Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3362643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: YNfJxKF2rjBPyTSu4g3U6hMB/E8+JzXMPWXPiLNxQAs=
Subject key identifier: B4:64:44:9D:FC:EC:1F:04:FD:99:28:AA:B0:BE:60:5A:CB:C0:61:4D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 66CC4B1D52FDA4C981A90622393F24EE86B257D4
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:42 +0000
ROA not before: Mon 26 Sep 2022 10:55:42 +0000
ROA not after: Mon 25 Sep 2023 11:00:42 +0000
asID: 59282
IP address blocks: 2400:d680:3bd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:cc:4b:1d:52:fd:a4:c9:81:a9:06:22:39:3f:24:ee:86:b2:57:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:42 2022 GMT
Not After : Sep 25 11:00:42 2023 GMT
Subject: CN=B464449DFCEC1F04FD9928AAB0BE605ACBC0614D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:94:98:ee:ef:a7:77:bb:06:ad:d4:51:81:4c:
e6:a9:2a:b5:0f:26:49:d2:27:1d:48:a7:5b:bb:89:
96:b9:cf:dc:a6:dc:4f:1e:8e:34:cf:6e:16:c0:1e:
52:18:9f:3e:26:f6:0e:1f:06:48:c5:7b:d8:f8:cf:
0e:d4:a0:85:66:bc:31:7d:d3:1d:3b:5a:c2:1f:64:
86:2b:b4:f6:79:33:0f:d3:2e:55:03:4f:7f:4e:85:
21:10:fd:04:79:16:50:0c:62:d4:5f:1c:e8:e2:4e:
9d:57:9f:23:2a:63:cc:8a:86:ee:6f:7d:00:5f:6f:
d2:c4:c9:a9:ff:72:30:f1:9a:0b:c1:54:0c:a7:91:
d5:bf:f7:70:ab:fe:9f:2d:96:4b:ca:55:fe:6e:a0:
2e:0e:1a:f2:07:93:ef:cf:62:62:69:60:bc:f5:49:
34:6f:e5:63:8f:e6:70:d4:20:5b:56:92:72:52:93:
01:2f:3d:3d:33:7b:fe:cf:dc:2e:56:94:a8:42:98:
23:47:62:bd:f0:1f:a7:96:18:07:11:a9:62:f0:9a:
88:d1:bb:fa:c5:83:60:1a:89:55:cb:c9:5d:82:ee:
d6:b2:6d:c4:7a:fc:cf:95:b1:7c:d2:8d:a1:cd:43:
7b:09:7d:db:05:da:a5:95:74:93:4a:4d:0f:cc:a2:
19:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:64:44:9D:FC:EC:1F:04:FD:99:28:AA:B0:BE:60:5A:CB:C0:61:4D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3bd::/48
Signature Algorithm: sha256WithRSAEncryption
4e:7c:a4:1d:08:88:08:41:ff:60:06:e5:82:b0:21:e6:bf:8a:
b7:5a:01:8d:75:0d:55:54:cd:1c:f5:de:17:59:53:0a:d9:dd:
e1:19:63:9d:76:21:92:63:1f:bb:cf:43:84:50:8a:40:27:f5:
b7:01:e9:64:a9:b3:20:b1:e8:5f:e9:a0:48:4f:1f:e7:c7:d5:
df:f9:07:de:49:e2:2c:c0:35:78:70:5b:68:0d:1c:69:b3:13:
c5:57:97:23:e4:f8:1c:91:47:98:d7:cb:52:52:7f:28:56:65:
98:76:4e:be:8e:16:4c:d5:ee:89:08:f2:15:5b:5e:aa:3e:95:
93:b3:97:35:57:4b:e2:36:0c:11:30:10:72:30:8f:88:ff:86:
c7:42:b6:18:ca:44:4c:6a:7f:1b:97:8f:93:41:d1:af:0e:25:
dc:4a:4d:83:dd:cb:46:92:3f:f3:26:c4:4d:ab:9f:d7:45:63:
d4:64:b8:21:a1:19:ae:68:89:3a:e4:11:12:f2:c2:07:95:19:
05:0c:e6:5b:ab:5c:c9:25:50:00:f3:a4:b2:f6:f1:4e:59:68:
3a:00:dd:bd:33:ca:55:00:c3:41:91:c2:30:35:00:ec:7e:68:
ad:b6:e7:ea:5a:2a:5a:4f:6e:c4:dd:d4:31:cf:9e:2f:ee:96:
5b:2b:75:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org