Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3264633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Gykh2kM89A/HuXOawYEhQ1UMmhwfmnZPHGSMsoCqcX8=
Subject key identifier: B3:F1:17:44:4D:7A:4A:D3:BA:F6:8E:8E:5E:CF:A7:97:B6:81:36:E6
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 289E11D810F1911EFA73E0B882EEF913E912E920
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:19 +0000
ROA not before: Mon 26 Sep 2022 12:55:19 +0000
ROA not after: Mon 25 Sep 2023 13:00:19 +0000
asID: 59282
IP address blocks: 2400:d680:2dc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:9e:11:d8:10:f1:91:1e:fa:73:e0:b8:82:ee:f9:13:e9:12:e9:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:19 2022 GMT
Not After : Sep 25 13:00:19 2023 GMT
Subject: CN=B3F117444D7A4AD3BAF68E8E5ECFA797B68136E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e9:25:d1:0f:ce:9f:49:71:32:ad:1f:66:58:
ea:0a:8e:13:e9:7c:f8:7f:af:8c:f6:47:e0:95:6c:
cc:a0:41:de:0b:79:bb:ca:f7:09:1b:eb:42:a1:ba:
69:d5:6e:96:00:c9:32:48:c0:1d:d9:f6:21:ed:71:
0c:cc:25:1e:a1:f4:c9:46:4d:33:54:cc:80:ab:83:
a5:b1:d7:98:bd:c1:27:59:f5:c9:76:bd:fe:c8:f3:
df:fb:ad:8b:7b:be:0a:6c:a8:77:97:78:20:8f:7b:
35:22:37:d4:bf:99:dc:e5:7b:d1:9d:3e:cd:cb:4a:
f4:dc:5b:ae:93:aa:c4:8e:1c:bb:63:43:a9:11:d5:
16:0c:2e:e6:eb:54:69:fa:65:42:56:c5:ac:67:78:
9c:60:4c:45:96:e0:7b:5e:38:64:52:4d:ac:fc:fe:
89:06:2d:57:04:30:c0:5d:3b:bc:b5:e2:52:7e:04:
c7:7c:32:cc:a0:b6:6b:e9:da:c1:b3:fd:27:66:7f:
66:c1:65:11:2d:23:b6:4e:f2:9a:a2:98:f5:93:db:
4a:d1:57:b7:56:7e:06:9f:9e:1d:ca:8d:c9:0b:ca:
dc:05:58:84:62:69:6e:28:e3:d0:58:ef:db:fd:db:
3c:09:b3:81:db:8e:3f:89:ca:e5:61:c0:81:84:61:
73:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:F1:17:44:4D:7A:4A:D3:BA:F6:8E:8E:5E:CF:A7:97:B6:81:36:E6
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2dc::/48
Signature Algorithm: sha256WithRSAEncryption
48:04:64:ed:40:61:70:3f:6a:03:c1:35:0c:1b:10:a9:19:db:
65:78:a7:22:0c:2f:6c:65:91:61:c4:6d:ea:1f:83:6d:4f:86:
b3:54:b8:9a:63:89:e0:35:f7:ea:98:e8:eb:b0:50:56:c7:90:
88:14:01:b7:ed:4b:7b:2c:fa:e3:3b:07:07:72:67:30:b5:b8:
49:a6:f7:58:4c:06:d8:73:6d:74:88:1c:33:02:76:bd:ba:ca:
78:77:53:4c:6c:2b:a1:4c:dc:ff:32:db:20:ae:92:1a:6c:aa:
bb:2b:b0:b5:c6:85:31:9f:2d:f4:e4:57:6f:33:da:23:90:18:
a8:6f:90:24:e3:51:7e:76:01:bd:64:4a:78:80:ee:f0:26:5c:
76:39:dc:1c:db:b0:fe:12:3c:96:68:f8:e3:20:9c:e4:6a:f9:
25:b2:af:02:b7:cf:04:5d:32:2d:6a:c9:54:26:76:bd:df:28:
2a:4f:0f:fb:d1:5c:03:d0:20:7b:8a:82:76:c4:79:db:d1:30:
e6:34:c8:60:7a:c2:c4:45:ec:45:f0:00:0b:1e:6e:8a:f4:0f:
62:f0:72:6f:c1:6b:19:28:70:50:32:16:ac:71:3e:cd:9f:af:
86:65:47:50:7d:9b:54:b6:03:17:68:ec:a5:c6:31:f2:e4:f0:
04:55:83:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org