Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3336383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: +VoQPeRwMZj9ZxvHz2G97SgMfEbApivZLVB7Bf5qLw4=
Subject key identifier: 75:44:AE:CA:51:D1:12:E3:AF:0D:C4:C9:67:D5:18:56:A1:9B:36:31
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5D0182BEF893C563FA4E299F761D336D4668E135
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:48 +0000
ROA not before: Mon 26 Sep 2022 10:55:48 +0000
ROA not after: Mon 25 Sep 2023 11:00:48 +0000
asID: 59282
IP address blocks: 2400:d680:368::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:01:82:be:f8:93:c5:63:fa:4e:29:9f:76:1d:33:6d:46:68:e1:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:48 2022 GMT
Not After : Sep 25 11:00:48 2023 GMT
Subject: CN=7544AECA51D112E3AF0DC4C967D51856A19B3631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b7:78:ab:81:c2:09:d1:2b:f5:3d:5e:88:86:
39:83:85:62:6d:9b:f4:3a:be:d2:91:28:7e:f8:d2:
b5:a8:38:0d:52:86:14:33:81:4c:85:76:ac:f9:3a:
17:6c:bd:25:4d:7e:74:ed:09:bd:c4:43:f2:ee:90:
58:27:01:64:ef:04:3f:43:9d:95:0e:e8:79:dd:20:
07:36:5a:9b:cf:a4:40:4b:a2:ac:e6:a2:40:1f:11:
ad:61:12:7e:8f:59:2e:90:5a:8c:0b:e2:6c:4a:94:
1d:f6:dc:93:66:ee:54:65:5d:c3:9c:12:a9:b7:da:
79:6a:a5:e3:28:a3:5d:2a:65:4e:98:6d:4e:d8:9b:
1b:ed:37:54:2e:e6:f7:43:7d:5b:1b:06:09:3d:a4:
bb:ee:a6:fe:6f:9d:8f:e4:42:81:05:8a:f1:50:36:
be:3d:d2:cd:6b:0f:a6:0e:63:62:1c:4a:86:f1:9d:
24:31:56:97:4c:f4:ec:e0:b4:8d:2f:92:cb:70:5f:
09:d2:3c:e1:e9:39:c7:52:ac:de:b4:07:95:28:ac:
f0:b6:db:2a:e8:5b:60:95:ea:66:4e:4a:0e:dd:60:
f4:44:c6:65:f8:b2:ea:a5:88:91:e9:a1:56:d1:cb:
2a:19:99:76:65:a6:0f:e9:bc:29:1f:b6:56:f4:cf:
02:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:44:AE:CA:51:D1:12:E3:AF:0D:C4:C9:67:D5:18:56:A1:9B:36:31
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:368::/48
Signature Algorithm: sha256WithRSAEncryption
97:4c:c9:34:aa:c8:38:fa:84:d2:a1:a6:07:18:b5:47:56:45:
93:e8:ad:c9:0c:06:40:05:e3:b6:eb:94:b4:5c:aa:c2:4c:71:
03:6f:64:36:c2:f3:a4:bb:85:eb:aa:ca:0d:8f:6e:fe:65:a3:
d7:76:0c:fc:f6:a8:5b:22:63:0b:49:0c:9f:b7:37:e5:f5:02:
7f:d1:3a:23:ca:71:da:6d:a4:de:a0:07:11:30:4d:dc:2f:11:
fe:3f:f7:d8:70:5f:e5:62:e4:1d:d5:aa:88:ca:c7:f9:fe:33:
2d:c5:d7:e7:d2:20:05:f4:80:4f:38:0a:79:fa:04:b0:8e:93:
81:25:54:45:38:96:31:ee:20:5c:d5:2f:cc:97:0e:da:66:33:
fd:21:01:ad:00:82:f3:c1:90:1a:dd:e3:c3:8b:e5:7d:21:9b:
95:4b:fe:4d:f7:5e:30:2c:ef:ac:07:5e:75:b2:68:4d:47:75:
f7:82:20:d8:3e:4c:83:30:d7:e5:df:8c:ba:bf:5c:87:85:c1:
3d:5b:43:60:78:99:94:37:ff:dd:2c:0a:e3:48:b7:55:fa:7b:
f0:e7:c1:bb:fd:b1:ed:20:2d:a5:10:cd:2b:c9:a3:6e:7b:be:
e1:2e:23:94:b5:59:4f:8b:3b:9f:11:42:11:b8:79:2d:2d:02:
bd:c9:54:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org