Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3266663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: au8ecTAn/MBQX2yanvAnUa62qYMq0uGXVHmoqt3ULAY=
Subject key identifier: 6C:DF:E1:7F:04:66:AE:16:7E:C0:7B:EE:B3:8E:63:D5:71:5A:55:12
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6A85326E1FBD3BC774CBA967D1C4442EA8A94A6F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:17 +0000
ROA not before: Mon 26 Sep 2022 12:55:17 +0000
ROA not after: Mon 25 Sep 2023 13:00:17 +0000
asID: 59282
IP address blocks: 2400:d680:2ff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:85:32:6e:1f:bd:3b:c7:74:cb:a9:67:d1:c4:44:2e:a8:a9:4a:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:17 2022 GMT
Not After : Sep 25 13:00:17 2023 GMT
Subject: CN=6CDFE17F0466AE167EC07BEEB38E63D5715A5512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9f:4b:f2:83:2e:67:d6:1a:46:e4:02:b5:d7:
4d:ea:6a:54:a5:5d:dc:bc:79:4f:93:0a:91:1d:91:
69:f1:a5:d0:74:5f:cf:5c:70:1b:ac:ce:96:81:e9:
68:40:d7:6f:72:66:4f:fe:94:40:99:04:3d:45:55:
11:30:05:bb:3a:fa:83:0b:65:df:4f:50:74:29:32:
1b:63:64:cf:bc:51:96:30:87:3d:6f:6c:5a:8d:b8:
41:c8:10:54:0a:f0:8f:bb:3e:c0:3b:84:f2:0f:74:
7e:c9:b3:89:cd:4c:a9:70:c2:39:37:34:21:7e:a6:
ff:93:7d:fe:34:a8:8c:0c:96:d5:ef:0c:59:02:d9:
bc:a1:18:be:73:ea:12:1b:8e:ec:93:23:8a:1c:a9:
0c:a4:32:4c:a7:01:b8:fb:75:ba:70:26:d0:96:4c:
ea:6d:f6:95:1f:e9:57:42:5c:9b:e2:4d:d9:0f:33:
12:80:2a:00:ae:6d:1d:95:7d:ae:69:5b:4f:5d:aa:
80:00:f0:38:b0:20:73:f5:a9:98:06:d5:3a:d9:97:
89:3e:c7:9b:30:66:4b:da:d9:40:d8:6b:3b:4b:86:
95:b8:ed:4a:ab:e0:17:f5:ef:7d:a7:c0:60:45:91:
89:44:fd:81:95:40:31:76:75:21:c5:37:4c:64:8a:
85:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:DF:E1:7F:04:66:AE:16:7E:C0:7B:EE:B3:8E:63:D5:71:5A:55:12
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2ff::/48
Signature Algorithm: sha256WithRSAEncryption
d5:95:af:23:f4:a7:1b:ea:ab:2d:27:95:bb:7e:46:c3:4a:2e:
ac:e7:26:23:80:68:33:80:b5:d2:e1:fc:fe:7b:c2:bf:46:78:
43:1a:da:14:3f:1c:b6:49:0e:c3:87:b0:16:29:b4:19:09:ff:
d6:6e:bb:34:3b:3f:77:68:11:78:74:06:a3:92:08:8e:13:e2:
46:e9:f2:de:d5:c0:9d:de:59:34:77:b3:d0:71:6f:a4:95:a8:
63:de:65:73:e5:3f:a0:99:70:05:41:a6:a4:df:e5:f8:d7:e8:
61:52:48:9f:1f:6c:34:8d:aa:bc:22:03:25:08:54:1e:af:fb:
f3:0a:bd:d6:29:e2:44:aa:c0:e7:32:f3:9b:63:70:39:46:c7:
5b:05:07:0e:00:d4:f3:23:bb:f8:36:ee:e2:e8:f9:55:ac:d2:
c9:9e:3c:c8:c2:f1:78:82:7b:fe:db:f9:80:a4:c7:ad:57:b8:
bd:69:60:ce:05:ae:d1:c8:e9:99:8f:23:5a:64:94:a2:12:22:
97:b9:d1:63:8e:64:37:89:e9:c5:0d:90:e3:a0:70:5a:c3:06:
7c:32:28:51:1d:56:cb:06:f9:0c:ca:26:58:c8:10:49:73:cc:
11:4c:05:81:92:fa:81:75:b4:4d:b5:59:9d:1b:d3:13:f9:c2:
db:7b:0a:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org