Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a33333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: +S7TfzGHG4Gucw/667sIWweLQ1rtJilcGwhvpzwb2f0=
Subject key identifier: C1:84:62:38:D1:4A:52:4A:B9:C1:E3:F1:17:3F:F8:4D:74:B2:F2:48
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6E5E288C7EBC8BC8D52FF08BC397183853EAE5C8
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:08 +0000
ROA not before: Mon 26 Sep 2022 07:57:08 +0000
ROA not after: Mon 25 Sep 2023 08:02:08 +0000
asID: 59282
IP address blocks: 2400:d680:33::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:5e:28:8c:7e:bc:8b:c8:d5:2f:f0:8b:c3:97:18:38:53:ea:e5:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:08 2022 GMT
Not After : Sep 25 08:02:08 2023 GMT
Subject: CN=C1846238D14A524AB9C1E3F1173FF84D74B2F248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:98:e6:a0:9b:75:be:32:d2:55:fb:0c:cf:b6:
d2:a7:cb:55:04:1f:46:a5:5b:c9:6c:f4:7f:75:76:
e4:13:5a:3a:dd:00:83:e6:ee:47:48:66:25:1f:db:
d2:6d:6d:29:d2:20:5c:9f:b3:df:f5:f7:be:20:ca:
36:65:33:2a:df:f2:37:9e:ef:24:88:75:2e:52:90:
74:6a:e7:9e:e7:f5:4e:91:51:1b:16:fc:aa:7a:3f:
b4:37:01:0e:a1:d1:40:53:f6:22:ed:07:8b:f4:74:
77:df:91:76:8e:35:60:d4:96:7f:81:85:25:a9:e2:
62:c9:fe:fc:81:ce:ca:f6:2d:ec:89:21:57:21:ba:
47:d8:ff:7c:35:38:c6:10:55:5c:24:ab:c5:34:7b:
3e:c7:3d:c0:f5:64:4a:74:18:a4:3e:d3:12:32:66:
10:43:4d:e5:74:e8:0b:71:9a:03:f5:0a:0b:f9:10:
dc:1c:07:5f:ea:94:86:63:d5:6f:0c:cc:9d:25:9e:
25:ef:5b:e9:90:2a:ea:b4:ad:f4:bf:e6:4d:6f:64:
89:c6:cb:1f:6b:13:83:a4:2b:1e:ac:77:52:38:dc:
cd:42:47:5d:cf:77:09:a4:48:14:65:04:8f:43:a2:
51:d1:47:d8:7b:71:81:95:ce:dc:30:64:a3:41:00:
56:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:84:62:38:D1:4A:52:4A:B9:C1:E3:F1:17:3F:F8:4D:74:B2:F2:48
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:33::/48
Signature Algorithm: sha256WithRSAEncryption
78:f1:fc:11:08:1c:b2:33:7a:fc:2e:0d:cb:59:73:d4:d0:d8:
c9:f8:9c:8d:21:6d:2e:00:c4:dd:4a:63:aa:2f:0d:a6:e1:dc:
f6:8c:7c:d6:77:83:98:92:6f:12:cc:73:ed:b9:13:81:58:ce:
48:0e:81:bd:a1:1d:f4:09:91:36:76:b3:c4:6e:24:49:12:e3:
fc:c5:a4:20:52:71:06:4f:bc:c8:62:1b:17:99:3d:3b:ee:54:
54:09:63:a7:4a:4e:75:57:f4:18:b8:14:0e:c7:f6:9c:87:5b:
99:87:e2:0b:30:ae:ec:79:08:59:bf:d6:1e:ed:13:84:63:11:
71:b5:e1:98:2a:8d:3d:45:24:38:ab:95:55:21:1b:ed:05:45:
65:f1:0e:71:fa:39:50:5b:36:d9:3e:cc:06:d1:be:85:8e:7c:
56:7b:ea:8d:0a:d2:ba:a5:b8:9c:5b:3d:95:f5:a7:d7:f6:d0:
bf:a3:c9:a8:b9:55:44:f6:e4:8c:31:52:cc:06:ff:f0:01:bf:
5b:53:de:c3:73:9d:cd:6f:2e:be:63:f7:54:89:8e:19:61:de:
64:d6:e6:95:72:6d:53:0e:ea:50:22:21:58:3b:cc:d0:45:d3:
cf:d4:36:8b:f4:54:b0:02:33:38:7e:ff:24:a5:86:43:15:ab:
af:2b:74:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org