Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3335333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: hFA3qQYdqbDxWDYmt96l4n+qcNj5ve8gNlHGWnK7Vso=
Subject key identifier: EC:BE:71:75:7D:B6:E2:76:70:E9:0D:75:62:5C:0A:3D:DB:5A:5A:C5
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5D53797D470484828EECE8B7CDAA770E2A4AD097
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:35 +0000
ROA not before: Mon 26 Sep 2022 10:55:35 +0000
ROA not after: Mon 25 Sep 2023 11:00:35 +0000
asID: 59282
IP address blocks: 2400:d680:353::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:53:79:7d:47:04:84:82:8e:ec:e8:b7:cd:aa:77:0e:2a:4a:d0:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:35 2022 GMT
Not After : Sep 25 11:00:35 2023 GMT
Subject: CN=ECBE71757DB6E27670E90D75625C0A3DDB5A5AC5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4c:ec:a3:f2:71:99:a2:19:e0:82:c5:5d:cd:
b9:25:aa:cc:9f:9b:a9:13:5f:07:7c:52:98:54:e3:
57:f3:ca:4e:56:5d:de:5f:b2:c9:1e:10:ff:10:f9:
69:13:a3:eb:98:4e:76:54:cd:bd:89:2d:00:87:9f:
b0:01:fd:c2:13:06:1e:df:a4:31:6e:5b:38:41:9e:
bb:90:6d:b7:38:72:21:fa:28:c1:42:a5:f8:07:2a:
bd:96:3a:14:4e:62:b6:ef:d6:fc:1e:a9:47:59:fb:
e5:4f:0a:e7:4c:6d:9f:2b:0e:b0:76:da:c3:c8:d4:
37:bb:d9:36:55:b0:78:a6:2e:74:23:14:e2:c9:2c:
a2:bf:47:38:eb:bc:3f:9f:73:ff:a1:40:84:60:e9:
b4:b0:eb:83:ba:f8:64:87:fe:0a:9f:47:37:21:b3:
f4:70:b0:50:19:47:f3:16:93:92:a0:05:c4:d8:7c:
75:d6:9c:69:42:ec:2a:77:0a:0f:53:1c:d8:54:58:
bb:e5:d1:22:ec:37:c0:23:c4:3c:38:e8:ae:00:3c:
a5:2a:da:fd:7f:cd:63:b9:96:52:43:87:15:b1:2a:
3f:48:b3:8d:ce:80:d3:0d:a5:72:1c:00:ee:12:fd:
7b:d8:af:b3:4a:56:c5:4e:97:b6:43:21:db:0e:14:
2f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:BE:71:75:7D:B6:E2:76:70:E9:0D:75:62:5C:0A:3D:DB:5A:5A:C5
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:353::/48
Signature Algorithm: sha256WithRSAEncryption
b9:dd:25:23:7e:c9:86:8b:b9:3e:95:ad:48:87:08:72:a9:53:
4c:c3:d5:ce:51:b2:7d:ae:e3:2e:2d:57:64:bd:e7:b1:ae:d7:
b2:f0:f2:84:15:a8:26:f9:e3:8d:6d:1b:b2:a4:05:af:7c:a1:
b2:3f:8f:d1:bc:20:f2:7f:bf:bf:3e:a2:1a:67:d4:0b:59:24:
43:5e:b1:00:45:d8:03:0e:d0:43:f4:a3:5d:6f:3e:89:68:64:
96:69:59:9a:60:da:84:98:b3:32:f3:08:f1:8d:89:ce:5b:f1:
ae:e0:50:24:ac:02:ba:9a:79:3d:18:9b:94:a7:98:7f:9a:cd:
59:f4:cf:ea:3e:8f:bc:1c:53:39:20:ef:ce:ed:34:d1:e6:0b:
1e:aa:cc:f7:c9:cb:9e:e9:a9:cb:91:df:1e:27:c1:b8:06:f7:
1a:99:65:e4:03:f0:b0:e5:e4:21:55:a6:41:49:b3:89:42:1c:
a7:d4:cf:23:23:9c:3e:08:03:70:ee:9e:11:ba:5d:c3:0d:d5:
bd:95:e3:42:91:a5:02:63:8a:98:72:33:0e:57:5e:5a:3f:58:
c6:04:d1:d7:e8:bf:18:2b:db:4f:70:6b:3c:ee:2b:fe:4b:c6:
ae:01:93:e1:6a:8d:af:7a:8e:d8:1e:f2:d4:eb:7d:f4:b0:58:
95:8e:06:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org