Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3266343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: AuAMo/zBU7CFzr6K+FK1pF6nl83oyr1UocWAa3Fgbq0=
Subject key identifier: 71:0D:DB:BF:81:5F:7A:DF:24:4F:75:6C:14:5C:50:17:41:85:F2:E2
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0CE38BBEA34333B855524109B99E4BFEAD4D0D13
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:17 +0000
ROA not before: Mon 26 Sep 2022 12:55:17 +0000
ROA not after: Mon 25 Sep 2023 13:00:17 +0000
asID: 59282
IP address blocks: 2400:d680:2f4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:e3:8b:be:a3:43:33:b8:55:52:41:09:b9:9e:4b:fe:ad:4d:0d:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:17 2022 GMT
Not After : Sep 25 13:00:17 2023 GMT
Subject: CN=710DDBBF815F7ADF244F756C145C50174185F2E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:dc:86:a7:c7:15:ce:4f:d4:bd:11:4b:97:0d:
04:d9:22:50:1e:17:fc:f4:da:80:93:2c:ae:b0:15:
e1:ab:88:d8:7d:15:f5:67:36:98:5c:e6:4d:95:2b:
20:0b:9b:7a:70:7d:87:89:87:07:1b:fb:53:ab:63:
ed:b1:12:90:97:b8:3d:09:4f:6c:2c:84:c4:a8:17:
d4:6f:dd:2e:b9:05:74:20:5e:2d:c1:ef:f7:68:0b:
ad:ee:1f:55:ff:cd:cc:97:46:a6:a7:a9:27:6d:2f:
61:52:86:8c:2f:66:3b:26:1a:6c:5d:da:a5:cc:86:
a0:d4:20:26:6a:c7:3f:83:b0:4d:c7:69:87:59:87:
21:ca:bf:0c:06:53:21:c5:62:d0:a3:e4:79:2f:f7:
59:1b:dc:57:88:66:03:d7:c6:83:e7:30:d5:ac:de:
73:cf:33:27:14:01:51:0d:b6:5f:bb:7a:81:92:0e:
05:b0:fd:30:f8:d7:60:97:b8:ab:90:37:1a:82:01:
fe:53:a4:c0:d3:d8:9b:c8:26:16:f9:d3:69:34:89:
97:88:ba:fc:77:6b:b9:a4:bf:da:88:30:fc:b6:80:
46:72:7c:e6:b4:1b:7f:4e:30:64:55:a6:49:37:76:
e7:4d:34:62:85:3b:d6:7c:7f:e9:1e:96:71:92:da:
b4:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:0D:DB:BF:81:5F:7A:DF:24:4F:75:6C:14:5C:50:17:41:85:F2:E2
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2f4::/48
Signature Algorithm: sha256WithRSAEncryption
8c:47:1d:fa:b3:06:ac:13:90:79:19:91:41:2a:92:9d:59:c3:
4e:20:68:9b:80:46:86:a0:9d:9f:7a:fd:67:c6:0a:0c:5c:eb:
3e:5e:e8:a2:09:5d:bc:b1:6b:f8:7f:1a:aa:ad:48:73:7e:88:
cd:5e:f4:d3:f6:27:26:20:2a:fe:d9:1a:94:bf:35:a4:dd:8f:
40:ec:d3:f8:d5:c3:9f:87:80:1f:b3:66:6f:90:3d:30:86:3c:
5b:45:03:f6:ac:7f:cb:b6:74:ad:d6:88:5f:59:a1:af:59:75:
57:a7:4b:18:f2:7a:b6:73:99:27:f7:a4:45:08:6e:34:5b:c2:
da:69:cd:03:6c:0e:83:fc:da:5a:18:8c:05:48:81:fe:b4:c3:
a7:16:89:ef:e6:a7:35:21:a3:de:6d:c2:a5:d5:f0:11:ba:92:
93:43:95:3e:a4:c5:23:74:3b:4b:e2:a1:b3:81:98:a0:f7:b8:
2e:ba:fe:90:ee:41:f1:a3:7a:70:4a:eb:da:08:48:af:d2:e4:
00:c0:c1:ca:55:04:9d:f7:ad:0e:d6:0c:89:64:3d:4e:3d:b2:
a9:3c:4f:ca:b0:87:32:2e:5b:c2:55:da:02:f3:73:04:d9:f7:
c3:b8:5f:0e:ac:38:c0:93:64:e0:b8:84:f2:0d:51:84:bc:99:
c9:90:61:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org