Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3362313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: j0ntU6ss7PehcvjChGtree2frfAbViaEsAMD/papo9g=
Subject key identifier: 50:76:A1:BF:AC:09:A9:FD:09:3C:4F:8D:99:47:46:E7:D0:15:1E:BD
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 52ACAB67C8BC66239D4D9579A69A12D3DABE2F4A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:43 +0000
ROA not before: Mon 26 Sep 2022 10:55:43 +0000
ROA not after: Mon 25 Sep 2023 11:00:43 +0000
asID: 59282
IP address blocks: 2400:d680:3b1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:ac:ab:67:c8:bc:66:23:9d:4d:95:79:a6:9a:12:d3:da:be:2f:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:43 2022 GMT
Not After : Sep 25 11:00:43 2023 GMT
Subject: CN=5076A1BFAC09A9FD093C4F8D994746E7D0151EBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e3:41:81:5f:ca:27:c2:69:fe:f1:7f:4f:46:
1d:a5:f6:48:60:c8:4e:04:93:98:be:97:66:ae:dd:
56:e1:21:5d:24:8a:e6:3b:1d:e7:54:62:b1:b0:f7:
47:29:44:f0:5f:74:47:77:00:d3:bb:86:5c:27:0c:
6c:72:f1:bc:d9:df:d1:2f:14:d1:32:c3:fa:60:65:
7e:9e:35:70:ac:cd:05:80:65:94:0b:34:a2:b4:e6:
e4:df:1c:02:c6:f4:25:c9:8c:b4:aa:86:e9:d8:fb:
91:d4:c8:e3:df:2a:4e:31:04:8d:8b:57:ac:93:dc:
51:16:32:20:bc:b0:c3:c7:b9:58:f4:d7:1b:e9:a5:
6c:a5:1e:34:a8:db:06:a2:06:a9:04:13:98:bc:cb:
7f:e8:8d:cc:b3:e2:49:e5:0e:8c:d3:b9:e1:3c:2b:
24:28:3f:e6:35:25:30:75:20:11:9c:e7:88:e0:88:
3a:41:05:b7:97:d0:30:aa:50:4a:74:3a:60:0d:eb:
79:b0:68:9f:fc:95:5d:3e:55:ae:fa:71:2d:08:f0:
5a:0c:0e:3b:99:5a:f7:27:72:26:b3:e2:bd:79:5e:
7f:9b:02:da:42:9d:e0:1c:b4:ee:4d:03:86:23:cc:
75:b6:80:c2:12:66:3c:56:1d:da:79:5c:7f:44:74:
bd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:76:A1:BF:AC:09:A9:FD:09:3C:4F:8D:99:47:46:E7:D0:15:1E:BD
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3b1::/48
Signature Algorithm: sha256WithRSAEncryption
48:6c:5a:d6:da:6e:db:09:bf:3a:43:2e:8c:69:b8:c6:5d:da:
c8:9b:3c:fa:f0:00:30:6f:54:09:71:6f:2d:c9:28:fc:9d:33:
da:da:88:d7:48:75:a8:e9:35:50:e3:3a:71:07:dd:e1:1f:e6:
b9:4a:85:35:91:89:45:42:f2:18:7c:df:9b:e3:7f:75:e7:5d:
d6:ce:c8:f1:43:4c:4e:35:a7:26:19:81:6b:d2:54:84:97:1e:
e9:24:03:51:e8:74:4c:9e:3c:1e:ad:fc:e4:2f:fd:4d:eb:6c:
54:d1:65:b6:11:8e:ab:9a:82:5c:bb:ec:98:a0:fd:ca:40:39:
20:f7:b1:d5:eb:a2:32:e0:fd:6c:de:f2:f6:39:42:ae:18:65:
fd:3f:73:d0:92:4a:e9:29:ff:d9:db:05:64:82:0b:1b:4b:a6:
3e:f3:2b:83:f3:0a:ea:c7:66:dc:df:af:84:a5:f3:66:2b:30:
7b:60:54:21:94:76:bf:3b:e7:3e:47:d1:17:85:bb:73:1f:1e:
97:9b:03:91:a5:06:c0:cc:5a:89:27:e1:46:f9:38:b9:d4:56:
01:20:19:2f:ae:cf:c5:20:f0:94:3c:90:7d:c1:13:70:5d:e3:
06:61:93:20:7c:6c:90:e1:75:1c:a7:d8:ed:83:b4:18:0e:88:
24:44:00:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org