Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3363393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: nfM8sV9TYvw50hywklRBAOQn8l5DzOgLUUHnePbNQIw=
Subject key identifier: 0D:76:63:2F:E7:4E:28:42:26:77:71:92:16:64:F9:48:53:05:EE:DB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4F6DDFBBF576121331E356ECB80C4445B5C765E5
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:41 +0000
ROA not before: Mon 26 Sep 2022 10:55:41 +0000
ROA not after: Mon 25 Sep 2023 11:00:41 +0000
asID: 59282
IP address blocks: 2400:d680:3c9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:6d:df:bb:f5:76:12:13:31:e3:56:ec:b8:0c:44:45:b5:c7:65:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:41 2022 GMT
Not After : Sep 25 11:00:41 2023 GMT
Subject: CN=0D76632FE74E2842267771921664F9485305EEDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:33:e2:35:a2:13:93:0d:1c:8d:a1:3d:2e:90:
fd:5d:cc:ee:86:be:a2:9c:48:1f:7a:62:18:6a:b4:
9e:db:27:f9:b9:c2:62:42:cc:9d:7d:09:a2:96:ef:
52:91:3d:0d:7d:42:ab:df:d9:92:fd:8b:70:3e:f3:
d1:1f:3c:5c:12:28:d8:ed:0b:79:fe:b9:9f:28:d5:
62:b1:ea:3f:d2:32:d5:67:25:f8:32:c2:73:5a:c1:
7d:fb:a9:ec:b8:9b:eb:0f:80:fa:a1:7e:ea:ff:eb:
48:30:d6:82:8e:ed:d1:72:17:9f:6f:c3:ba:5a:c1:
d0:7c:d1:d5:e4:0a:64:74:f5:25:35:4d:96:d2:77:
e9:ec:a7:f5:d5:bb:4e:3c:e3:82:4e:67:38:34:87:
28:f9:ba:ef:60:a7:ee:c5:94:f7:47:62:79:65:bf:
0f:02:09:61:17:f1:a4:67:d2:65:f4:ae:25:0b:db:
5c:8a:dc:91:b3:49:ca:19:2b:3c:6f:d0:a9:61:88:
df:57:9e:91:4a:03:1b:42:5b:95:33:8d:ac:ed:08:
67:bc:21:55:e3:9e:9f:1d:4f:45:18:e9:ab:81:31:
58:ab:d9:8e:f5:8f:b3:68:2a:00:de:a9:ce:3e:14:
f6:03:9c:09:cd:f6:84:2f:f1:dc:1f:32:1b:10:aa:
9b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:76:63:2F:E7:4E:28:42:26:77:71:92:16:64:F9:48:53:05:EE:DB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3c9::/48
Signature Algorithm: sha256WithRSAEncryption
42:98:ec:41:e0:8d:cf:7a:df:59:73:1c:8f:a0:0d:c9:d6:17:
d7:07:f4:72:02:89:46:08:4b:cf:ef:eb:af:81:e5:71:48:92:
c2:92:95:4f:f0:00:19:59:44:c9:d9:72:4a:b7:f3:42:dc:eb:
1f:c2:ab:41:88:a8:47:8e:21:b7:f7:7f:49:78:66:4d:8c:01:
98:aa:56:ee:32:fd:60:2b:9f:86:96:1d:e3:d5:e0:f9:82:33:
3f:04:5a:c1:57:36:03:e4:58:9a:3c:bb:8e:63:6d:6a:ef:b2:
89:ae:ea:2c:78:5b:34:74:5b:61:07:f0:20:27:be:22:07:f6:
d0:1b:31:27:d3:5d:39:2e:70:3d:23:00:2f:16:f0:97:ba:26:
d8:97:f5:6f:df:56:50:02:7a:b3:07:c0:7f:df:f2:9a:fd:55:
ed:b0:44:bb:0f:00:80:47:64:51:ea:49:aa:e5:d9:8a:61:3f:
84:e2:a1:c6:93:39:df:31:63:30:97:80:50:b9:43:66:f8:d1:
1f:2d:bd:29:5b:60:83:1b:16:44:da:b6:2c:e7:f6:46:76:8e:
54:02:1a:df:46:0e:b3:8e:c0:be:ae:fc:1c:cd:78:a5:78:b0:
b2:7f:9f:9f:fe:2f:8f:f5:78:95:7a:6f:f2:ed:f4:5c:83:a2:
db:a9:06:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org