Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3364653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: uGVTMSm1V5MiDwUi/468P0VhVH7ElPu6YR7XGeGm3wY=
Subject key identifier: B0:23:18:90:3C:47:04:E0:2F:F6:88:B1:51:B7:95:6D:F3:0E:74:20
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 598074EAC9322479B5510680FA9E3960D1DDD6F1
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:48 +0000
ROA not before: Mon 26 Sep 2022 10:55:48 +0000
ROA not after: Mon 25 Sep 2023 11:00:48 +0000
asID: 59282
IP address blocks: 2400:d680:3de::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:80:74:ea:c9:32:24:79:b5:51:06:80:fa:9e:39:60:d1:dd:d6:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:48 2022 GMT
Not After : Sep 25 11:00:48 2023 GMT
Subject: CN=B02318903C4704E02FF688B151B7956DF30E7420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:31:75:0a:b1:21:19:55:5c:f9:81:eb:67:c4:
d7:a3:f6:13:a8:50:eb:cb:ee:60:58:79:69:2e:08:
71:47:f8:a8:6a:2d:9a:b6:3e:ff:63:43:24:ed:cc:
c1:3e:d9:4f:e5:ce:83:24:21:4d:f7:ba:68:ba:15:
b0:4f:2a:31:fd:35:b0:28:2c:24:9f:a9:47:5b:42:
5d:dc:83:75:a7:5e:b9:84:b4:46:b9:d7:03:5b:30:
87:16:4f:7a:ed:60:63:16:23:74:fa:b3:0d:b1:62:
f3:c4:75:cf:c1:49:ad:61:75:54:26:c3:5d:cc:e1:
22:10:47:23:c9:ee:4c:79:b4:f3:d4:25:df:d8:54:
ee:76:c6:93:ba:79:07:af:a9:d4:d2:91:fa:b6:55:
4b:c5:2f:76:b2:68:cf:a1:3e:7c:3b:64:dd:5c:ff:
26:92:f5:34:b5:6a:2b:e0:77:de:dd:c7:40:eb:ff:
0f:14:aa:03:4c:6d:ce:83:85:3c:f1:82:85:cd:26:
df:11:e7:5d:56:d3:95:09:30:65:ac:f7:4e:d7:ba:
cb:25:c5:a2:d6:f8:b0:be:6c:2d:cb:6e:a7:a0:7a:
b3:3f:aa:58:d9:f2:d4:10:2c:ef:06:bb:37:ae:9c:
29:f9:a6:be:8b:fd:d5:b7:2f:dd:63:99:20:16:7e:
34:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:23:18:90:3C:47:04:E0:2F:F6:88:B1:51:B7:95:6D:F3:0E:74:20
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3de::/48
Signature Algorithm: sha256WithRSAEncryption
05:5b:02:f6:52:a6:4b:67:39:0f:2e:da:a6:9d:3e:fd:8b:e7:
92:d6:d2:7f:72:06:96:58:d0:9f:b9:58:c0:51:5d:67:21:78:
9a:fa:57:fe:f8:f8:41:11:e0:5c:65:2f:e5:88:c6:57:98:5e:
ab:2a:60:64:2d:fe:90:f8:f3:49:94:57:f0:a7:ec:25:51:3d:
2d:a0:dd:ac:c5:04:d1:c1:0d:24:32:79:d7:a7:9c:41:e1:90:
82:35:ec:e9:8c:61:36:07:55:4b:c4:28:dd:68:08:6c:ee:5a:
be:4e:79:15:f5:27:03:5a:16:84:22:dd:75:f7:5b:8b:ae:31:
07:81:a9:11:94:70:7e:39:6b:a7:16:3c:55:d8:b8:86:9e:e4:
38:e3:ff:76:02:8e:31:50:5f:51:c3:91:26:e2:99:f3:4f:1e:
a7:0e:fb:48:59:68:0c:41:02:81:b0:a5:ee:ef:3a:3f:08:23:
61:cd:6d:38:be:30:86:5f:c3:b1:f3:f3:77:5e:17:77:46:f7:
03:d2:d1:22:f6:ec:48:70:0e:8a:b1:16:f7:56:c7:f0:29:07:
60:61:af:5f:40:c7:20:bb:83:d3:80:e0:f4:d3:03:49:c3:bf:
3c:e5:c8:51:b4:ea:24:85:06:2d:55:e4:18:b5:92:a6:0b:a3:
35:00:25:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org