Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3330643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 2Muk7flgtm7B51WHoKnqYTmKrLCm04D/Fzqi+ytK4Ik=
Subject key identifier: 4B:6B:F1:17:10:06:FE:77:8D:EC:00:4D:B5:38:66:70:09:67:10:8C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 358BE15826D4B5FC300E872872FFC7B3E7F31B48
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:19 +0000
ROA not before: Mon 26 Sep 2022 09:55:19 +0000
ROA not after: Mon 25 Sep 2023 10:00:19 +0000
asID: 59282
IP address blocks: 2400:d680:30d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:8b:e1:58:26:d4:b5:fc:30:0e:87:28:72:ff:c7:b3:e7:f3:1b:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:19 2022 GMT
Not After : Sep 25 10:00:19 2023 GMT
Subject: CN=4B6BF1171006FE778DEC004DB53866700967108C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0a:f0:6d:94:f8:b1:30:f5:8f:cc:b8:94:f2:
c5:f5:e1:1f:9f:b0:19:bf:76:92:81:8c:eb:48:4d:
3c:6a:1f:7b:a1:d2:24:8b:51:1f:f4:d6:2b:b2:c8:
a4:27:a0:a1:44:5d:8f:14:7f:68:9f:03:c9:c5:81:
aa:fe:44:f8:47:79:d1:2a:a2:8b:91:79:8b:5b:50:
22:04:1c:ae:3c:a9:5a:8c:d0:05:29:ca:2e:e2:25:
a2:89:1a:d4:00:81:d9:0b:20:a2:30:6d:06:15:bc:
b9:75:66:0c:ca:07:c8:e4:20:5e:39:15:4a:4d:42:
2a:c1:a6:fe:df:22:3d:e2:ce:cb:17:98:e3:2e:a4:
4a:9d:b2:e2:3e:76:a5:b4:65:4c:6a:c3:83:47:fa:
61:9c:b3:d5:17:6b:6a:c9:9e:3c:49:8b:30:b7:0f:
5b:9e:2d:63:d9:67:49:74:1c:32:02:4c:37:a3:c2:
18:14:5f:db:64:db:9b:dc:28:01:15:79:80:4b:e2:
4e:e5:14:d0:57:e9:8b:74:14:f0:05:b6:24:e2:60:
d2:f4:8c:6a:6b:39:b4:3f:70:bd:b3:d6:49:28:73:
d5:b3:55:bf:03:a1:cf:76:10:fa:63:09:bd:64:56:
86:69:46:e3:27:6f:7b:f2:0b:b7:f4:62:d9:57:bd:
7d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:6B:F1:17:10:06:FE:77:8D:EC:00:4D:B5:38:66:70:09:67:10:8C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:30d::/48
Signature Algorithm: sha256WithRSAEncryption
8b:3e:a8:14:44:ff:02:e4:d4:97:9f:3b:6d:77:50:d2:47:83:
5d:0c:be:9f:ea:a8:57:b0:45:48:dc:10:03:02:02:23:86:51:
f1:87:5d:86:a4:4b:fd:89:76:99:a4:ad:16:3d:b4:f3:65:b3:
68:0b:16:4d:4a:1c:94:53:08:0e:78:a7:c6:09:23:72:5c:37:
5d:e5:01:fe:36:0f:94:15:23:07:57:90:8e:a1:78:4d:e3:86:
fc:dd:df:6c:5d:2b:b7:23:f8:ba:25:b1:ad:05:d6:eb:b1:02:
a7:51:c9:38:2d:c4:0b:3b:d0:e1:43:ac:8d:0a:d3:52:f6:7a:
6e:c8:46:f0:c5:3b:17:ad:b4:08:fa:a0:99:0e:f2:1a:9f:c1:
10:76:7f:05:dd:eb:a9:db:31:77:82:e1:ec:bb:9f:f6:74:12:
1c:ce:bb:78:92:28:ec:1d:2a:3e:43:af:04:2e:2f:d3:f8:11:
a1:eb:34:61:64:6b:2b:d6:b8:0a:f4:61:65:88:53:ba:e1:cc:
ea:f9:b1:58:0b:0c:1c:d4:0a:75:8b:33:b5:63:c9:b0:d3:25:
70:de:24:fc:0e:13:42:1a:c0:b1:3b:2f:39:72:0e:74:47:e4:
3e:67:ea:44:d0:18:b5:4e:9f:9b:73:22:09:0f:1c:25:a5:9e:
1f:09:d6:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org