Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3330393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: +jW/lbbqjvahPRkeV3OY28S7VAwHmUGG5mPH4hiOZWc=
Subject key identifier: AC:4D:FE:54:66:E8:31:58:2A:48:B7:06:ED:73:40:E6:CE:87:1C:9A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4FFAF6E77DE09BDCBD6F400BD400AC798494F54C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:27 +0000
ROA not before: Mon 26 Sep 2022 09:55:27 +0000
ROA not after: Mon 25 Sep 2023 10:00:27 +0000
asID: 59282
IP address blocks: 2400:d680:309::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:fa:f6:e7:7d:e0:9b:dc:bd:6f:40:0b:d4:00:ac:79:84:94:f5:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:27 2022 GMT
Not After : Sep 25 10:00:27 2023 GMT
Subject: CN=AC4DFE5466E831582A48B706ED7340E6CE871C9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:aa:48:66:70:99:b7:6f:a6:8b:81:5a:90:27:
00:d3:0e:11:a5:7a:14:b0:92:c4:75:7b:79:5f:f5:
1b:14:d7:b5:00:b6:6c:05:78:cd:00:45:27:cf:f1:
72:50:0b:9d:f4:1e:f1:a9:a9:8d:46:85:de:38:49:
3d:4d:e0:21:41:8d:d7:df:ed:dc:74:88:3e:23:06:
00:ae:11:59:8a:d6:ac:b0:0c:77:1a:ba:16:f3:07:
36:17:21:2a:e9:6e:20:3f:4c:7d:fa:71:76:0b:d5:
92:02:6d:b1:de:63:ac:78:ec:7e:67:46:a2:31:43:
c0:bd:30:0a:f2:5d:40:7f:6d:53:9a:14:45:a6:aa:
9b:c7:32:06:30:b3:b7:72:6d:52:36:fa:60:40:6d:
a9:91:c1:86:20:3d:94:2f:64:57:ad:1f:0a:60:30:
86:0e:4c:37:9d:b0:7b:67:f4:ad:2b:5b:9a:b2:12:
52:06:f5:2c:8d:b4:97:35:91:bd:d9:20:b6:0e:c1:
52:97:4f:4f:37:7d:9b:61:d0:ee:48:e6:8e:e3:eb:
ba:35:13:99:81:95:5d:be:fe:a3:67:f0:de:45:fc:
02:c6:c3:5a:0e:c4:9b:80:65:b1:4d:44:51:37:1f:
81:3a:b5:78:16:46:26:35:02:32:56:d9:f7:85:8d:
72:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:4D:FE:54:66:E8:31:58:2A:48:B7:06:ED:73:40:E6:CE:87:1C:9A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:309::/48
Signature Algorithm: sha256WithRSAEncryption
b4:dd:9f:d6:6f:15:44:86:23:9d:2f:bf:65:7b:5e:e4:05:c1:
fa:36:62:1c:b6:71:46:a7:17:e0:ec:81:2b:4b:07:34:f5:69:
b3:42:75:96:ca:70:44:77:6b:e2:22:1b:af:d7:e9:db:46:6f:
04:fa:fd:58:f7:9c:bb:46:96:a8:ac:72:24:74:05:0f:03:db:
40:82:68:48:f5:3c:49:d4:dd:6e:51:01:16:cd:1a:8e:59:aa:
60:16:c8:b5:7f:6e:ce:74:a5:79:7d:e7:f2:0d:e6:ac:be:7c:
dc:2c:f8:cc:06:b8:9c:f3:02:d2:af:01:e4:cb:b4:c2:52:d1:
c2:45:ca:26:df:28:ec:a2:5e:1f:b9:17:d6:3c:c0:21:05:5a:
fa:84:ec:ef:68:94:f7:90:f5:d9:c1:91:fb:9e:1a:cc:c2:e2:
1e:42:c6:50:7b:56:fe:01:26:94:fd:e2:b0:22:70:21:4e:45:
05:80:72:87:13:3c:a0:31:79:2a:5e:10:bb:af:92:a4:a2:64:
68:65:f8:83:f9:78:7d:4f:e7:aa:50:e8:34:3f:04:67:78:c6:
5f:bb:0a:c2:6d:5e:49:e4:40:9b:fc:35:11:f4:4c:d8:49:be:
e5:7b:c9:ab:ed:e1:7c:0a:15:c8:0e:7d:c8:ea:1d:ea:f5:9b:
0d:cd:99:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org