Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3333643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: sF92M2E04Y1Od9Ftey75AtyWtn3k0DAM3jQ39KGX2vQ=
Subject key identifier: 27:F4:DE:7F:1B:E9:6A:8A:80:E2:66:61:52:A0:45:DD:F3:58:27:DF
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 48FF15F8D1478C73F627042EEB6E43EC127C4313
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:02 +0000
ROA not before: Mon 26 Sep 2022 09:55:02 +0000
ROA not after: Mon 25 Sep 2023 10:00:02 +0000
asID: 59282
IP address blocks: 2400:d680:33d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:ff:15:f8:d1:47:8c:73:f6:27:04:2e:eb:6e:43:ec:12:7c:43:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:02 2022 GMT
Not After : Sep 25 10:00:02 2023 GMT
Subject: CN=27F4DE7F1BE96A8A80E2666152A045DDF35827DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:68:5f:ae:da:3a:60:a1:9a:e7:82:79:d0:88:
73:73:34:c5:c6:e4:af:87:e6:ef:9a:fb:12:73:f0:
1b:83:18:83:d0:a8:56:b7:d7:f9:27:74:18:a3:62:
54:bd:11:65:8e:77:91:40:aa:3c:6f:2d:52:90:da:
25:f2:08:49:f2:3e:9e:75:51:16:cb:f9:cf:6d:0f:
ff:b1:64:de:39:34:ca:ce:36:47:38:f8:1c:d9:65:
72:93:d6:0b:8a:1a:ca:79:95:01:b1:a8:15:0b:78:
7a:9e:4f:80:d4:06:16:02:77:3a:e6:cd:b4:e0:8b:
49:05:ab:55:8d:85:6b:9f:5d:36:0e:d0:b8:76:a7:
36:39:14:ca:f9:13:b1:1e:18:74:94:7f:ce:94:8d:
f5:a8:c9:e2:cf:1f:19:bb:c0:8b:8a:3d:5e:e8:73:
db:69:ce:dd:89:20:9f:0d:7c:23:b6:58:49:ff:0d:
84:bb:d0:9b:7c:9f:73:41:48:dd:61:3a:f2:7b:41:
5e:5a:7e:ea:e5:da:2d:01:48:80:b2:be:1a:3a:0c:
ed:6b:b4:eb:35:e6:1a:d6:92:0d:fd:aa:6e:a6:e6:
1c:19:4e:e7:a0:d8:87:7a:b6:ff:79:e8:33:59:fe:
1f:26:2b:f4:ff:45:6c:0a:b0:c5:0d:dc:54:e0:02:
71:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F4:DE:7F:1B:E9:6A:8A:80:E2:66:61:52:A0:45:DD:F3:58:27:DF
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:33d::/48
Signature Algorithm: sha256WithRSAEncryption
61:d8:4d:91:42:39:dc:5e:2d:ac:54:dd:9f:a6:ff:f7:cc:c6:
45:4e:f6:4d:28:c7:05:04:8b:c1:c0:27:d0:2c:0e:b4:8d:0c:
db:2e:40:27:2b:bb:39:be:e4:35:dd:d3:27:c6:4d:16:d3:86:
72:b0:e1:b0:96:54:0a:0a:d1:4b:0b:75:d2:fc:f3:63:8a:89:
3a:3a:9b:54:70:70:42:03:7c:4e:cf:c9:55:77:23:9e:b0:d7:
70:4f:5a:8a:e3:3f:7c:93:09:e3:b2:a5:74:24:00:9d:7c:d0:
66:2e:c4:57:16:19:75:52:49:da:b0:e2:12:56:f5:db:07:dc:
4b:60:55:17:86:58:ff:95:2a:b1:30:20:db:2b:57:a9:1a:49:
53:5b:7d:09:b8:2a:62:b3:23:d5:89:5e:ea:8d:16:dc:f9:db:
cd:b7:b1:f4:b1:ac:a3:25:af:df:de:2c:95:30:2e:7e:a1:39:
5a:84:ca:83:b5:99:98:2e:9d:38:54:76:2a:41:13:f0:f2:91:
ce:f9:99:aa:e7:b4:bc:8e:c8:e2:2e:8d:86:86:0c:51:12:ac:
8e:f8:82:0b:20:eb:67:10:14:59:fc:aa:0e:26:0e:37:57:0f:
39:0c:b9:fd:ff:0a:d3:db:17:66:52:42:20:de:a0:01:74:30:
2e:59:2d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org