Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3332383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ppmSCa62Jhaq8HZza9sAGQ7EgFYqqW1N2jGFEEGC4n4=
Subject key identifier: E4:B9:8A:2B:1A:82:41:AC:E0:4E:4C:2E:EF:99:06:01:D7:A6:AE:CC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 06C35C5EBCC9ABCB71CD5BB2A1471F737BF996CC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:29 +0000
ROA not before: Mon 26 Sep 2022 09:55:29 +0000
ROA not after: Mon 25 Sep 2023 10:00:29 +0000
asID: 59282
IP address blocks: 2400:d680:328::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:c3:5c:5e:bc:c9:ab:cb:71:cd:5b:b2:a1:47:1f:73:7b:f9:96:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:29 2022 GMT
Not After : Sep 25 10:00:29 2023 GMT
Subject: CN=E4B98A2B1A8241ACE04E4C2EEF990601D7A6AECC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b8:02:5d:c2:9e:ae:c6:13:83:fb:46:c5:eb:
c0:cf:76:d1:a7:d6:56:12:c6:3d:89:d6:a7:99:da:
fc:50:f4:d4:12:08:8c:9d:13:37:c7:5e:22:e5:4a:
43:18:10:4c:1a:80:59:89:62:fd:7c:c5:e9:cd:f3:
02:52:09:41:6e:68:93:22:d5:23:c9:16:28:d3:a0:
52:94:ba:70:87:17:47:12:c9:a4:70:eb:27:9f:e6:
57:7b:50:b9:d0:f6:ea:87:fc:2a:bf:4a:bd:fd:6c:
ee:dc:3d:e9:4d:87:e9:d8:fd:81:21:e0:fe:eb:3d:
0d:93:a9:84:4d:88:3a:29:6d:b6:10:cb:07:33:22:
7c:74:f4:1e:d6:e1:89:8d:23:b9:c6:9c:70:c9:d2:
d7:51:6c:af:2a:c5:86:3f:c2:a3:93:2b:88:2a:98:
30:ae:de:be:61:c2:cc:87:b8:18:b3:a2:ac:02:27:
8a:4a:d0:ac:7a:72:03:e5:96:a2:b3:7a:cb:b4:12:
e2:46:c0:41:d1:4a:ae:5a:35:3c:29:6f:27:97:2d:
ed:7e:76:17:4a:ef:28:16:23:b8:6f:df:4a:b2:f0:
a6:00:6a:6a:cf:cd:6f:04:ac:e5:43:95:2e:fa:2f:
b2:76:b1:1a:7e:bf:7d:c6:d0:e0:23:49:ac:2c:70:
3a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:B9:8A:2B:1A:82:41:AC:E0:4E:4C:2E:EF:99:06:01:D7:A6:AE:CC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:328::/48
Signature Algorithm: sha256WithRSAEncryption
04:aa:7a:5a:15:4f:12:98:68:20:ff:07:24:2a:0b:66:ca:5f:
ef:6d:10:b2:ea:94:32:a3:9e:1b:2b:3e:37:43:68:26:3d:a7:
cf:b8:25:66:cc:bf:7e:67:e4:cd:9a:e9:9c:3a:dd:f8:e3:cc:
96:4e:1b:bc:f8:75:da:4e:55:56:43:c8:3d:c9:cb:8e:51:cd:
cc:17:e2:97:2a:a6:85:da:40:3e:ff:9c:43:06:d6:d8:64:8b:
82:84:ff:ab:8f:08:e3:b3:c7:bf:c0:d9:f6:1a:8a:74:3c:89:
04:1c:4c:51:ac:aa:d4:3d:4d:13:05:ff:75:9a:8d:dd:2a:b4:
d5:45:35:32:fd:a0:e2:4e:ce:82:02:8b:47:34:7d:fd:90:c6:
09:1f:c6:80:73:b6:30:0d:b2:75:b8:a5:e9:9e:1b:a8:85:c2:
2d:e5:3b:54:f8:9a:2f:69:d9:05:d3:f2:12:de:f3:9e:28:d9:
59:44:d3:8c:5d:a6:65:43:08:56:7e:5a:9c:56:56:9d:1b:0f:
a8:b3:9c:67:5f:c9:2d:24:e5:39:72:c1:ee:85:cd:6f:13:c5:
e1:04:74:0c:0f:6b:6e:50:3f:25:a9:17:1c:31:6e:8b:0a:a2:
b3:c0:9b:a0:72:1e:40:00:30:45:83:1c:be:ee:c2:59:f1:34:
ae:e5:17:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org