Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3331623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: SexiJQTnsGdbpCLfy5DYJ8zkDFtfGGJqOMyLyxYp1u8=
Subject key identifier: 0C:0C:70:5D:3D:07:8D:84:A6:AD:02:BA:E0:77:B0:90:6D:8A:0E:04
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4D2614101F39FF72DBCC1A1BA065C5C56236B9FC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:10 +0000
ROA not before: Mon 26 Sep 2022 09:55:10 +0000
ROA not after: Mon 25 Sep 2023 10:00:10 +0000
asID: 59282
IP address blocks: 2400:d680:31b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:26:14:10:1f:39:ff:72:db:cc:1a:1b:a0:65:c5:c5:62:36:b9:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:10 2022 GMT
Not After : Sep 25 10:00:10 2023 GMT
Subject: CN=0C0C705D3D078D84A6AD02BAE077B0906D8A0E04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:38:5a:7a:c9:46:a5:30:ac:c9:97:3a:8c:e1:
e4:3a:1f:a3:ea:24:74:1c:b0:91:fd:6e:f2:53:ff:
88:25:56:e9:c4:16:3d:94:4a:1c:f9:54:c3:c1:92:
da:b7:d7:79:7e:0b:b3:d3:9b:1d:ee:3a:6a:0d:28:
74:03:3e:b1:38:73:81:e4:49:d7:31:30:55:cd:03:
4b:ae:29:f2:7a:30:e5:8c:8d:ce:50:2c:71:f7:43:
3b:6c:bd:ec:90:60:9a:e2:a1:5c:02:3d:af:ee:7d:
27:2e:53:81:8c:af:37:30:e4:0e:1f:e4:39:de:90:
3d:9b:8b:0e:c7:d0:b2:99:03:a3:23:09:8f:ff:2a:
68:3e:1a:fe:94:4a:56:d5:3e:19:a7:ad:8c:95:61:
01:62:4f:97:4c:18:5a:13:34:35:c4:11:79:99:af:
5f:e4:59:cc:54:45:06:b2:a2:87:df:87:ee:1a:64:
bb:85:58:98:62:f6:da:b7:68:f0:de:c0:d1:ae:15:
b4:e3:ea:3f:46:c7:1d:bc:c3:d0:57:86:fa:bd:1d:
8f:3c:89:19:0c:9c:4b:e1:77:56:b2:b9:c0:7f:17:
a1:37:0b:16:65:14:12:d2:87:73:3d:9a:a2:d0:38:
c0:74:59:0e:05:ce:93:0f:84:fc:7f:68:6f:45:14:
06:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:0C:70:5D:3D:07:8D:84:A6:AD:02:BA:E0:77:B0:90:6D:8A:0E:04
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:31b::/48
Signature Algorithm: sha256WithRSAEncryption
b4:75:52:cd:27:2a:07:a7:18:00:7c:66:d4:fc:a9:94:4a:d4:
73:98:96:6b:b2:a4:2c:f7:16:f8:c6:df:b9:7d:aa:bb:e8:67:
5a:b7:e0:3f:44:dd:c9:6c:0b:1b:fd:03:06:f6:a3:06:fd:e2:
bf:bc:2c:b5:e9:0f:17:7f:a1:5a:06:86:6f:63:22:c9:b7:c7:
a5:83:cd:0e:5d:63:d9:9e:d0:19:82:f4:1c:da:d4:d3:92:40:
1d:c4:93:de:e4:7d:da:af:24:a5:d6:42:49:14:52:b2:d6:98:
7d:db:ec:46:4b:95:7c:87:95:22:a5:7c:52:cb:9c:02:8c:6b:
af:c7:24:39:f9:1c:76:3e:9f:6e:bd:91:2f:6e:b8:4c:13:0a:
81:c8:8b:ed:ca:a1:4f:4a:85:52:d5:8f:ce:9a:c6:f0:ee:7a:
fa:0c:71:ba:dc:3d:84:d2:0a:54:9a:d3:44:35:25:3b:a9:0a:
84:6f:be:7a:30:45:53:a5:61:07:05:09:0f:ea:09:37:6e:9d:
8b:63:c5:b2:54:af:97:b0:57:32:d9:c7:f5:38:9d:c0:0a:05:
82:1d:af:6e:2f:c9:fa:9f:33:d5:b9:12:7e:0d:5d:77:5c:32:
79:1d:eb:60:a4:a9:8e:7f:68:1f:12:8d:df:81:87:dd:03:ce:
d5:96:ec:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org