Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3337383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: tQH8/e/XK19SfVNxc0fE1505R1msJmp4WuiqRzWeWsg=
Subject key identifier: B0:AA:DD:01:CD:FB:C7:7C:27:2B:B7:99:09:A6:05:C6:18:2D:38:A1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5AA010E456C93E1E9EE105D698811E2A752AD3D1
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:52 +0000
ROA not before: Mon 26 Sep 2022 10:55:52 +0000
ROA not after: Mon 25 Sep 2023 11:00:52 +0000
asID: 59282
IP address blocks: 2400:d680:378::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:a0:10:e4:56:c9:3e:1e:9e:e1:05:d6:98:81:1e:2a:75:2a:d3:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:52 2022 GMT
Not After : Sep 25 11:00:52 2023 GMT
Subject: CN=B0AADD01CDFBC77C272BB79909A605C6182D38A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:01:87:f7:10:d3:a5:8e:7f:fc:23:61:97:98:
1b:4e:a8:5f:6d:61:59:9e:fb:b9:97:4b:e8:65:ed:
2d:ae:50:cf:aa:5d:cb:da:10:34:53:2a:4a:26:22:
2e:5f:fd:2b:b2:d0:87:ef:5f:a3:1e:b3:7d:cc:7a:
43:8c:6f:ad:00:5a:11:4d:4f:97:a5:3d:8b:0b:9a:
b3:de:50:01:29:84:3b:8d:af:88:1c:e4:88:9d:f9:
16:32:e1:37:98:dc:66:91:45:0a:75:ef:64:3f:5c:
d5:e3:20:f5:5b:62:f1:02:ad:02:3a:42:c8:21:7f:
42:df:d5:bb:7e:c2:13:2c:9a:a3:24:67:f4:e8:99:
ee:96:b0:f1:af:43:5a:e0:f0:60:ea:19:5b:df:75:
52:af:67:0a:27:b5:57:0d:0f:24:a8:13:07:69:ef:
b2:9a:66:8b:d0:fd:eb:e7:3b:e9:99:6c:e0:79:f7:
05:a7:5b:2f:00:1b:09:a5:98:43:db:46:87:a2:1a:
5f:3c:82:95:86:b5:8f:73:1c:17:de:0e:51:e5:2e:
06:d3:1b:dd:e1:11:df:ac:df:83:41:c7:75:6b:2b:
2c:b6:21:16:1f:d1:07:5a:05:e1:d9:91:cc:a3:a2:
07:ea:20:dc:2d:ed:f1:fe:b0:15:7a:64:b4:ce:cf:
fb:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:AA:DD:01:CD:FB:C7:7C:27:2B:B7:99:09:A6:05:C6:18:2D:38:A1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:378::/48
Signature Algorithm: sha256WithRSAEncryption
6c:46:74:89:02:31:15:84:f1:ab:91:c8:a4:e3:d1:3b:2b:6b:
99:da:1b:1f:42:b2:df:fd:58:ff:21:a6:20:69:1a:28:80:66:
84:bb:07:26:d6:99:27:04:d2:28:0a:33:fa:e7:29:f0:b5:bf:
de:34:23:00:22:88:ef:ea:06:59:c8:f1:aa:03:5a:9a:0c:11:
b1:e8:c9:bb:b9:b7:cf:c5:fb:7c:b4:60:e8:92:50:18:9b:6f:
96:12:cb:fa:64:d1:9d:f6:c7:b9:e9:d3:7d:c3:5a:a5:88:09:
6c:31:75:8a:8c:ce:04:c0:6c:ca:3a:1f:02:22:c4:38:4f:76:
a0:39:8a:c5:b0:c7:1a:bf:98:95:12:39:13:ea:07:30:55:a0:
9c:4c:82:a8:4e:8a:f0:e4:80:55:78:74:da:f0:2a:c1:c9:fe:
09:4c:70:33:48:31:6b:5e:09:84:d7:ac:ab:3d:5d:b8:64:85:
c3:54:1d:5b:de:95:60:f8:b0:77:3a:4e:cf:de:24:59:f5:ef:
3f:3a:01:75:dd:87:9a:19:a5:4e:31:cc:06:ad:23:2a:0a:a7:
3b:20:58:a3:58:c8:20:f6:66:c3:48:13:0d:f9:e3:c2:a8:ca:
9d:f9:0d:93:21:b0:f6:27:7f:6d:01:53:e7:26:e8:69:ad:4d:
73:21:cc:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org