Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3334623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: e4KnStJF992wcEdtw+fpYoSSPD21V9j8AbhTBQcf99I=
Subject key identifier: 9B:A3:48:9C:D8:63:66:31:FB:12:94:86:7E:8F:62:F9:2B:A9:A4:C1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1FBB116BF7910336B27FFAC9F1FC96DFF80064AF
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:22 +0000
ROA not before: Mon 26 Sep 2022 10:55:22 +0000
ROA not after: Mon 25 Sep 2023 11:00:22 +0000
asID: 59282
IP address blocks: 2400:d680:34b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:bb:11:6b:f7:91:03:36:b2:7f:fa:c9:f1:fc:96:df:f8:00:64:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:22 2022 GMT
Not After : Sep 25 11:00:22 2023 GMT
Subject: CN=9BA3489CD8636631FB1294867E8F62F92BA9A4C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a0:96:73:31:d5:ba:7e:44:39:f6:16:21:9a:
de:77:85:ed:5e:7e:0a:84:e8:a1:e0:6d:0d:db:5d:
4b:05:e2:0b:ae:c5:ac:94:e0:71:a3:c8:a7:f4:32:
b8:3c:92:ee:3c:a6:f0:63:be:ed:f9:25:7f:22:39:
13:3c:bc:d1:4c:6d:96:2d:f6:b0:0e:f3:6b:1d:18:
41:74:cf:d2:83:09:a8:f5:d3:48:90:af:55:dc:da:
df:33:3a:52:22:e2:e6:c5:38:db:ea:de:f7:d0:c8:
76:09:c6:25:fe:c4:44:f4:10:1e:f5:32:80:6a:a7:
a2:88:00:c9:9d:34:47:ad:11:23:77:c6:81:22:4b:
2f:c7:34:f4:14:75:08:68:ca:f7:12:ab:5f:bf:c6:
16:9c:54:b4:90:3f:64:b5:c8:90:f0:08:f8:ea:b1:
42:06:78:7d:8c:f9:d7:6d:c3:f5:ae:6e:e3:10:a2:
e9:b2:22:b6:00:7c:19:be:20:ee:ec:f6:81:2d:4f:
1b:47:f9:f9:05:0f:88:86:f5:a4:22:d3:1a:a7:c2:
b4:d8:6b:90:5c:af:aa:6c:ed:ea:bc:57:25:1d:20:
aa:07:95:ea:77:28:59:ba:8c:da:3e:46:91:a9:21:
34:53:35:fd:e2:43:6d:a6:be:86:3e:f1:ad:be:d9:
76:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:A3:48:9C:D8:63:66:31:FB:12:94:86:7E:8F:62:F9:2B:A9:A4:C1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:34b::/48
Signature Algorithm: sha256WithRSAEncryption
c7:d2:4c:93:84:46:b3:84:41:9d:2b:53:26:c2:06:35:e6:69:
e2:bb:be:78:4a:f4:71:b6:be:97:2d:e4:25:b5:22:b2:8d:e1:
5a:9e:76:6b:7d:0e:91:6c:24:2e:69:27:4e:14:6b:6f:f9:32:
1a:c9:5a:d0:e0:6e:b2:d9:70:55:b4:58:60:14:3f:3f:29:de:
60:d3:7a:5f:fe:f1:44:32:78:f8:46:d4:86:61:e8:4b:08:18:
ed:27:e0:83:32:51:15:25:c7:29:18:93:16:fa:e1:d5:bc:90:
6d:59:0e:dd:0b:77:c3:0e:74:88:cd:c9:0e:18:62:66:88:78:
d4:db:a5:ae:db:3b:00:59:78:07:8f:4c:08:35:2a:7e:9c:a8:
93:87:79:6d:c5:ab:9e:fb:da:1b:d6:82:14:7d:01:b3:42:d6:
8e:60:6b:0c:1b:d7:0e:08:c5:57:66:44:63:d0:c4:61:5b:06:
80:e7:81:0e:db:8c:1b:90:85:ff:41:bd:7a:89:ee:64:5b:d3:
58:32:fb:e4:bb:aa:56:5b:d3:35:8c:9f:9d:f4:4c:00:cf:fb:
75:86:b6:04:20:02:d4:d9:70:48:d1:e4:cb:3f:fb:3e:e7:f6:
a5:a9:56:9a:6a:eb:c3:40:48:cb:1a:91:44:88:75:09:e3:8f:
11:fd:d3:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org