Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3333393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 9eDetfJryDNaL12e/4kri62uyMH4PI3Rup/QdQTIsQg=
Subject key identifier: 70:BF:2D:70:DF:33:98:79:FD:F3:A9:D6:71:DA:98:69:C2:2F:62:B8
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4F81B5C35516273D632F92515CB1D3148792ED9F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:18 +0000
ROA not before: Mon 26 Sep 2022 09:55:18 +0000
ROA not after: Mon 25 Sep 2023 10:00:18 +0000
asID: 59282
IP address blocks: 2400:d680:339::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:81:b5:c3:55:16:27:3d:63:2f:92:51:5c:b1:d3:14:87:92:ed:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:18 2022 GMT
Not After : Sep 25 10:00:18 2023 GMT
Subject: CN=70BF2D70DF339879FDF3A9D671DA9869C22F62B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:41:be:0b:bf:e1:89:44:6c:85:6e:ab:4d:85:
9a:f4:f7:2d:01:87:15:8a:e9:51:dd:d8:0f:2a:17:
71:8e:24:09:11:10:f6:9f:08:ab:a5:cf:d7:69:2b:
d3:d3:cc:ec:60:d8:87:e8:44:cb:98:f1:48:a6:12:
4e:92:dd:42:42:6c:c3:c1:32:1a:98:97:4b:30:ad:
b5:6f:eb:13:bf:6a:91:7f:9a:30:20:e6:fd:ae:85:
d9:55:b1:42:73:96:79:36:ef:76:db:52:e6:b5:30:
41:83:06:15:8a:62:26:ea:bf:88:ff:27:14:f4:fa:
7f:ba:c6:e6:89:e6:03:bb:64:b8:4b:59:4b:1b:ee:
53:84:eb:4c:67:ca:4d:25:2d:4f:06:29:e3:2f:68:
31:b7:7a:eb:6a:5e:95:f1:e8:36:53:22:2f:0d:8a:
cc:b7:c1:7f:48:4a:48:eb:cb:6b:0c:ee:7a:3a:8c:
ae:20:8e:c7:ef:61:c0:9e:22:8f:b9:83:72:ff:79:
35:94:a9:25:72:97:c9:45:d3:c0:57:30:0c:9f:47:
d5:2a:12:d1:91:0e:b2:96:05:97:0b:f1:d4:94:09:
20:dd:f6:87:83:0b:b5:6b:e7:0b:d1:60:21:5f:0f:
82:ee:db:cc:f5:86:87:08:c1:c4:dc:bb:f9:3d:e8:
55:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:BF:2D:70:DF:33:98:79:FD:F3:A9:D6:71:DA:98:69:C2:2F:62:B8
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:339::/48
Signature Algorithm: sha256WithRSAEncryption
2a:5d:d9:e6:d7:b4:3e:f6:07:eb:83:81:a4:b9:cb:69:d4:97:
cd:9e:80:fe:1b:24:7f:18:26:80:f4:4f:92:22:b3:cb:ef:15:
aa:c3:df:63:5c:53:38:54:f9:91:83:dd:2f:ca:5a:74:c7:ef:
62:03:56:b0:a8:a9:b4:88:dc:8b:fc:84:b8:80:a9:65:40:b9:
85:d0:62:37:f4:61:d9:f8:61:e4:d1:09:dd:d0:7a:42:9d:e6:
a5:33:55:db:be:9f:b2:54:31:a1:06:07:c5:91:81:85:45:36:
fe:f0:d8:65:63:fb:53:71:7d:84:56:5f:20:aa:bc:d3:51:06:
e1:e3:66:ec:60:ff:fa:0d:e3:4f:e8:d7:99:1c:39:70:7e:1b:
ba:c2:6a:52:75:c7:9a:35:7a:14:66:eb:51:c1:84:59:8c:30:
7e:a6:4f:15:4a:46:57:5d:15:fe:4a:d2:d4:e8:34:ae:c9:93:
32:05:b4:04:d0:2e:80:f0:72:20:ed:ce:34:27:44:1b:75:df:
6a:d6:0e:1f:0f:6d:c4:7a:04:b5:0c:89:bc:aa:52:47:25:15:
a1:09:08:73:e3:c8:1b:48:81:2f:54:8f:39:e7:9c:9e:39:cf:
62:06:f8:34:14:3e:55:a5:dc:23:ca:60:77:a7:f6:71:9f:68:
6d:f8:96:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org