Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3339303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Jk4SdLY2v8FtbymFbV4fD4b1Q2WjuG9JTNH8qrHrd+s=
Subject key identifier: 4D:08:9C:9F:D0:CE:23:10:BB:10:D8:1F:C6:B3:00:C0:5C:FB:77:DE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1F5212B9D0D993C23B2120B9DE8CFF065930A7C7
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:41 +0000
ROA not before: Mon 26 Sep 2022 10:55:41 +0000
ROA not after: Mon 25 Sep 2023 11:00:41 +0000
asID: 59282
IP address blocks: 2400:d680:390::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:52:12:b9:d0:d9:93:c2:3b:21:20:b9:de:8c:ff:06:59:30:a7:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:41 2022 GMT
Not After : Sep 25 11:00:41 2023 GMT
Subject: CN=4D089C9FD0CE2310BB10D81FC6B300C05CFB77DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:26:63:e5:e0:e2:60:be:69:ef:ce:48:bd:15:
a3:e7:00:d2:86:41:c9:39:72:3b:3e:38:b4:71:af:
e3:e9:40:d5:e1:b5:a7:c7:2d:93:ad:03:8b:b1:ed:
4b:92:4a:bc:b5:46:45:51:22:94:9a:db:53:e8:a7:
f9:9a:5e:cd:39:81:dd:ae:46:78:9d:4c:a8:98:f2:
60:d7:de:be:e0:d1:64:64:b4:08:24:2e:24:9c:f5:
ed:e8:54:cc:3e:44:3b:fd:ee:54:94:a6:99:e6:2b:
95:ff:95:69:fe:d3:77:ef:be:ca:30:a7:e9:e7:00:
7f:51:31:aa:2d:66:db:d8:44:af:89:44:95:ed:ae:
42:2b:72:b8:1c:1a:aa:35:3f:95:4f:06:d2:82:52:
01:23:d0:26:4e:cf:8f:9e:85:01:fe:b0:54:af:6d:
be:a1:14:57:83:8b:39:f6:f1:ff:3e:93:4b:5f:d4:
e9:c8:c6:b1:f8:8a:c3:3d:78:d7:5e:38:2b:88:8a:
42:e5:c7:05:83:48:f6:f7:15:ba:12:af:d7:a1:94:
08:ad:28:9f:c5:5f:d0:ab:ce:43:f5:35:2b:ea:6c:
fc:06:70:e8:f9:a7:92:17:97:56:43:fd:8d:22:0b:
af:ac:f3:34:2a:0e:49:3b:95:25:3e:b9:28:ac:c8:
20:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:08:9C:9F:D0:CE:23:10:BB:10:D8:1F:C6:B3:00:C0:5C:FB:77:DE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:390::/48
Signature Algorithm: sha256WithRSAEncryption
a9:90:bf:ce:17:03:ec:29:92:5e:89:48:62:e3:69:6a:d8:c8:
b6:5c:7e:84:46:f5:42:d0:98:89:cc:e6:09:e4:3c:8e:be:b5:
8e:65:e3:c7:f4:c7:0a:48:29:04:1b:cb:0d:cc:8e:fa:8b:e8:
56:65:09:f6:26:fe:a8:50:ef:a2:07:bd:1c:bb:f1:2a:63:fa:
7d:44:d2:8b:d2:bc:4d:00:17:88:ad:f1:d6:ef:41:f9:21:74:
9e:85:e6:a4:8b:b8:f5:1d:96:8c:0e:65:a0:15:cb:44:81:42:
50:29:65:24:07:1d:e4:ef:d0:0a:88:bc:6a:fa:31:ea:a4:c4:
4f:4e:0a:44:df:a6:b5:8c:fe:df:cd:41:cb:32:27:e5:92:e5:
52:b6:7c:b0:99:85:ad:da:02:01:d6:74:1b:96:f8:16:43:fc:
44:a0:c1:49:8e:83:e5:4b:a7:3d:e9:a1:92:38:a7:2a:36:d1:
67:a9:74:e1:13:41:e8:a0:0e:38:d9:e3:80:61:5d:83:ea:1d:
a8:b5:5e:4d:7d:87:b1:81:0d:1d:a8:f6:ce:d7:44:01:1e:de:
cb:dd:31:e9:39:a6:34:1a:58:8d:e2:fa:72:91:c4:bc:46:a3:
de:8a:fc:98:3e:2f:ca:dd:5b:be:12:4c:fd:80:f4:70:75:ed:
59:de:2f:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org