Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3363643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: zcEdtPEu+fXpk+Aaw6Ohdx506Ekr8afkJoLnxMCfU+Q=
Subject key identifier: 64:09:FF:CA:9E:67:95:29:27:DA:8B:E4:8E:14:08:92:F7:FA:12:C4
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 28EE51723AB66CD9720BE02E168770FFFAEB0C8B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:27 +0000
ROA not before: Mon 26 Sep 2022 10:55:27 +0000
ROA not after: Mon 25 Sep 2023 11:00:27 +0000
asID: 59282
IP address blocks: 2400:d680:3cd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:ee:51:72:3a:b6:6c:d9:72:0b:e0:2e:16:87:70:ff:fa:eb:0c:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:27 2022 GMT
Not After : Sep 25 11:00:27 2023 GMT
Subject: CN=6409FFCA9E67952927DA8BE48E140892F7FA12C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:15:c5:fc:12:96:5a:fb:d1:23:67:09:d4:12:
a5:04:d0:68:bc:da:65:61:42:2b:84:15:8d:13:22:
c0:6d:ae:0d:50:54:68:52:37:df:de:fa:d6:6b:63:
0d:ac:84:3f:fd:66:98:4f:f9:28:c0:6d:64:4e:44:
6e:01:c2:61:30:66:fc:c6:5f:e0:7b:6f:92:81:dd:
56:f6:fa:12:c9:d7:84:0a:07:43:41:82:5e:f3:a3:
bd:f5:ab:f4:3e:45:f3:6f:ac:fc:a1:9e:de:23:6b:
9e:3b:be:0e:fb:5d:47:1c:78:f2:13:b3:9c:68:d3:
1e:c4:9e:cb:17:c6:d2:32:ff:8e:aa:29:59:b6:90:
65:f8:fe:d3:c2:57:13:0e:9e:b0:d0:f2:cf:2a:26:
18:9d:ac:3d:01:39:33:01:64:e2:18:b3:61:fb:3a:
69:3b:e4:d3:2d:9f:63:ff:2d:2b:40:e7:bb:32:b5:
26:ef:2f:fd:36:c8:1d:8b:d2:8e:ee:5c:75:2c:55:
8c:da:a4:93:3f:e0:07:73:d0:b9:38:fa:3f:4d:35:
35:81:c4:ad:26:18:b0:aa:36:5b:dd:c2:7d:b0:fd:
d3:ff:df:b0:a8:1b:67:5a:c9:db:1f:89:d5:ab:21:
c7:f6:a6:f4:06:b4:bb:38:a4:ff:a4:08:cc:b5:81:
e7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:09:FF:CA:9E:67:95:29:27:DA:8B:E4:8E:14:08:92:F7:FA:12:C4
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3cd::/48
Signature Algorithm: sha256WithRSAEncryption
63:33:c5:5f:ae:c1:a9:73:7a:bd:d7:d7:20:eb:d4:0b:79:88:
3b:b5:b2:14:53:33:d0:9c:04:72:21:7b:da:e7:b8:80:ed:a2:
a7:33:46:10:c8:04:e2:25:64:12:d2:6e:74:c3:5b:97:b9:b5:
f1:4a:e8:95:b1:5a:15:d3:93:e1:02:a1:e1:32:7f:99:45:35:
16:bc:3c:a1:a4:21:6a:f7:bc:0e:0e:4b:a6:90:4a:42:5a:eb:
58:c7:bd:2b:01:7c:ae:1d:cc:2c:46:30:b5:ea:7d:e7:b1:97:
7a:89:c2:bc:5d:ba:ae:43:5a:06:31:1b:65:f7:00:86:58:c4:
9a:73:e1:0f:f3:43:4c:94:4c:c7:af:f3:49:43:06:04:d2:b6:
2b:d4:8f:e2:08:59:32:a9:7a:63:7b:f6:63:17:16:b6:db:8b:
a2:72:df:7b:e6:fd:c6:68:f7:46:43:e5:af:11:11:db:73:d6:
4d:3e:33:38:79:4e:87:27:65:ba:e8:4f:0c:1b:14:69:0d:84:
95:b9:58:3f:64:16:3a:d4:d4:b6:11:13:25:a6:a3:ff:54:fb:
ac:a6:19:fa:8b:4d:0e:b1:8a:ab:13:b1:6a:77:08:dd:b1:1c:
cc:d2:8a:75:c1:80:b9:1b:97:bf:b1:07:44:39:eb:e8:f3:e8:
9d:f5:0c:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org