Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3364343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: bZu82U9ofBSTuFBGjGTt4XXZ3Uk9S7ADov8WQYbipXQ=
Subject key identifier: A2:4F:DC:D6:C2:CB:5B:FB:B2:91:BE:76:38:BA:EF:C2:8F:F6:3E:9B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0BF20214DAE627C3C4E72F5B19D6E2025DDF16F6
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:29 +0000
ROA not before: Mon 26 Sep 2022 10:55:29 +0000
ROA not after: Mon 25 Sep 2023 11:00:29 +0000
asID: 59282
IP address blocks: 2400:d680:3d4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:f2:02:14:da:e6:27:c3:c4:e7:2f:5b:19:d6:e2:02:5d:df:16:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:29 2022 GMT
Not After : Sep 25 11:00:29 2023 GMT
Subject: CN=A24FDCD6C2CB5BFBB291BE7638BAEFC28FF63E9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:42:12:22:3b:c4:98:7e:55:a1:f8:c0:c0:b4:
be:94:62:5c:e7:63:a2:00:86:e8:b2:b6:a2:02:c7:
ef:d8:58:c3:1e:fe:72:61:8a:5b:70:b6:80:57:07:
db:80:da:0e:75:cf:af:b1:5a:2d:e5:b0:24:60:78:
84:f4:e5:2b:21:be:0e:16:58:f3:ff:eb:bb:c9:e4:
d1:40:2c:10:46:1d:c8:af:a9:84:0c:a2:0a:c5:0b:
21:d7:8e:ed:41:e8:e8:a4:31:6d:55:5b:6b:1b:f9:
79:c2:c9:8b:e9:08:be:d4:b6:01:39:69:9e:a7:3b:
b2:9c:09:41:40:f3:2d:ba:36:7a:02:b3:b7:b2:cf:
60:fd:24:c1:60:7f:81:b5:3b:42:50:42:37:42:be:
fb:cf:ea:e6:e1:52:90:4a:77:75:3f:f4:23:99:ef:
46:90:07:df:9d:6e:f8:1a:6b:ae:60:97:c1:4e:6d:
bd:87:b4:97:df:5b:0c:18:a2:a9:8d:a7:06:37:e4:
87:25:a8:a4:b0:62:db:b8:c8:3d:99:99:e0:f5:b9:
91:59:12:22:8b:0a:0c:f5:b8:38:0b:43:b0:b2:0f:
43:5a:90:d2:57:e8:f5:a0:df:70:8a:98:c5:ec:00:
7e:1f:60:ed:03:23:6a:5a:50:a4:a9:36:ec:55:05:
a5:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:4F:DC:D6:C2:CB:5B:FB:B2:91:BE:76:38:BA:EF:C2:8F:F6:3E:9B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3d4::/48
Signature Algorithm: sha256WithRSAEncryption
2e:a1:7a:47:89:e9:9d:ec:fe:d9:04:5e:61:28:b8:88:5a:fe:
12:61:6a:af:d7:a4:53:2c:a3:ea:05:5d:db:a5:7f:0b:68:86:
5e:49:92:eb:86:8c:cc:ad:bd:35:e1:d1:d1:ad:d2:7d:ef:18:
aa:78:1b:e3:18:b8:f6:b5:ca:41:84:71:a5:aa:16:1a:2c:58:
99:ab:39:bc:9a:d3:2c:c1:c5:5d:41:9c:fb:ae:4b:64:99:91:
dc:ce:b1:b8:0a:3b:68:d0:0a:b6:b9:d1:f2:6c:9d:3b:8b:66:
d0:ec:b6:0b:fd:a5:f9:e1:d5:07:64:81:09:89:fb:72:21:d7:
c8:d3:9d:b3:9c:24:0e:e8:15:59:03:2b:35:a5:7a:f6:79:66:
99:df:b9:20:1f:6e:60:8b:56:3d:80:ac:ab:09:ea:87:e3:71:
50:d3:fc:2f:18:9f:27:b8:b7:8a:76:98:0a:2c:60:14:45:1f:
73:98:70:19:ac:bf:4f:bc:38:a2:3d:18:cc:20:4a:fa:cc:9e:
17:4a:52:af:4d:26:14:8e:14:86:7a:9c:fa:6c:82:f8:34:24:
f0:b5:f1:01:24:00:2e:33:c5:3e:c8:ab:91:51:a7:ba:a3:9e:
7f:9c:6a:c4:a6:85:47:a5:b6:a0:a7:c7:7b:fd:35:95:96:34:
f3:8c:15:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org