Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3362323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: oKHMRJJ8ufupP1ahDZPS4gDfe1xdIO0rhY7xP+1Vpuk=
Subject key identifier: 48:2E:85:6C:52:DF:AF:DF:06:91:C0:81:B7:E8:F6:7B:ED:20:9B:6A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 43CB6B618C31357C6BD9E5A53491E71A363336C7
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:25 +0000
ROA not before: Mon 26 Sep 2022 10:55:25 +0000
ROA not after: Mon 25 Sep 2023 11:00:25 +0000
asID: 59282
IP address blocks: 2400:d680:3b2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:cb:6b:61:8c:31:35:7c:6b:d9:e5:a5:34:91:e7:1a:36:33:36:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:25 2022 GMT
Not After : Sep 25 11:00:25 2023 GMT
Subject: CN=482E856C52DFAFDF0691C081B7E8F67BED209B6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:be:05:85:d3:c1:b0:62:e3:24:bd:e1:9f:a1:
72:12:65:b3:04:a9:3a:14:fb:7c:21:a8:e4:a8:58:
46:72:14:2e:08:4d:7b:f3:50:66:7a:42:3b:7c:25:
b0:63:6f:f4:7f:11:92:19:ac:51:00:ef:c9:75:b4:
02:c0:86:c9:7e:95:e9:a5:0b:64:03:b0:ce:b0:cb:
d9:64:d9:56:53:b4:f4:76:98:59:d0:2d:02:ff:af:
a4:78:ac:2c:3c:4c:d3:2a:c5:15:bd:7e:1b:36:7a:
fc:ed:b3:df:44:8d:29:03:20:c5:e5:8e:7f:7a:6a:
ee:85:34:21:79:25:9e:4a:ec:0d:07:e4:d9:ee:80:
b8:3e:8d:3c:03:00:7a:27:9e:8a:cd:45:05:fd:0e:
74:ad:10:73:ee:2f:a1:c9:57:ea:a1:9a:f9:38:c9:
85:86:68:04:46:49:9f:5b:06:14:10:74:c0:61:55:
9d:27:f7:19:ed:89:38:5d:70:3e:9f:11:46:6e:bf:
4e:c4:9e:a8:99:53:3d:4b:49:50:da:00:9f:8d:b7:
49:4f:f4:4b:bf:74:88:e0:31:cf:aa:5b:4d:2e:be:
4e:84:ca:86:34:fc:36:25:b8:3d:28:01:63:97:86:
e5:b0:6a:91:85:3c:a4:64:2c:f4:f3:49:7d:de:d6:
59:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:2E:85:6C:52:DF:AF:DF:06:91:C0:81:B7:E8:F6:7B:ED:20:9B:6A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3b2::/48
Signature Algorithm: sha256WithRSAEncryption
4a:a4:ad:8a:ef:fb:8b:49:43:d1:2f:08:10:f9:13:7e:3a:39:
0d:d9:9a:30:52:54:7c:5b:0e:e3:00:83:81:12:c4:12:fb:99:
1e:7d:5c:c3:32:25:11:7e:2c:d1:fb:7e:6c:14:35:ea:a1:67:
0f:5a:12:bc:34:70:7e:a8:83:92:6e:40:fe:83:ca:b5:6e:ec:
65:37:53:b0:15:a8:1d:aa:f4:bf:73:97:94:39:66:51:73:65:
b8:c1:37:3f:fe:ed:c9:08:5a:90:34:52:9b:f3:ad:77:8e:95:
14:f6:fa:4d:4e:7a:95:9b:44:ee:4e:33:b8:3d:a3:42:b2:e7:
46:9c:76:7c:13:18:7a:65:c8:90:00:47:7a:e2:c3:ee:f0:6c:
9c:47:43:55:29:73:1e:4c:22:35:ae:82:44:0b:4e:8a:a0:02:
a9:0e:ab:32:52:80:15:aa:49:7a:91:31:e0:da:7b:ca:cb:17:
08:d9:9a:da:26:1a:a5:99:6e:ed:ad:f7:39:97:f5:f5:14:81:
06:d8:75:36:69:da:89:40:bb:a1:e1:0d:01:69:b7:e2:21:f3:
7c:ba:2b:13:4c:5e:d8:f3:41:ff:ff:bc:c6:fe:e2:60:87:72:
f5:10:30:03:cb:20:2c:79:e0:68:8f:22:53:92:6b:96:8c:27:
ba:03:d9:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org