Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3335623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: meMarptfC/Ax/avXTJ58OQTfwXhzm4/tI1YiJS0dfKQ=
Subject key identifier: C3:65:FA:F6:03:46:17:FE:FF:F9:B7:9F:D8:E4:85:52:43:EB:2A:84
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 41EB9A7ADAABE76A59DA9C7E09CF35672DA66745
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:51 +0000
ROA not before: Mon 26 Sep 2022 10:55:51 +0000
ROA not after: Mon 25 Sep 2023 11:00:51 +0000
asID: 59282
IP address blocks: 2400:d680:35b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:eb:9a:7a:da:ab:e7:6a:59:da:9c:7e:09:cf:35:67:2d:a6:67:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:51 2022 GMT
Not After : Sep 25 11:00:51 2023 GMT
Subject: CN=C365FAF6034617FEFFF9B79FD8E4855243EB2A84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:01:78:fb:2d:c8:81:88:e9:fe:fb:e1:ad:25:
ec:f2:98:2a:68:92:69:29:55:4d:71:a3:1d:0f:3c:
18:15:9c:e8:53:4f:0c:8f:76:53:51:ab:f2:fb:da:
fa:94:72:b9:6a:fe:6b:14:18:23:6f:ea:ba:53:d0:
dd:b8:ef:ac:57:6a:d8:d8:45:5e:a5:8a:a6:af:07:
be:50:af:4e:65:4b:f2:cc:e8:da:0e:7b:c1:04:a1:
2b:04:2d:9f:95:69:2d:72:88:c4:2b:b4:7f:1d:9d:
f6:cf:c1:a5:a4:a8:e3:5a:ca:46:7d:40:55:24:a3:
da:c6:f0:6b:ae:f3:45:f3:c4:c8:23:a6:ef:af:68:
fa:05:cb:2f:8b:ef:73:7b:ae:fd:70:ad:37:33:89:
26:62:81:16:ab:53:3e:8d:55:67:6a:31:81:f9:39:
e1:a1:9d:9f:80:4c:d8:2f:46:c1:6b:c9:fd:68:7a:
bf:11:c0:73:a1:52:13:2e:b4:60:aa:09:92:25:af:
6e:8d:b0:5a:b3:0c:22:22:41:a8:0a:f6:10:d1:bc:
fc:2f:a9:74:c3:84:6d:50:34:1e:96:ea:56:33:5b:
f8:20:ac:45:e5:d7:08:be:bb:2e:71:52:1f:11:23:
fc:55:c7:e2:e9:3a:ab:d4:9b:1a:79:e7:6f:e2:fb:
41:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:65:FA:F6:03:46:17:FE:FF:F9:B7:9F:D8:E4:85:52:43:EB:2A:84
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:35b::/48
Signature Algorithm: sha256WithRSAEncryption
18:9a:ad:14:ff:f6:8f:10:7e:97:4f:79:87:03:58:6e:ef:1c:
49:14:df:5a:fa:cc:54:04:e3:e7:c6:bf:d2:68:79:b6:21:d1:
1e:84:ad:d8:76:83:31:e8:b3:51:58:6a:c6:f1:46:2a:1a:c6:
ff:ef:2d:bc:b8:7b:19:1a:85:4d:53:43:d0:49:7f:a5:ef:41:
19:b0:1a:b1:5e:f6:a7:8b:aa:d9:2d:1e:9f:f4:82:7a:f4:04:
0c:26:bf:c4:2f:78:4f:35:88:44:a5:bc:db:14:65:1a:b1:61:
e5:36:fc:e4:28:32:8f:61:aa:ba:e6:9b:b3:e7:db:b5:a7:81:
dd:5c:0e:25:28:18:1c:46:7f:b8:84:b1:82:1a:8b:53:2e:e4:
45:32:81:97:e9:bf:d4:7b:51:a9:20:93:02:63:5b:6d:ac:80:
02:c2:ec:13:a6:bf:cd:09:11:b2:7f:58:e8:bb:3a:cf:49:e9:
7e:3b:df:9c:b8:be:ad:d6:84:a1:01:f8:b8:ab:a1:ea:57:8b:
55:e9:52:98:19:ff:9f:ea:50:39:8a:58:45:d7:25:f7:6e:1c:
78:fc:7d:8c:c2:dc:8b:f7:40:24:af:30:45:c5:7e:c3:e8:93:
31:1c:9a:69:84:87:86:7f:94:9b:e1:11:17:f1:e6:87:f7:dd:
3e:ec:0c:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org