Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3362393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: iThXZGcT1Kpk8Kg/g6F2ZivsH67cz/EryK2WpifVrBA=
Subject key identifier: 03:7C:92:81:9F:AF:F8:D6:12:90:F2:F9:23:5B:86:16:D4:47:B8:8C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 63E42A8E2468A77CF899A81AD0BC61493057E762
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:23 +0000
ROA not before: Mon 26 Sep 2022 10:55:23 +0000
ROA not after: Mon 25 Sep 2023 11:00:23 +0000
asID: 59282
IP address blocks: 2400:d680:3b9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:e4:2a:8e:24:68:a7:7c:f8:99:a8:1a:d0:bc:61:49:30:57:e7:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:23 2022 GMT
Not After : Sep 25 11:00:23 2023 GMT
Subject: CN=037C92819FAFF8D61290F2F9235B8616D447B88C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:46:16:af:f1:0b:d2:80:be:5c:3f:10:f7:95:
9f:aa:ab:3a:1e:bd:04:f2:e4:19:e5:76:36:9e:d1:
9a:d8:d7:75:5e:41:d8:09:c4:07:6e:4d:f1:f4:6c:
c8:99:64:92:00:d2:f2:d7:3c:a2:61:25:a8:e1:b9:
74:92:2e:c2:fb:80:1e:0d:71:fa:f4:2f:7e:4d:be:
2f:1a:12:8a:05:14:e2:cf:13:0d:c0:35:40:fc:4c:
78:c2:df:0f:69:02:00:a0:0a:23:fd:52:a8:20:75:
d4:8f:1a:9b:59:84:f1:09:a6:a8:f6:6d:54:7c:9e:
39:cf:1a:74:81:c7:01:05:83:25:78:24:23:7f:2e:
37:fe:89:7a:57:66:6e:ba:de:fd:2d:40:06:04:d8:
1e:ae:92:52:aa:14:4a:13:3a:29:e3:5e:30:c4:22:
27:08:08:7c:24:de:df:3c:03:01:d4:9f:16:20:a0:
39:dc:75:96:2c:1f:84:bb:cf:c5:7b:b5:2d:89:d6:
6c:05:cd:e8:8e:8f:62:9a:e6:b0:0c:a0:dc:78:3f:
f6:ea:b3:a2:09:09:f7:27:30:3c:07:23:7c:45:2b:
18:8c:30:7c:fc:02:13:d9:74:e4:35:bd:c8:4d:d8:
74:2a:4b:75:6d:2e:33:bb:44:bb:44:98:f4:9d:db:
19:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:7C:92:81:9F:AF:F8:D6:12:90:F2:F9:23:5B:86:16:D4:47:B8:8C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3b9::/48
Signature Algorithm: sha256WithRSAEncryption
07:f7:1d:3c:62:dd:f0:aa:fd:33:38:e0:6b:04:74:74:f3:19:
ee:d0:ee:68:85:52:0f:b7:dd:b9:6e:c5:10:86:3f:dc:70:16:
79:75:2b:8a:b8:6d:40:24:22:4b:7e:1a:2a:11:4c:39:dc:42:
57:28:f7:4e:f7:46:f9:71:cb:47:50:0e:6d:9f:8f:a4:86:d9:
d4:2d:4d:5f:e6:4b:a7:89:38:d4:86:5f:bc:76:0f:1a:57:0b:
54:6e:b1:0f:b9:13:73:b3:e3:2e:c4:67:8d:50:56:56:42:69:
d0:4f:2e:e7:c4:73:ad:fc:cf:cf:b9:43:ed:8d:06:5c:9a:9f:
68:9d:9d:d5:63:d4:8f:14:34:77:d2:04:ce:ab:2a:ac:75:5b:
0b:05:b2:10:5e:46:06:46:49:a2:9d:b2:bc:f9:61:34:d8:eb:
ca:17:9b:5e:bc:0f:40:21:15:33:af:2e:28:29:12:70:6d:fc:
e1:70:01:0e:a8:18:64:49:4b:b0:99:d5:d4:2b:fb:77:42:f3:
a2:a0:33:3c:0e:48:bd:37:ab:dc:1a:b3:2b:da:fe:e5:6c:c6:
c1:d5:c9:11:61:d6:be:c8:08:20:4e:30:64:af:91:5e:65:b1:
8e:39:44:e3:01:24:9f:5f:4a:9c:99:e6:f5:1b:09:0e:ad:ef:
a4:1e:f5:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org