Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3338623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: +HfRGNkMabsAwPhpzSQNobwSR79oFvJ62ErvgzIWWjE=
Subject key identifier: 81:99:16:C7:11:4E:E8:B0:27:05:18:5F:C7:48:72:D3:B1:AB:28:A8
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5DE07B4C8D3887CE97A762AD2335AB73D763F69D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:34 +0000
ROA not before: Mon 26 Sep 2022 10:55:34 +0000
ROA not after: Mon 25 Sep 2023 11:00:34 +0000
asID: 59282
IP address blocks: 2400:d680:38b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:e0:7b:4c:8d:38:87:ce:97:a7:62:ad:23:35:ab:73:d7:63:f6:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:34 2022 GMT
Not After : Sep 25 11:00:34 2023 GMT
Subject: CN=819916C7114EE8B02705185FC74872D3B1AB28A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:8d:8c:e3:13:a5:0c:24:0d:21:c6:37:d8:ce:
0d:09:84:b8:75:c7:33:57:f7:79:4d:48:44:7b:f7:
1c:97:17:7c:82:d0:51:8e:84:48:9b:da:f1:68:65:
ee:71:7c:e8:16:9b:14:29:b7:05:5e:5f:a9:5d:4e:
49:45:36:38:f7:87:ff:40:f7:a0:53:b8:08:dc:fd:
f3:1d:d0:1a:b7:21:c4:bc:a8:60:93:a6:42:16:b0:
03:04:82:3d:9d:38:c3:ce:33:23:ed:1f:06:e9:f4:
1c:bb:57:81:b8:d9:91:cd:8d:27:32:06:e9:bd:6d:
d9:f9:c5:6f:54:38:ae:fb:95:12:b6:85:e7:5a:57:
61:b1:4f:86:87:1e:c2:ea:8e:b6:a8:23:1c:89:6d:
f1:ea:af:c2:cd:73:0e:0c:75:b4:e7:e3:a0:3e:b3:
3b:24:f7:1d:92:f1:2d:37:e3:c8:64:3b:6b:b0:75:
c7:7a:d1:93:80:06:75:9f:85:0a:43:96:03:65:e7:
60:d4:be:82:0c:19:93:6c:6f:bd:32:e7:09:55:f1:
8c:0e:50:8d:7f:80:37:ec:6e:fe:e6:75:6f:fb:31:
f5:c7:16:d7:78:35:43:42:04:22:a8:23:8c:5b:07:
7e:2b:4c:2a:9f:ad:a4:e6:68:e7:c5:5b:60:7f:f9:
12:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:99:16:C7:11:4E:E8:B0:27:05:18:5F:C7:48:72:D3:B1:AB:28:A8
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:38b::/48
Signature Algorithm: sha256WithRSAEncryption
38:78:1e:b0:03:fc:fc:f6:d0:3a:64:43:04:4d:7a:b4:2d:d4:
91:35:89:8c:ba:80:27:17:a6:e6:b3:28:23:b7:88:a5:9b:5a:
25:18:2a:30:69:48:7a:35:5b:16:76:f1:7b:7d:f8:6a:16:7b:
69:32:4a:bb:36:01:f9:86:07:4b:5e:58:55:94:cf:91:3b:9c:
20:d6:dd:93:f4:7a:10:1f:57:f5:23:98:11:cd:a2:10:62:21:
79:27:b7:22:01:0e:45:38:a4:11:79:5e:d6:4d:d9:48:3e:ad:
d9:f4:24:63:11:ab:60:97:33:af:df:e9:f9:93:e7:0b:f7:98:
0c:2c:91:08:30:4c:a0:7d:08:bb:f6:11:0a:77:f9:85:e5:e2:
ec:05:5a:ff:0e:9f:3f:fc:a9:ce:76:f1:ae:dc:44:a1:09:00:
b3:97:09:72:52:ac:2b:e3:af:94:c5:bd:cf:74:1c:da:41:13:
e9:f4:b6:9a:6c:7a:fa:a9:7b:5e:a8:f2:86:3e:36:b1:64:e6:
08:40:a9:8d:8e:a8:e6:24:ff:47:ab:95:b0:d6:dc:50:7b:04:
7c:c7:a0:bf:f6:ad:7d:6f:c0:f3:9a:bf:e2:52:7b:08:d8:19:
0a:4d:cb:57:44:64:81:61:39:67:43:2a:b5:a2:ed:10:66:46:
c3:f6:37:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org