Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3338373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: txTwbs+j/jsuVfWSxvEmChFRncgQ013DgDCSAW5hwK8=
Subject key identifier: 80:64:D7:11:42:70:B1:B8:7B:83:C4:78:19:A1:18:F9:DB:98:E4:9B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2BCA09C9DF05173D83C1C9D56F1A33FD840C42ED
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:41 +0000
ROA not before: Mon 26 Sep 2022 10:55:41 +0000
ROA not after: Mon 25 Sep 2023 11:00:41 +0000
asID: 59282
IP address blocks: 2400:d680:387::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:ca:09:c9:df:05:17:3d:83:c1:c9:d5:6f:1a:33:fd:84:0c:42:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:41 2022 GMT
Not After : Sep 25 11:00:41 2023 GMT
Subject: CN=8064D7114270B1B87B83C47819A118F9DB98E49B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:5a:be:52:1e:82:b7:73:27:35:f5:a7:17:d5:
71:42:0d:02:83:2e:40:53:75:0a:76:27:0b:34:1d:
a1:46:ec:0f:0d:88:08:e0:62:85:4d:c5:00:ed:44:
91:f6:69:99:71:cb:6c:0c:3b:86:d2:a5:cc:c0:52:
68:11:a5:a8:c7:8f:ed:1f:ff:d4:1f:2d:8b:c7:09:
db:63:67:74:d3:b1:12:7a:28:a7:c6:bf:0e:07:41:
db:1b:9d:d7:8b:4a:1f:21:27:eb:81:e1:57:d8:99:
d5:f4:44:8c:34:5f:b9:a0:51:f5:b9:5a:66:94:1d:
c3:12:cb:9f:c2:43:27:11:7f:34:ba:4f:35:93:ff:
9e:64:fe:d9:35:25:a1:8f:d3:f4:52:48:19:8a:2b:
81:1a:e3:48:98:99:dc:7a:15:76:e4:45:f8:99:09:
c7:fc:d8:d1:73:6d:4a:80:9f:0d:c2:53:d4:8b:50:
20:4a:cd:c0:d2:52:cf:7f:61:d1:78:1d:eb:3d:38:
e8:a3:53:3a:79:34:9f:7a:86:00:67:83:01:20:b1:
02:f0:06:d7:74:79:39:a7:6c:01:72:e1:8b:0d:7a:
a1:29:c5:32:22:c8:97:cb:89:a2:86:92:11:8f:e2:
75:13:53:6d:85:2f:43:7b:41:84:e2:c4:5c:29:df:
76:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:64:D7:11:42:70:B1:B8:7B:83:C4:78:19:A1:18:F9:DB:98:E4:9B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:387::/48
Signature Algorithm: sha256WithRSAEncryption
3e:b7:bd:40:7f:04:62:fa:1b:20:2e:9d:94:32:a8:4d:c4:b2:
a9:6c:f2:36:e9:82:61:5a:ed:33:4f:f0:79:ec:aa:d0:30:f8:
93:91:5f:05:c5:64:50:aa:df:07:74:46:32:a3:72:ef:8b:d0:
ff:ad:c0:fa:d9:83:28:3c:84:1e:9a:bb:85:8b:24:12:5b:19:
08:54:c0:fa:f2:02:d6:a0:89:c3:ce:31:38:d0:1f:d1:5a:fe:
7c:33:b0:2f:62:b6:d2:b8:94:bf:03:8c:8d:f0:67:ce:11:45:
fd:95:92:26:fa:74:44:07:26:32:12:32:6c:cf:d4:a8:ae:e0:
5c:b5:8c:68:4e:b7:e7:08:f3:48:4b:64:f8:a5:12:c5:86:44:
85:d4:64:53:ea:59:4c:f9:81:55:45:ce:77:b3:61:4c:3a:ac:
ec:a0:15:40:ea:12:e4:52:07:ec:48:86:04:84:f6:1d:67:43:
88:0d:59:15:4b:96:6e:91:ab:29:63:15:c5:b2:04:94:e8:bb:
b8:76:79:b6:8e:3f:d2:8f:8b:be:ee:ed:e1:76:c7:40:c0:1b:
0f:91:0a:4c:81:9d:a4:48:ab:8f:a3:87:9b:11:64:21:56:d8:
50:cb:e7:96:51:0f:d7:16:2f:67:eb:c1:fd:10:56:02:9b:57:
fa:a7:32:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org