Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3335323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: YHmaRpv8Z4K+ofqT/VFjLVZltMazPVOoscwOYTtPFDE=
Subject key identifier: A0:61:0D:B8:31:EF:67:96:BE:FB:89:12:E9:52:18:1D:7B:38:96:14
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1D997416E1E3B877571DB947C2415FD64F4117E7
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:30 +0000
ROA not before: Mon 26 Sep 2022 10:55:30 +0000
ROA not after: Mon 25 Sep 2023 11:00:30 +0000
asID: 59282
IP address blocks: 2400:d680:352::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:99:74:16:e1:e3:b8:77:57:1d:b9:47:c2:41:5f:d6:4f:41:17:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:30 2022 GMT
Not After : Sep 25 11:00:30 2023 GMT
Subject: CN=A0610DB831EF6796BEFB8912E952181D7B389614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:6e:a6:f2:40:00:13:81:9a:b0:8d:72:23:40:
f4:13:f9:22:67:5c:a0:9c:ed:20:a0:74:33:d6:5f:
d0:27:a7:4f:23:02:9d:b0:84:c7:7e:84:e8:93:2f:
04:43:f5:5a:26:b1:91:ef:5f:f5:c1:52:28:db:c0:
45:07:c7:cf:27:b7:e5:1c:82:4e:af:da:11:b2:5f:
39:a3:72:ac:4a:ac:2b:3a:ca:c3:eb:f3:24:d8:fa:
6c:bc:01:dc:3a:84:85:4c:a6:72:88:fc:ca:9d:3c:
8c:12:4e:4a:75:18:dd:cd:24:8b:84:2e:31:a1:aa:
5b:4e:25:82:56:8d:bf:23:32:53:d1:7f:dd:2f:b5:
99:f8:4b:12:50:da:d1:72:44:92:19:7e:fe:80:d2:
69:5f:24:3a:9d:4c:05:23:72:e6:23:f1:27:ac:3d:
26:8f:c6:22:d4:01:22:d6:4c:7c:4c:74:91:e6:1b:
85:82:14:eb:18:cd:7c:86:b1:b8:33:53:a3:64:c3:
a3:d9:81:79:04:33:97:0f:6a:85:ea:16:38:15:33:
84:69:c4:93:ef:bb:c9:63:ef:53:0c:5a:b5:dc:cf:
9d:1f:a7:10:3d:a7:52:69:aa:3a:42:81:bb:b6:d1:
c0:8a:18:de:89:08:2e:8e:d5:70:04:0e:3a:be:f4:
dd:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:61:0D:B8:31:EF:67:96:BE:FB:89:12:E9:52:18:1D:7B:38:96:14
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:352::/48
Signature Algorithm: sha256WithRSAEncryption
bf:71:15:91:86:4e:a9:48:66:86:84:a5:03:4f:f9:08:20:da:
0b:a2:fd:a3:a9:58:10:8f:5f:9b:60:d5:0a:0c:4f:2b:4d:82:
a9:a3:92:e0:3a:21:4e:3f:88:95:9e:8c:98:36:a5:2c:5e:c6:
d8:e5:82:ce:52:3c:33:90:e9:69:42:55:b4:9d:bf:b2:11:91:
55:a8:d6:8f:e0:81:d3:4b:04:34:41:7d:22:18:99:eb:88:e7:
88:7d:26:3a:4a:5b:e8:3f:29:78:3d:4e:5c:e9:4f:a9:a2:0a:
c7:0f:f7:54:83:a5:6b:44:5e:40:f0:a2:46:f2:97:14:c6:69:
d0:2b:3b:b6:fc:d3:17:70:4b:c8:df:47:3d:28:e1:89:56:1e:
1d:f1:6a:95:a7:ed:a1:3f:45:66:95:d8:ab:6a:8d:8a:a1:f7:
6e:9b:7c:89:65:fd:c3:60:2c:12:eb:57:03:36:46:5e:00:02:
35:00:34:38:d6:43:97:53:73:9f:27:3d:f7:30:7b:28:06:80:
8d:ff:c4:93:22:9a:80:13:aa:26:04:87:ab:e9:08:85:7c:e0:
b1:36:e1:81:41:93:7a:f6:92:d3:fa:53:f0:0e:e3:c5:61:87:
70:c1:01:8a:d1:d1:0b:b1:e9:70:d7:c6:59:96:7f:eb:02:93:
0c:b6:9b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org