Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3332623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: IEe9RnxBO+yrUkPfstxe4yk/CJJ/Z31cKLI5F0Z0FX0=
Subject key identifier: C3:58:EF:5D:B2:CE:11:F8:4B:40:6A:65:08:32:01:8A:73:A0:82:A6
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 39AB6D39A46383980ABCE45EAEA4311B1546A1A4
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:05 +0000
ROA not before: Mon 26 Sep 2022 09:55:05 +0000
ROA not after: Mon 25 Sep 2023 10:00:05 +0000
asID: 59282
IP address blocks: 2400:d680:32b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:ab:6d:39:a4:63:83:98:0a:bc:e4:5e:ae:a4:31:1b:15:46:a1:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:05 2022 GMT
Not After : Sep 25 10:00:05 2023 GMT
Subject: CN=C358EF5DB2CE11F84B406A650832018A73A082A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:53:5f:80:79:ab:fd:e2:25:ec:15:2f:d6:ff:
04:93:17:75:98:0b:60:f4:ad:82:ed:91:f2:af:58:
ee:57:78:d0:e6:05:0d:c0:b0:f5:eb:64:6e:95:c7:
61:80:c3:c8:17:e4:d1:65:05:2c:45:55:e6:d4:ab:
88:a5:0a:08:db:c4:83:ef:d2:1d:bc:0a:e3:c9:c2:
2e:6e:ef:21:9f:c1:7f:2d:28:5c:1e:c5:a2:44:f8:
a4:6d:89:ab:23:b9:b3:84:93:d0:04:10:e0:3e:26:
43:0a:c4:a0:c3:4d:35:2a:3a:76:1b:8a:44:dd:de:
81:52:f9:02:de:c6:36:a7:e9:cf:0e:b5:94:f6:d0:
c3:2a:9b:67:85:76:56:c5:a1:7e:93:10:58:a6:6b:
54:cd:90:ea:f2:4c:9c:34:c6:60:e3:8d:e2:12:9d:
aa:e2:45:d3:f2:fd:b5:1c:9e:0a:98:d7:d5:e2:24:
4a:e2:ef:56:5f:a7:17:ec:a5:fe:76:93:b2:28:de:
3c:5a:5d:e9:ec:79:f4:2a:b8:51:db:bf:38:77:cc:
42:45:75:8a:d0:cc:af:cb:d5:2a:0d:c4:6a:cc:a9:
32:9b:14:5f:93:98:01:21:0d:f5:d4:38:85:a1:9b:
25:18:28:15:ea:69:2b:ac:32:9e:e1:40:d4:40:f1:
52:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:58:EF:5D:B2:CE:11:F8:4B:40:6A:65:08:32:01:8A:73:A0:82:A6
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:32b::/48
Signature Algorithm: sha256WithRSAEncryption
39:4e:37:98:0d:d7:5a:08:6c:1b:ac:e2:3c:fa:d9:46:5d:f7:
34:d6:d0:a8:f7:06:dc:58:00:d1:f6:19:d8:1a:88:47:21:45:
dc:28:ce:61:ee:ec:96:87:c8:da:9d:e1:e1:d9:f7:aa:78:27:
98:55:fd:0c:44:4d:73:a2:08:46:0c:20:6c:3f:50:80:db:a6:
59:85:f2:59:f1:dd:f2:dd:37:45:20:1e:d8:d3:53:e2:46:d0:
52:c9:5b:54:68:e3:74:49:a2:f8:9e:9a:83:9a:35:31:01:40:
23:a5:ff:1c:f8:2f:d9:30:75:2b:68:0a:1b:f6:35:f8:4b:df:
7f:83:b8:8b:f0:d6:9d:d0:66:16:a4:52:5c:d9:02:8b:cb:fd:
07:d8:b4:69:4a:a5:0a:6b:06:61:b4:a9:88:8d:e0:91:c1:88:
eb:03:a3:c6:90:f5:a2:35:9e:a2:6b:16:b0:e2:e5:d2:9e:96:
09:8d:1f:b7:2e:bc:ce:ed:76:22:c8:13:be:d1:d0:5c:83:e8:
98:26:a4:80:21:e9:b9:ef:68:dc:94:fc:f3:1a:3c:7d:26:d7:
4b:e2:10:d4:93:e3:d7:2a:8d:d8:54:bf:6e:5b:29:45:6b:bc:
71:2c:91:ea:3b:c9:1d:ec:19:5b:df:f9:d6:57:a1:43:2b:c7:
13:ca:67:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org