Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3331343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: AlPmaGE22EhV5X+YXI/KA7OVKeA+0W//xSuF/v6WZyY=
Subject key identifier: 8E:FE:C8:F3:ED:B0:B5:E4:48:F6:E3:CC:F1:F5:DF:CF:32:0F:31:1E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 22364A8DAA2DA8B9778CD60491FDC49FAE874557
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:23 +0000
ROA not before: Mon 26 Sep 2022 09:55:23 +0000
ROA not after: Mon 25 Sep 2023 10:00:23 +0000
asID: 59282
IP address blocks: 2400:d680:314::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:36:4a:8d:aa:2d:a8:b9:77:8c:d6:04:91:fd:c4:9f:ae:87:45:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:23 2022 GMT
Not After : Sep 25 10:00:23 2023 GMT
Subject: CN=8EFEC8F3EDB0B5E448F6E3CCF1F5DFCF320F311E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d8:d6:ad:78:4c:7b:96:0c:ea:da:fe:b4:3c:
cd:53:8c:b6:14:c2:b3:17:e1:9c:43:3f:40:8f:55:
09:bd:06:5f:65:31:c5:af:e5:2e:82:bb:2f:49:da:
af:ea:76:b3:41:0d:f5:32:dd:45:f9:90:60:7b:9d:
a7:5f:9a:67:73:88:fb:34:25:73:ce:16:ec:24:03:
be:56:07:ee:60:f3:32:2b:80:40:6e:ed:9c:4f:1f:
c3:2e:ee:35:6e:63:0e:29:57:50:25:13:74:44:bd:
90:0d:df:e5:cf:4e:8f:73:84:df:71:9f:55:c8:aa:
4b:63:09:b7:21:ea:99:7f:ca:c8:36:52:fe:8e:48:
5e:ca:e5:a0:58:09:6c:bf:ba:ca:d9:2f:d8:5b:66:
12:62:d3:1a:c9:03:1d:c5:fa:46:c0:50:e0:4a:00:
f6:a0:14:30:7d:2b:a9:bb:be:d2:22:0f:fb:38:37:
28:d2:f8:9c:c3:aa:b2:92:ee:e6:ba:56:98:8b:49:
11:87:cf:79:84:98:aa:ca:d0:34:0d:ba:ff:6a:aa:
92:79:68:a0:2a:93:d9:b0:78:df:c7:e8:9b:ee:56:
d6:a1:37:79:1c:02:83:5e:2d:45:8d:25:f3:7a:7c:
a5:61:aa:56:e1:c7:1d:3e:61:f1:c6:f0:1d:90:3f:
0b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:FE:C8:F3:ED:B0:B5:E4:48:F6:E3:CC:F1:F5:DF:CF:32:0F:31:1E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:314::/48
Signature Algorithm: sha256WithRSAEncryption
08:e0:4a:d9:72:43:e3:9c:a8:80:34:fe:b8:45:fa:2d:fd:d8:
b1:a8:f6:6f:da:c6:c0:41:80:61:a0:27:bd:1a:92:16:63:a9:
a8:16:7b:39:bf:7a:79:af:32:02:15:54:f7:c5:3c:4f:5f:58:
e5:a0:01:13:fd:27:10:3d:d1:c8:84:32:98:e5:71:7f:e7:24:
45:ab:d9:fb:5f:5f:e8:b5:ae:9c:44:d3:24:7f:e1:d2:24:8b:
77:d6:d6:8d:04:25:26:d3:8b:a5:9e:5d:b1:8e:4f:39:a6:b5:
da:66:7d:3b:3b:57:5e:92:7a:02:55:d7:ec:e1:62:71:ee:c8:
e1:58:b8:2b:0c:ec:24:81:72:b7:47:a2:c6:6c:48:c3:61:76:
83:68:71:18:53:c1:e5:e5:03:6f:69:d9:64:3c:5c:c6:80:4a:
5c:4a:0f:13:64:d3:7c:c1:51:ee:65:fc:5c:21:39:34:43:93:
90:a1:ff:bb:c9:ed:ba:90:75:ec:a7:3d:ff:f4:ca:41:56:d1:
60:bd:32:55:c7:f8:81:36:05:75:ca:9e:2a:65:d0:d3:ef:ce:
db:03:73:32:4f:f6:91:df:17:b0:f5:f3:71:c9:76:12:24:81:
cb:54:0d:9b:53:18:89:e0:44:7d:8b:77:e5:d8:65:35:ea:fb:
f9:68:e3:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org