Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3331383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: KyyAMa6KY+XJgtjArEE6Lf8iejI61bX55JbRbqwle6M=
Subject key identifier: 03:EA:50:BD:75:BA:0D:5F:05:EB:C4:A3:DD:EA:7A:BA:D5:54:D9:83
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 774059F7C1FC7D35BED693860A139B79B9A447A8
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:16 +0000
ROA not before: Mon 26 Sep 2022 09:55:16 +0000
ROA not after: Mon 25 Sep 2023 10:00:16 +0000
asID: 59282
IP address blocks: 2400:d680:318::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:40:59:f7:c1:fc:7d:35:be:d6:93:86:0a:13:9b:79:b9:a4:47:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:16 2022 GMT
Not After : Sep 25 10:00:16 2023 GMT
Subject: CN=03EA50BD75BA0D5F05EBC4A3DDEA7ABAD554D983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6e:73:b2:09:a0:6d:cc:91:8a:83:36:fa:6b:
95:44:5a:83:4a:2c:de:9b:96:89:cb:03:ec:43:0a:
62:57:b3:be:0f:14:7f:00:42:d6:7c:2b:1e:6d:64:
44:1b:e1:3a:db:da:7c:ca:e7:b4:aa:12:05:80:a7:
4d:05:61:e1:c7:da:22:11:27:e4:2e:7c:43:e3:e8:
a7:74:04:58:2e:f7:f2:74:f6:23:a9:0a:bb:76:ca:
b5:3b:94:55:ce:19:38:c9:11:17:bb:36:f6:83:c1:
93:7a:b2:f3:fa:a7:4d:5d:5a:6c:43:94:e8:e9:d0:
2d:94:5b:87:36:f8:b1:2b:5e:87:14:07:95:8c:61:
60:c8:85:7b:c5:7a:a0:a2:11:d8:88:d3:4b:c1:8f:
67:4f:4a:2e:0e:0e:74:6d:4e:fd:d8:db:2c:cf:55:
74:da:28:8d:34:5d:cd:cd:af:bb:40:59:91:0e:ae:
c8:e2:d5:a4:d1:ab:3e:40:63:60:b6:c6:0f:31:07:
bb:8b:71:c3:e0:1f:68:5e:66:f6:ee:60:03:86:60:
a3:16:eb:d3:16:40:8d:73:cb:98:3b:e5:3e:a4:7b:
3a:7c:f4:90:0e:76:df:7d:62:9a:8b:72:e4:33:ed:
93:9b:c7:63:d8:c2:a0:db:b6:97:36:6f:c6:27:3d:
93:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:EA:50:BD:75:BA:0D:5F:05:EB:C4:A3:DD:EA:7A:BA:D5:54:D9:83
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:318::/48
Signature Algorithm: sha256WithRSAEncryption
c8:7b:43:95:d8:ab:cc:43:9b:56:5b:26:29:df:89:cb:05:3d:
7b:d2:60:81:c1:68:8d:53:50:89:06:7f:a8:79:70:ea:4e:d5:
10:ba:55:4b:b6:1d:93:8f:4f:92:b0:54:c2:db:c3:4c:83:a6:
f0:61:fa:a1:75:58:91:51:5b:a2:3c:0f:86:55:d0:f4:d5:26:
4c:e3:43:0e:61:a5:3c:7b:2e:c5:6f:e0:dc:cb:34:80:a4:59:
21:44:10:ca:2b:b3:8a:53:78:82:6a:cf:9a:bd:ba:5c:7c:bb:
d8:fd:d1:a0:43:33:b0:42:c1:09:8f:89:d6:55:bc:d3:77:53:
83:f0:c6:bc:a1:fe:e5:08:3c:3a:ca:ab:50:73:fe:61:10:f2:
3f:a6:8a:7a:3b:7c:d6:78:fa:41:98:f4:d0:a0:a9:6e:f4:e1:
e3:bd:1d:25:5a:b3:08:54:dc:2d:33:e4:c6:e7:87:f0:df:6d:
0b:37:b5:1b:b9:79:95:65:94:c4:41:8e:61:22:9d:37:d9:2f:
8e:83:cd:31:43:8d:6a:8b:f4:83:3e:ed:16:1e:41:b5:26:ae:
83:b7:06:1d:95:67:f2:fe:a3:6f:a5:48:73:a7:55:f2:62:f4:
10:10:e4:64:a5:f9:d1:d5:c3:df:7b:85:d9:24:cc:3c:4f:65:
8f:b6:2a:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org