Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3337643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 9eagHe7XEksBbzqhlDUiWs5ATzOnbQ2UgjbH8tYAaTA=
Subject key identifier: 60:2B:B3:F1:C5:C5:04:61:2C:E3:20:3C:C9:22:7E:F5:6C:79:16:97
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 09AF2270742E7EE823FFD05C423E98BA90CC8654
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:34 +0000
ROA not before: Mon 26 Sep 2022 10:55:34 +0000
ROA not after: Mon 25 Sep 2023 11:00:34 +0000
asID: 59282
IP address blocks: 2400:d680:37d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:af:22:70:74:2e:7e:e8:23:ff:d0:5c:42:3e:98:ba:90:cc:86:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:34 2022 GMT
Not After : Sep 25 11:00:34 2023 GMT
Subject: CN=602BB3F1C5C504612CE3203CC9227EF56C791697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:1b:b1:50:47:ca:18:89:43:19:da:19:05:98:
3d:47:d8:1c:2f:ce:2b:3d:64:bb:fe:59:d2:43:f7:
12:fa:7f:e9:7b:6d:7a:27:cf:98:98:22:2b:1f:3c:
81:8d:90:63:cf:cd:19:1f:e5:a4:4c:e3:49:53:4e:
eb:95:c2:73:77:b0:f8:ff:74:ff:4d:2d:77:16:80:
5c:cb:ee:86:de:5a:80:be:87:b0:4d:1a:03:25:68:
1a:70:0e:7c:39:88:29:b2:a1:21:a7:9c:85:f9:bc:
87:15:23:de:5d:29:e7:0c:ba:4d:42:54:3e:7c:a1:
2f:b6:64:a5:7a:d7:89:a9:3d:8e:0f:1f:11:af:84:
9a:c4:f1:04:5d:83:e3:db:b8:35:91:ac:0b:00:3c:
04:7a:00:68:2a:48:b9:74:09:3e:fe:2d:f5:f3:6e:
8f:ab:0d:0a:9f:e5:99:2f:b9:f8:8a:5a:ee:a8:af:
48:6c:d2:b3:84:98:47:2e:05:2e:e4:9c:de:cc:e6:
ab:46:bd:08:47:32:6a:83:e0:b7:33:1b:92:a6:0c:
94:3c:fb:66:cc:db:67:42:f1:a3:3c:b8:2e:e0:ce:
b2:b1:2a:88:ea:9c:af:a4:1c:42:7a:6c:37:05:0f:
27:27:56:b6:c5:6a:d0:09:50:88:cb:9b:75:ea:a6:
71:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:2B:B3:F1:C5:C5:04:61:2C:E3:20:3C:C9:22:7E:F5:6C:79:16:97
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:37d::/48
Signature Algorithm: sha256WithRSAEncryption
c9:16:2f:9a:99:ea:21:eb:2e:28:ec:38:42:c3:50:69:a1:30:
80:b8:b8:6f:95:52:00:a8:07:6e:f6:0a:0f:b8:31:45:b8:1a:
ff:e9:2c:07:32:8a:9c:b4:7a:17:9a:89:91:de:a4:c2:a6:e9:
d4:f8:ba:92:fd:45:d9:49:c9:1b:57:e8:f8:5a:cf:93:be:28:
0d:11:08:43:99:f8:2e:ee:27:d3:af:bd:b6:05:99:a2:ca:90:
ac:c2:e4:4c:86:c5:1a:bc:e3:37:53:75:80:05:19:13:99:56:
00:ac:db:23:9d:e3:9b:3b:f8:0f:16:7b:cb:e5:97:66:7b:93:
13:ac:08:bd:52:2f:fe:dc:b3:e0:86:a0:d1:d0:25:cd:fd:b6:
ff:66:bd:94:26:ff:ca:ab:69:10:bd:29:05:76:ad:32:95:cd:
87:c0:1e:b6:30:c6:30:f3:23:ab:7b:fc:44:2b:35:c4:f0:c2:
26:b8:dc:5a:a7:3e:e0:b0:1b:b1:a2:51:92:49:34:aa:cb:a6:
81:f1:11:5a:4f:81:85:13:33:47:38:a2:41:00:41:8a:bd:e4:
58:e5:8f:c5:95:f8:ba:43:ad:d7:11:7b:75:0f:01:a3:d2:a9:
38:cd:44:ec:72:1d:f3:ea:41:0f:a0:8b:83:d3:64:f3:77:e1:
f8:df:92:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org