Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3336633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: x2MyDKoDV/W0M+NNkP6lyanJDQLmShpE0EGQaQinWRs=
Subject key identifier: 39:EF:8C:1F:21:B7:41:43:FE:CB:2F:8C:E3:3C:B6:1E:88:0A:2A:52
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 01FF870F67EE21D14C0B7DC49F33F497F5A18045
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:30 +0000
ROA not before: Mon 26 Sep 2022 10:55:30 +0000
ROA not after: Mon 25 Sep 2023 11:00:30 +0000
asID: 59282
IP address blocks: 2400:d680:36c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:ff:87:0f:67:ee:21:d1:4c:0b:7d:c4:9f:33:f4:97:f5:a1:80:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:30 2022 GMT
Not After : Sep 25 11:00:30 2023 GMT
Subject: CN=39EF8C1F21B74143FECB2F8CE33CB61E880A2A52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:90:18:ab:3d:fb:77:f6:84:de:f1:04:6a:39:
40:60:73:d5:4c:10:0f:4d:a9:18:86:31:69:9d:88:
76:d8:68:4d:a5:8c:11:ff:56:32:2b:71:36:92:5a:
ba:ff:8f:6c:2d:2f:13:2c:03:94:0d:c0:a8:b2:20:
43:32:ad:9d:98:fd:9c:54:0f:2e:eb:6a:e6:30:43:
47:05:a0:d8:c4:0e:d4:51:c4:43:22:35:9c:52:21:
3d:3f:67:c5:3f:69:92:1e:fe:34:a2:20:7d:cb:13:
d1:53:f1:a4:35:3f:04:18:16:ba:b0:67:84:eb:e9:
ae:6b:67:f4:2a:d4:78:bf:d2:b3:1c:2b:97:51:00:
72:eb:8a:8f:34:cf:b2:a0:5f:49:96:16:c2:6c:4c:
2a:b9:aa:64:ff:3a:d8:ec:ad:21:43:46:69:cb:9e:
ba:ad:df:28:db:4d:33:28:0c:07:20:b2:c0:1a:e0:
25:6d:b2:ae:ca:51:c6:a7:78:a6:af:e7:34:e7:0d:
c2:a1:fb:af:76:5d:32:f8:29:fe:38:62:76:e0:5b:
fe:62:b2:b6:35:c9:ef:30:5d:5a:67:20:08:5e:cd:
93:f7:7f:8c:07:70:67:68:85:98:bc:42:6b:d0:d6:
c1:a7:cd:20:8d:14:95:a3:1e:67:3c:f4:83:f2:d2:
d1:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:EF:8C:1F:21:B7:41:43:FE:CB:2F:8C:E3:3C:B6:1E:88:0A:2A:52
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:36c::/48
Signature Algorithm: sha256WithRSAEncryption
d7:a1:2a:65:e3:11:21:b3:15:76:22:78:61:42:91:ec:09:28:
20:2b:d1:17:e5:0f:a9:1e:b3:c8:bf:1f:ff:b3:4e:a9:fd:83:
47:fd:0c:00:26:c9:92:e8:c4:6e:89:28:3e:cf:4f:e3:09:e4:
da:5b:6f:2f:8e:d6:f6:cc:bf:f9:07:9d:8b:ea:89:f7:f1:6d:
01:00:b2:b1:84:86:ee:66:42:d8:37:a2:31:95:d7:23:b0:fb:
42:fc:ca:70:57:dc:e1:22:27:c9:fe:6a:fc:8d:5c:a3:98:4f:
ce:e1:bc:cc:77:e7:49:a3:d2:f8:b8:97:34:56:be:ee:61:da:
89:49:1e:7c:36:37:7c:b1:5a:c8:c5:12:59:2d:c6:17:a1:d5:
ec:16:32:c1:4b:92:2f:01:c6:92:43:fa:05:f1:0b:57:94:3e:
81:c9:54:1c:b9:ae:0c:bd:01:80:f2:7c:b9:0f:b5:e0:56:e0:
16:62:59:7a:18:ef:0c:3c:2e:40:5b:8c:bf:c1:20:d7:d8:61:
75:f5:e0:e1:68:b4:19:e5:cf:a9:84:04:21:51:39:69:14:ed:
00:e7:b6:90:5b:b7:7f:f9:11:a7:f8:94:b1:ee:94:81:39:f7:
be:2c:f0:71:a3:0e:31:b6:31:80:ee:ea:95:ed:d5:32:ec:4b:
74:22:08:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org