT
Not After : Sep 25 13:00:13 2023 GMT
Subject: CN=571A42F8537EE9F3AB07822C3FD640D4EBC79771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c3:ef:8e:12:bb:38:0f:d5:1a:75:75:33:e0:
86:48:9a:1b:f8:ae:39:90:57:80:5c:59:86:ae:4e:
eb:f2:f5:27:8d:84:50:24:fc:b8:bd:65:59:d5:00:
1e:2c:a8:21:a4:8a:a4:42:c6:ea:97:3b:61:64:d9:
1e:ec:a1:74:fa:33:17:ba:0e:b6:aa:4c:80:6e:44:
ed:ba:27:6c:50:eb:c5:ae:39:e1:b5:c6:b6:da:3f:
e3:f3:d4:5d:76:ed:dc:05:fe:3c:27:b5:d1:46:e0:
33:c2:76:91:82:98:35:23:a2:34:9f:5b:b9:09:95:
b8:61:01:30:7a:94:7b:ac:f1:51:db:78:b7:4c:a1:
05:73:74:6b:4a:14:ca:c3:05:ab:e6:6a:c2:52:d2:
63:50:ce:4c:aa:15:01:0e:1b:c0:e4:21:5c:b3:64:
15:91:92:ff:79:f5:ba:f2:2c:d3:b1:d6:52:0e:eb:
a0:a0:79:02:de:d2:92:99:6b:4e:a3:51:97:3b:f5:
0e:66:80:9e:4c:31:05:25:09:4f:d9:77:0f:5b:08:
fe:21:c8:f1:25:92:4a:62:d8:7c:ba:e2:85:54:18:
12:13:bd:4c:17:d0:1a:ef:e1:47:67:12:40:5a:5e:
68:38:df:2e:c6:f3:21:a1:b3:60:f4:98:d1:41:fa:
a1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:1A:42:F8:53:7E:E9:F3:AB:07:82:2C:3F:D6:40:D4:EB:C7:97:71
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2c5::/48
Signature Algorithm: sha256WithRSAEncryption
30:57:38:bc:ea:42:60:77:52:03:ca:e8:ac:89:29:18:ad:fa:
ed:6b:8a:ba:6a:10:8d:a3:fd:4a:5e:ec:6f:11:4a:04:3b:96:
ef:ac:59:d2:39:fb:64:36:70:c7:97:01:5b:84:35:ab:ef:39:
ce:5f:60:9e:8a:af:6e:90:89:b4:a0:27:3b:d7:e9:68:9a:5c:
1a:bc:f9:d7:13:e0:7e:45:de:8d:83:00:ba:49:9c:90:7e:52:
ad:32:fc:9b:36:3f:f6:c5:8b:d9:74:af:7f:fe:99:2b:c8:6b:
fe:e7:3f:ba:c3:07:8a:12:fc:3e:a1:82:a6:3b:6f:55:ca:60:
9e:fe:0b:b1:1e:7d:fa:29:d4:ec:6d:c5:3d:53:59:c7:b3:25:
f3:d5:35:5f:ae:a3:5b:33:2b:e3:fe:68:8b:e1:7f:01:0e:e7:
bc:a9:e3:46:f3:1d:7a:81:5a:26:8d:3f:8c:42:52:2c:16:d9:
78:a9:18:7b:2b:de:90:92:95:c4:86:29:cd:a4:07:52:8c:88:
67:ab:26:e8:97:93:25:de:0e:c9:b9:c7:6f:21:e0:d9:24:fa:
2f:ca:53:dd:e7:ee:48:ec:fd:aa:90:83:26:09:bf:c6:b5:cc:
f6:2e:65:71:bb:e6:75:39:7c:16:1f:4f:5e:99:86:3e:43:0c:
ff:9b:e9:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org