Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3334353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: S48pbCWRRpzW2wtqV17RFu3b1Y+TSpsDrYtE83ch3a4=
Subject key identifier: 14:E1:DA:62:74:9F:3E:6F:CA:62:D6:D7:01:99:C8:0F:49:02:57:D0
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 04AEF254A29E5BB04833132329C7E76B74AD52F6
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:46 +0000
ROA not before: Mon 26 Sep 2022 10:55:46 +0000
ROA not after: Mon 25 Sep 2023 11:00:46 +0000
asID: 59282
IP address blocks: 2400:d680:345::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:ae:f2:54:a2:9e:5b:b0:48:33:13:23:29:c7:e7:6b:74:ad:52:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:46 2022 GMT
Not After : Sep 25 11:00:46 2023 GMT
Subject: CN=14E1DA62749F3E6FCA62D6D70199C80F490257D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1f:bb:fb:5d:8e:dd:41:79:ee:37:1b:d6:33:
48:99:f3:76:9e:f3:24:51:a4:07:af:d3:22:d4:1b:
2e:91:06:9f:43:d3:ba:3e:09:d6:7c:a5:fd:82:e9:
68:d3:84:e5:38:a6:eb:45:a6:1e:b3:e0:53:90:28:
e7:d2:47:96:41:f0:5d:90:e2:0f:90:b3:96:f5:6a:
33:32:13:11:39:27:1a:c2:81:91:aa:95:6e:20:1e:
b6:f9:ec:90:b6:09:7e:f5:86:14:23:a6:9a:cf:ef:
f0:01:d1:34:c6:ec:e7:04:3b:ea:76:06:4f:46:57:
9e:2e:ca:fc:a0:19:73:c4:05:44:de:ef:7f:b8:28:
fc:27:d0:a1:86:ad:7d:db:3e:59:4c:3f:af:64:49:
55:65:22:da:6a:f9:7e:e1:92:94:12:f3:7c:31:79:
fc:0d:cf:7e:99:59:0e:62:81:ed:bf:db:8e:c2:4a:
6c:e1:a7:b5:96:88:fe:5e:0a:8f:c2:ef:7f:29:35:
2f:c7:4d:39:6f:8f:dd:d2:95:69:6c:4e:d3:87:6d:
d8:19:fc:91:88:69:2b:00:6f:e2:ec:25:a8:e3:ba:
1b:6b:4f:ed:e3:41:54:2e:09:93:f2:55:e5:34:fb:
b1:76:f4:6b:e4:e3:30:46:14:84:88:aa:f7:65:81:
5b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:E1:DA:62:74:9F:3E:6F:CA:62:D6:D7:01:99:C8:0F:49:02:57:D0
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:345::/48
Signature Algorithm: sha256WithRSAEncryption
2b:e9:a0:7c:3b:4c:67:29:94:d6:97:09:27:e6:ad:d9:85:c4:
a7:e1:54:88:be:3c:66:48:82:00:2c:dc:74:57:99:d6:34:50:
a0:da:0c:84:f7:0b:aa:e1:11:51:45:97:28:0b:8f:cb:17:b7:
77:7c:b9:56:5e:a7:b6:69:10:8f:95:f4:70:4e:81:cd:f7:1b:
97:a8:d7:59:5c:2b:7f:9b:36:10:f8:ef:7a:7c:bc:5c:21:dd:
75:36:03:61:35:bb:85:0f:65:07:6f:23:ae:cc:50:3b:7c:da:
0c:c7:db:a7:dd:fd:1d:97:29:5b:db:79:b5:a8:33:81:f9:df:
b0:67:75:49:e4:0f:cd:f2:92:a0:41:f6:b8:3e:fc:d1:8b:d1:
f1:70:22:37:3a:ba:21:a7:1e:ed:95:22:c3:ff:ef:54:df:e0:
df:3a:1e:b3:4c:d0:95:06:fa:9a:d7:23:f7:1f:da:1a:1d:26:
0d:3f:e8:d3:6b:fa:e1:aa:2f:10:32:38:a9:e2:1d:be:a2:58:
07:11:92:a8:f5:92:0c:91:7b:c7:36:7a:f2:c0:c4:c3:3b:40:
e0:f4:ba:37:3a:6d:6c:6c:f5:de:11:2e:45:9e:6c:23:fb:6d:
42:c8:bc:ba:7e:4e:a9:2f:04:54:88:1a:a2:84:fc:81:23:4e:
b2:7f:56:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org