Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3334643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: wFYx9aZrvxXoOsdf23fGe1M21zuDP2r1xedKHQz2esU=
Subject key identifier: 71:EE:95:69:47:0B:6F:53:2B:87:A1:FE:0C:3F:0D:D2:77:F0:73:70
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 347DEB53914F2A8B434C7B79D5F1F9D62F7D9DF3
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:48 +0000
ROA not before: Mon 26 Sep 2022 10:55:48 +0000
ROA not after: Mon 25 Sep 2023 11:00:48 +0000
asID: 59282
IP address blocks: 2400:d680:34d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:7d:eb:53:91:4f:2a:8b:43:4c:7b:79:d5:f1:f9:d6:2f:7d:9d:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:48 2022 GMT
Not After : Sep 25 11:00:48 2023 GMT
Subject: CN=71EE9569470B6F532B87A1FE0C3F0DD277F07370
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:13:3d:ca:63:74:58:97:53:ef:39:32:dd:ed:
dd:c7:fd:db:ff:7e:21:47:2d:ad:8d:ad:f8:f3:27:
8d:2e:de:8f:56:01:4f:ac:89:ef:21:62:40:2d:71:
4c:32:0b:a6:1f:e6:be:ef:12:47:73:e3:30:6d:73:
17:b5:8c:35:c6:04:eb:fb:75:51:d2:2c:37:c5:a3:
93:5a:08:af:15:f2:9b:7c:01:d0:55:b7:8b:ba:e5:
6f:bf:a0:4e:97:8e:fc:8f:97:e4:18:79:7d:f6:56:
92:e1:3d:b0:41:16:e1:87:8a:37:0d:74:a0:e6:97:
bc:7d:ab:55:3a:41:47:c2:80:1b:ef:92:33:68:dc:
c4:99:64:a0:a3:fa:8e:ea:6e:9a:0b:ef:9a:d9:9b:
e8:40:fc:62:ec:5f:20:0e:74:56:9d:59:4b:cc:fd:
86:e4:4b:1c:3a:5f:84:d5:75:91:db:04:22:5d:c1:
db:7f:50:5f:ba:93:4d:c5:3b:e9:4b:20:fe:52:ca:
0a:1d:1f:ea:77:31:35:43:ae:46:9d:5b:f3:79:c5:
88:2c:fa:ff:49:07:d2:e0:14:30:04:41:57:61:41:
e4:67:8d:22:11:70:00:8f:a1:59:13:ab:84:30:f3:
b6:22:39:6a:3d:89:35:7d:78:45:06:b9:55:46:e8:
77:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:EE:95:69:47:0B:6F:53:2B:87:A1:FE:0C:3F:0D:D2:77:F0:73:70
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:34d::/48
Signature Algorithm: sha256WithRSAEncryption
30:77:cc:fc:f7:b9:15:4f:23:3e:3d:80:79:3e:c5:3f:56:6a:
c0:bd:ea:31:5e:2d:1b:9b:d5:58:de:4f:72:57:65:27:d8:af:
25:4c:eb:71:01:38:0b:a0:75:03:d2:de:a0:c5:80:e1:a8:28:
b9:10:99:77:43:04:03:e2:49:70:a4:08:7b:78:e5:f3:15:ea:
44:ac:c0:72:9b:a5:2e:ce:9b:63:cf:e3:56:36:0f:93:9d:0d:
7e:93:b9:48:1c:f5:5c:fc:25:3b:62:63:27:1f:0a:16:ae:e5:
22:76:d9:d8:9c:7d:6c:a3:06:e5:b9:a7:4b:3a:10:4c:5f:26:
e4:01:6c:d2:fd:11:71:42:05:72:86:58:af:af:66:85:d8:bf:
43:84:42:03:0f:6b:af:49:4e:f7:4f:17:92:f1:8d:eb:93:33:
4a:ed:47:7f:cd:8c:f4:67:87:0b:39:28:90:62:33:1f:10:ce:
eb:a9:0f:77:fe:3f:fc:05:b7:48:25:1c:ad:52:60:53:12:13:
51:d2:c7:f6:ae:04:3b:9e:96:d2:c5:8e:ab:34:ab:16:7e:dc:
9b:7a:7c:8b:45:18:25:b3:52:46:55:45:2f:ad:38:ee:1c:7b:
93:bf:79:2e:b3:0b:e2:d4:dd:0e:c5:61:c6:54:2c:35:95:fd:
10:5a:99:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org