Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3263393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: +R1X0AvB8XHdqTJi5pNFIraROD7HKDHUd99sfU4bals=
Subject key identifier: E1:E2:FB:71:A2:70:EA:F4:DD:63:E9:9D:81:10:2F:7B:D6:DB:9B:46
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7C0C860F983AE11EF1C7189B73993D8A993DCAD8
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:07 +0000
ROA not before: Mon 26 Sep 2022 12:55:07 +0000
ROA not after: Mon 25 Sep 2023 13:00:07 +0000
asID: 59282
IP address blocks: 2400:d680:2c9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:0c:86:0f:98:3a:e1:1e:f1:c7:18:9b:73:99:3d:8a:99:3d:ca:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:07 2022 GMT
Not After : Sep 25 13:00:07 2023 GMT
Subject: CN=E1E2FB71A270EAF4DD63E99D81102F7BD6DB9B46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:00:96:4c:e5:f7:10:19:b3:38:fc:ef:81:1e:
c3:e8:73:43:23:b6:86:fb:1d:cd:f2:19:d4:a8:23:
2d:e2:a1:83:81:3b:d9:90:4c:ba:dc:7d:4e:7f:49:
1e:83:ca:ef:73:89:f3:6a:8a:16:d5:cb:ba:c1:b4:
b6:c2:42:a1:f2:6a:f7:ca:e7:67:df:ba:30:12:92:
22:32:02:40:b5:a7:b2:3f:d5:22:74:c2:76:d3:df:
76:7f:c2:18:31:0c:e3:81:66:3f:e3:c2:91:df:24:
62:cd:db:5a:5a:18:8c:a0:6d:db:36:bc:e3:31:e4:
0c:ce:d3:60:e0:07:80:e1:42:2c:7f:79:53:0c:b6:
64:0c:7d:ee:bd:f8:7c:f7:21:72:c8:4f:5e:36:14:
a4:5f:b3:fe:3b:42:49:9e:a0:7e:a6:37:e7:4c:d8:
90:e1:63:97:fb:b3:ff:a2:0e:da:89:60:06:87:19:
fe:66:37:9d:03:48:8f:f2:52:60:82:1c:aa:47:69:
78:bd:f4:15:b1:10:7e:40:32:d3:67:6c:76:bb:a8:
b2:4e:7e:f9:64:b5:c3:cd:11:9b:45:59:c3:36:db:
ac:b1:d5:79:1a:0c:51:b8:93:fe:ea:ad:4e:5d:27:
07:01:32:33:e5:b4:98:43:bb:cb:ca:f9:64:ea:f4:
6b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:E2:FB:71:A2:70:EA:F4:DD:63:E9:9D:81:10:2F:7B:D6:DB:9B:46
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2c9::/48
Signature Algorithm: sha256WithRSAEncryption
70:f8:77:70:ed:ba:15:0a:4d:09:8b:39:1f:8a:ac:d7:bd:69:
63:96:88:60:40:ef:9d:14:c3:8c:8e:78:50:d3:c9:69:a7:19:
52:ab:f1:e1:10:67:92:8f:90:3e:37:23:74:b2:7e:97:02:64:
50:54:f0:05:cb:b8:72:86:0a:18:a9:c8:bd:2b:87:f9:b2:0c:
61:fd:39:60:d8:71:9d:05:6d:c0:97:a6:6c:05:88:5e:14:f6:
a2:9f:5f:88:14:56:e8:ae:1c:e2:97:98:58:63:c9:b5:02:8b:
1c:bd:c6:06:92:08:40:14:8e:57:ff:6d:2d:d0:a9:10:b2:26:
c8:c1:68:15:2c:cc:e4:65:ef:f3:4b:54:21:56:b5:84:42:9a:
d4:38:10:0f:fa:7b:f0:80:e0:b3:3d:f5:60:9f:ed:4b:98:56:
38:36:e8:4c:7d:ab:98:fa:14:4e:9a:8a:ba:80:96:7c:88:08:
5b:d2:1e:cf:87:ce:3e:7d:e4:bd:10:d7:ad:7a:fd:00:ad:bf:
eb:e7:87:1a:f6:35:fb:b6:ad:08:33:44:5f:61:8a:02:b6:6f:
bd:5e:38:ab:d4:91:e1:b6:f5:c0:6d:60:40:77:00:25:70:96:
3b:0d:e3:cd:9d:a6:96:d0:22:eb:a4:85:77:b3:f9:e8:c3:58:
c3:de:67:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org