Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3336303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: DGsPv70MWnuOErcckl7BxL2Sr8WyCHNIHk6f4xbkF/s=
Subject key identifier: B0:C6:D0:23:D2:74:6E:5E:1A:A3:EF:AE:EA:4A:DA:BF:A1:77:D6:0F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0CD27FF9CAC342FCE30A9B7DA8722EC5FF82A724
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:42 +0000
ROA not before: Mon 26 Sep 2022 10:55:42 +0000
ROA not after: Mon 25 Sep 2023 11:00:42 +0000
asID: 59282
IP address blocks: 2400:d680:360::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:d2:7f:f9:ca:c3:42:fc:e3:0a:9b:7d:a8:72:2e:c5:ff:82:a7:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:42 2022 GMT
Not After : Sep 25 11:00:42 2023 GMT
Subject: CN=B0C6D023D2746E5E1AA3EFAEEA4ADABFA177D60F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:02:cb:e9:dc:ca:36:97:b7:a3:be:06:0e:bc:
89:65:0a:f6:86:71:40:87:29:e9:43:e5:3e:d8:15:
2d:fd:4f:09:88:1b:9b:bd:db:5a:37:d4:2d:0e:b2:
f3:fc:48:c6:f4:12:0e:3b:17:e2:a0:82:de:08:59:
f5:2c:15:76:dc:c6:ac:1f:c2:11:9a:7b:e5:d9:84:
13:31:a0:b2:3a:74:da:37:2d:2b:6d:20:35:9e:22:
2e:1e:50:bd:40:d0:d8:5c:80:5b:23:b2:95:1d:a6:
9e:47:df:87:21:d6:d2:30:c5:b6:60:43:78:36:12:
eb:bf:19:19:39:b0:35:8e:76:1b:d2:11:3d:9f:a3:
4e:f3:55:1c:af:8a:ed:d5:74:61:fd:aa:35:cc:b2:
01:39:0a:3d:53:3e:21:61:65:8c:8e:cc:59:33:04:
a3:b0:d8:d7:3c:16:1c:0e:48:4e:80:0f:b2:c6:85:
70:74:59:4c:5f:a9:a8:fc:ad:58:11:92:8e:55:9b:
23:cc:f9:94:90:76:7d:05:f6:51:4f:3d:7c:5f:b4:
2e:75:2a:96:68:8d:0e:76:d2:0f:80:14:0d:e6:03:
88:e3:4e:62:7f:9e:4f:50:ee:a1:57:ff:50:8d:67:
6d:d3:3b:e9:9a:46:cb:4b:99:63:24:cc:b2:2d:63:
f0:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C6:D0:23:D2:74:6E:5E:1A:A3:EF:AE:EA:4A:DA:BF:A1:77:D6:0F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:360::/48
Signature Algorithm: sha256WithRSAEncryption
68:9a:07:14:ba:d6:92:63:1f:ce:bd:72:dd:1d:62:b0:76:18:
6f:59:71:81:d4:ec:12:0e:54:8e:3b:30:49:a2:31:5d:af:28:
f1:e0:5d:95:d1:7c:61:f1:21:fe:05:28:a9:8f:1e:da:63:73:
92:6a:a2:db:57:f0:26:d2:46:81:9c:09:c8:71:7c:7a:b8:99:
42:b1:8b:42:67:84:1d:53:d2:71:4e:31:b8:56:5e:84:67:d1:
73:5d:db:9b:4f:fd:93:b9:ef:dc:5d:dd:2a:14:57:d1:a5:41:
7d:2b:7d:35:bd:2b:9a:67:02:78:44:86:96:3f:b3:98:26:ea:
7b:76:c1:07:b8:5a:85:1e:c8:34:e6:9d:81:97:3e:c1:44:15:
cb:8c:b8:a6:77:99:db:2f:b3:6d:a7:ae:fb:08:bf:40:7e:dd:
db:2a:7a:39:3e:2e:45:db:57:80:93:e0:5c:78:4f:7b:ef:11:
04:6b:14:e8:6b:75:80:da:ed:b5:d2:eb:5a:af:cc:a9:5a:bc:
42:72:bb:61:76:d8:26:e4:01:12:d4:e5:9c:f3:a7:7a:b4:3a:
38:f2:ee:9f:4e:5a:2d:59:4a:5f:74:9e:7f:6e:d5:83:78:c5:
ae:d0:74:77:30:7b:73:96:37:75:04:73:29:b7:f7:95:fe:38:
5f:2a:73:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org