Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3339333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: SG84Yzgjr7kzebPNVRtDcRo66GpcQNMBw/91/K47TXA=
Subject key identifier: DC:54:6B:D6:4A:91:E4:6C:D0:17:62:DD:DF:B9:5F:43:5C:CF:5C:20
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 62FD73DA26A9A7E0D57A9D2CB6D4A8BF88ABC87D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:27 +0000
ROA not before: Mon 26 Sep 2022 10:55:27 +0000
ROA not after: Mon 25 Sep 2023 11:00:27 +0000
asID: 59282
IP address blocks: 2400:d680:393::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:fd:73:da:26:a9:a7:e0:d5:7a:9d:2c:b6:d4:a8:bf:88:ab:c8:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:27 2022 GMT
Not After : Sep 25 11:00:27 2023 GMT
Subject: CN=DC546BD64A91E46CD01762DDDFB95F435CCF5C20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:27:c6:d4:67:37:41:22:93:e6:bc:ca:0f:8b:
55:57:1e:04:e6:e4:71:e4:61:da:0a:fc:65:d3:30:
25:fb:85:84:7f:24:64:a3:fe:20:e4:08:54:4d:9e:
2d:0d:91:e6:04:29:47:2e:93:e0:c6:9d:c9:78:a9:
49:d8:45:49:85:47:67:aa:14:72:a8:49:93:db:57:
99:5e:f3:1b:ec:64:57:ed:43:53:f1:a5:5c:1c:c3:
9a:dd:99:60:85:a8:d9:35:b1:cf:93:91:ed:26:d9:
a8:3f:8f:64:f3:3e:5b:42:70:5f:ef:23:27:cc:9e:
7b:28:e2:ef:37:58:db:14:a5:44:5a:b5:46:91:84:
bc:45:e5:52:7d:da:68:47:bf:9e:39:be:53:3b:a3:
c0:8d:1c:8b:88:c2:df:bf:7e:ea:48:ca:7d:55:9b:
f5:73:60:4c:93:a3:9f:68:9b:1b:61:d8:f0:7e:59:
96:94:e0:bf:e8:09:02:64:cd:3b:8a:f2:1e:ae:95:
08:84:87:5b:b8:fe:35:d7:f9:9c:c4:0d:44:c9:17:
40:25:ad:1a:9b:02:c1:c0:8a:ec:9e:25:08:8d:72:
3b:f9:6c:47:13:18:d5:d3:b5:b7:53:8d:76:64:f7:
fb:b6:62:12:34:2d:68:6e:c1:e8:33:bd:38:8c:0f:
2a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:54:6B:D6:4A:91:E4:6C:D0:17:62:DD:DF:B9:5F:43:5C:CF:5C:20
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:393::/48
Signature Algorithm: sha256WithRSAEncryption
9c:cc:ec:ad:86:d9:2e:a8:eb:93:90:35:0f:57:30:d0:9e:e1:
8a:ac:21:7b:cd:03:42:ad:63:5c:9e:fc:ce:0c:d7:06:45:67:
8d:99:e0:e0:56:7e:2f:f1:64:91:13:15:ec:21:f5:aa:c9:f2:
3a:2d:e7:aa:36:6d:71:ee:78:58:5e:6b:44:30:33:93:d9:5e:
ca:1b:3c:a0:f2:23:10:20:a2:3c:3c:a3:41:28:23:d1:b4:e1:
09:b0:b8:2b:80:ae:b1:f5:ab:54:9c:d3:9c:65:2e:b9:0a:a8:
e1:1f:ed:8c:4f:1b:c2:4b:ab:a2:65:6e:b1:8c:73:50:be:73:
f4:66:be:28:1d:b2:1f:34:6e:28:80:87:d6:aa:f7:d4:56:8b:
10:58:56:03:2a:bb:db:1a:d0:5c:eb:bf:3f:08:7e:16:fb:cd:
9e:95:f2:71:a3:2c:04:83:4c:c5:45:9d:79:f3:90:46:1f:f6:
0e:c9:53:a4:a1:ee:1c:d5:5a:af:80:7e:59:9c:ea:0a:e7:b5:
2e:42:82:82:dc:a7:38:94:0e:8b:b7:5e:90:85:d4:ab:18:8a:
90:53:00:2e:17:45:97:21:8e:51:b4:14:dc:fd:1e:8c:6f:85:
d8:ed:73:61:b4:cf:dd:90:6a:cf:93:39:66:e4:e3:a6:79:0e:
05:54:55:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org