Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3339353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: reWH4cGGR+xBQJx83PUFa+LSnU6UlEc84Y2AN0IITi8=
Subject key identifier: C0:E5:58:67:3A:A8:C1:14:F3:88:73:D5:D0:22:4C:B4:7B:89:98:73
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1DE0CBD59B4D876331502A7295A9A474ED8F1362
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:22 +0000
ROA not before: Mon 26 Sep 2022 10:55:22 +0000
ROA not after: Mon 25 Sep 2023 11:00:22 +0000
asID: 59282
IP address blocks: 2400:d680:395::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:e0:cb:d5:9b:4d:87:63:31:50:2a:72:95:a9:a4:74:ed:8f:13:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:22 2022 GMT
Not After : Sep 25 11:00:22 2023 GMT
Subject: CN=C0E558673AA8C114F38873D5D0224CB47B899873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:33:96:ee:fc:b9:da:25:84:2d:c0:4a:c1:aa:
6b:9a:f9:54:e9:70:fb:d6:68:c3:59:04:58:c0:36:
23:03:c5:1c:33:90:7c:71:1c:cb:68:e3:e9:26:5d:
2b:a4:be:b2:f8:ed:aa:34:68:4a:62:5e:4a:00:c5:
9a:0a:4d:23:be:d5:e4:11:84:11:aa:fc:cd:e7:e4:
c5:a9:b0:3c:08:7e:e2:27:64:92:f2:1e:ae:a8:54:
44:b0:50:25:56:a5:9d:fb:28:1c:7a:a6:a2:b1:b6:
2f:82:62:7b:62:2c:1d:96:30:e2:33:4e:85:f4:bc:
15:fb:64:1c:d9:cb:9a:6c:8f:ad:81:27:72:bd:32:
86:d8:72:1c:5d:a5:ca:e0:cc:7d:c4:28:d0:b0:c1:
69:2d:e7:58:65:f9:1c:5e:07:6e:95:17:6c:bf:2c:
4f:1f:72:ed:4a:ac:83:fd:bf:09:1e:8e:4e:e6:24:
d8:1c:e0:72:5e:d8:e3:2b:85:23:35:9b:24:a1:f7:
3e:ce:24:90:4a:c3:2f:1a:05:a8:b0:55:f6:58:00:
59:cf:9d:05:58:f6:5b:7a:c7:c3:cb:43:98:86:f8:
0c:d1:3f:bb:57:fb:c0:52:11:4d:d5:71:b7:e6:56:
60:3b:25:d0:54:0b:9d:7e:9f:9e:17:0b:72:80:32:
fd:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:E5:58:67:3A:A8:C1:14:F3:88:73:D5:D0:22:4C:B4:7B:89:98:73
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:395::/48
Signature Algorithm: sha256WithRSAEncryption
7f:ff:ac:c1:60:4b:a4:75:6d:34:4f:47:c3:a1:28:b8:55:1b:
50:2b:03:52:bc:6f:39:90:10:24:16:d3:1a:14:22:24:bd:64:
00:6a:c6:63:73:03:ba:48:7e:c2:73:05:fb:4e:98:a5:f4:96:
b3:b5:68:04:d8:e6:01:10:81:91:e0:16:e3:7b:d5:84:ce:2c:
25:28:95:ed:da:05:da:59:9e:81:eb:85:e6:c4:3d:15:c0:d9:
83:da:f2:41:96:8d:fc:0c:ed:9a:f4:ec:0b:4b:d3:08:69:a9:
7c:f5:bd:6d:1c:35:65:93:be:1d:f6:d9:7d:69:e0:a5:dc:4d:
5f:52:8a:14:a2:01:99:2a:92:c2:39:88:af:32:65:28:e8:c2:
de:f4:40:a7:f1:7f:1f:f1:2b:14:a1:b5:5f:2d:e4:a9:2a:d7:
92:e1:b2:97:e8:18:e8:f4:bf:84:c4:21:bc:d7:dd:42:c7:a3:
32:4a:97:9e:14:9d:6e:2d:10:62:96:b5:7e:d4:77:ef:d7:a6:
29:d7:0e:e0:9c:95:54:04:f9:91:d9:ed:f9:c3:be:45:d3:de:
d1:be:56:ac:12:6b:c7:98:fd:93:2a:2e:2f:67:db:fb:a9:a1:
49:29:11:83:ad:a6:96:1d:8a:71:3b:97:4a:65:a6:f5:be:2b:
7b:1d:38:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org