Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3361363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: iEU0Z8pASJQekL8SX2NQlDOGUENO2AgqGJL6I7A8B5I=
Subject key identifier: 36:69:45:7C:79:0B:3D:F4:1B:56:AE:B0:57:A2:54:95:98:2A:8E:3E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 707D4D41AF48029E9541B7FDD90CDC96FF55025C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:46 +0000
ROA not before: Mon 26 Sep 2022 10:55:46 +0000
ROA not after: Mon 25 Sep 2023 11:00:46 +0000
asID: 59282
IP address blocks: 2400:d680:3a6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:7d:4d:41:af:48:02:9e:95:41:b7:fd:d9:0c:dc:96:ff:55:02:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:46 2022 GMT
Not After : Sep 25 11:00:46 2023 GMT
Subject: CN=3669457C790B3DF41B56AEB057A25495982A8E3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4f:c6:0e:fe:f3:16:e5:d0:a0:34:05:9a:df:
94:2c:16:94:de:6a:c4:15:2d:98:62:cd:4a:68:ff:
7d:b2:b1:b3:ed:a8:ac:c4:b5:e5:3b:17:94:4e:07:
21:1e:8f:df:74:06:16:97:57:9e:8d:61:6d:e7:69:
58:1e:7f:f3:38:d5:63:59:36:23:5a:d2:0b:a6:24:
9c:8f:1b:9b:97:1c:fe:a9:ee:cb:63:e2:9f:2a:04:
63:ec:c4:7c:19:77:0c:c2:35:c3:44:eb:3d:0b:2e:
52:8b:3d:17:9f:78:cd:79:3c:ad:aa:44:74:08:be:
fa:be:33:2d:dc:2d:7a:96:93:27:5d:f1:05:11:07:
d0:75:0a:1b:0b:c7:7b:67:75:27:54:13:65:7b:6b:
6d:5b:53:9b:23:63:be:d0:d2:ab:e6:3c:de:fd:17:
84:cc:ef:4e:67:10:9b:22:8a:4d:82:21:3c:a6:71:
1c:80:eb:56:96:8f:7e:a4:2f:fe:e1:61:cc:e4:15:
ed:6c:24:b6:f0:97:7f:c6:d4:cd:47:4b:f3:3a:44:
29:ed:ff:8a:5e:37:c1:ec:cc:4d:a0:44:85:d0:f8:
4f:c5:c3:f2:b9:be:13:be:37:b2:c9:92:9f:cb:8d:
e4:4b:80:38:cc:ff:f7:85:13:0a:e3:79:7e:0e:c6:
7b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:69:45:7C:79:0B:3D:F4:1B:56:AE:B0:57:A2:54:95:98:2A:8E:3E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3a6::/48
Signature Algorithm: sha256WithRSAEncryption
cc:d9:de:60:a8:9f:6e:cb:ff:c9:69:d1:e4:8f:a9:25:8f:38:
c8:4c:d5:00:35:a3:93:df:1b:d5:55:2c:31:e0:a7:10:7f:87:
c0:9f:27:d0:df:5d:74:60:8a:ab:4b:54:41:58:0f:0f:ec:ba:
0c:28:12:05:ac:44:22:16:64:6e:e1:b7:76:f6:cc:6c:99:44:
a7:0c:f6:d9:a8:8f:54:a3:71:d2:e9:fb:9c:ea:55:01:48:7f:
d3:26:81:12:86:7c:3a:e0:c8:92:ca:d8:6a:e6:77:db:9f:6d:
19:70:07:e3:24:c0:69:9d:94:e6:65:d7:5b:9b:57:71:a7:d4:
1a:f6:75:e1:23:80:2e:74:f2:e4:a9:f3:68:c7:7c:0b:65:8c:
d7:cc:98:06:10:d8:8a:11:3b:5e:92:e5:60:50:d0:20:4c:da:
89:22:fb:51:81:5c:a4:fe:40:67:c1:23:1f:b4:ae:4f:31:42:
51:02:97:e5:b5:dc:ef:bd:9f:12:d4:ee:98:19:14:57:cb:4d:
c2:71:34:f6:a5:6d:8b:c3:ee:0d:81:5a:9f:c0:39:77:d0:75:
e5:f8:56:13:a0:34:6e:32:0f:88:c1:27:5b:a7:0f:0e:18:73:
4c:c1:42:13:e2:cf:89:3f:dc:39:89:32:29:83:86:20:3a:2f:
62:69:41:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org