Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3336613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 8rEcN2k8+ehIJxwaDdFSl0sEvB7Hoypv1zgxXc+wpD0=
Subject key identifier: 70:7A:C9:50:50:E1:8B:D6:8A:B2:21:8E:35:2C:AE:C9:16:47:BC:B0
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0AC2DDAFDAD01E5FBED55DC993AF9FD0397702B1
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:48 +0000
ROA not before: Mon 26 Sep 2022 10:55:48 +0000
ROA not after: Mon 25 Sep 2023 11:00:48 +0000
asID: 59282
IP address blocks: 2400:d680:36a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:c2:dd:af:da:d0:1e:5f:be:d5:5d:c9:93:af:9f:d0:39:77:02:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:48 2022 GMT
Not After : Sep 25 11:00:48 2023 GMT
Subject: CN=707AC95050E18BD68AB2218E352CAEC91647BCB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:d3:78:8a:cb:f4:a5:ee:84:27:a0:d5:b5:6a:
bf:db:f5:ca:55:61:92:47:45:58:d4:3f:5b:e4:b6:
2a:30:4e:e1:27:2f:b8:85:52:c3:ab:3c:6e:bb:2b:
20:81:79:66:65:62:81:7d:18:54:9b:4e:e5:76:d3:
9c:76:f0:fd:d1:de:c2:2f:c2:b5:98:5e:41:68:be:
84:c2:b5:87:27:ba:bc:1e:21:3b:ba:2e:47:91:2f:
30:c9:04:e7:ba:0c:55:c1:55:08:df:45:46:cc:d4:
67:7c:f4:ab:27:0c:a7:d7:49:cb:db:75:21:b1:76:
16:a2:5a:e0:9a:b0:ee:79:19:ce:47:6f:4b:2a:49:
b5:e5:f1:43:f9:46:be:4e:f2:6c:83:d1:b9:ac:1d:
42:67:cc:25:84:c5:9b:98:e0:7a:d8:50:b0:16:00:
26:13:5b:fc:85:fb:2d:6a:ea:b9:11:eb:ba:76:06:
d5:e7:9f:69:57:a8:f2:5e:f4:5f:33:fd:85:15:e1:
db:1a:5e:af:8e:5d:08:6a:35:cd:41:79:67:69:6c:
cb:4a:40:bb:67:c9:ce:92:f5:b9:86:7f:bf:8f:06:
f1:7f:5f:21:f3:6e:75:ad:e7:d5:fd:d6:94:94:1e:
3d:64:7b:c6:d6:03:34:1f:51:b0:4c:38:56:cd:09:
15:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:7A:C9:50:50:E1:8B:D6:8A:B2:21:8E:35:2C:AE:C9:16:47:BC:B0
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:36a::/48
Signature Algorithm: sha256WithRSAEncryption
5c:7d:ff:6e:a9:f5:f9:c7:d6:8b:19:a7:dd:a5:53:ce:23:33:
04:c8:14:12:10:e4:94:c1:fe:c3:cb:29:04:59:0c:de:b2:e7:
28:7b:5b:c5:d4:33:9c:c0:7e:2c:c4:dd:cd:6e:5c:f9:a2:9d:
ce:6a:9f:1f:9e:56:e5:13:2d:a9:00:c0:6b:12:00:f7:5c:ad:
cc:e6:94:76:fa:08:1d:12:20:f9:a3:b9:97:fe:8e:d2:f8:40:
59:e3:e5:2d:57:40:b0:e9:f3:da:14:da:b7:de:7c:cd:6e:fd:
7b:34:c6:a2:59:f6:97:97:46:41:1d:e5:40:e0:10:21:25:ed:
a8:2d:02:0a:37:39:03:39:d7:b6:da:c7:d5:61:67:32:8d:d4:
a3:ea:50:d4:52:97:88:97:a6:5e:a0:70:67:36:ed:89:74:fd:
72:02:ca:5d:83:72:81:bb:4f:73:ce:ac:0e:bc:a2:cd:63:31:
61:0b:30:2b:16:9c:8d:88:71:96:3c:06:46:7b:66:1c:c8:eb:
b2:a9:49:c7:c1:6a:9c:2f:33:e1:71:6b:b3:04:09:2f:73:0d:
4f:89:fa:b7:4f:5c:87:0b:ec:3b:05:70:62:21:e5:a2:86:f4:
ea:00:ec:b1:a0:2c:c2:80:e6:75:30:e7:f7:34:42:9b:f9:df:
3b:7e:8d:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org