Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3365313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: f11KpO9iHQmxa89IWz1PEAmeK9sG8ydjGFS8ortN/gU=
Subject key identifier: 86:5C:CD:B1:F5:7D:D7:24:EC:54:02:9F:2D:0D:72:D9:53:E8:F2:55
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0D73044610E6DB08F8B611CBAFCD2E0CFC0EF6F8
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:25 +0000
ROA not before: Mon 26 Sep 2022 10:55:25 +0000
ROA not after: Mon 25 Sep 2023 11:00:25 +0000
asID: 59282
IP address blocks: 2400:d680:3e1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:73:04:46:10:e6:db:08:f8:b6:11:cb:af:cd:2e:0c:fc:0e:f6:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:25 2022 GMT
Not After : Sep 25 11:00:25 2023 GMT
Subject: CN=865CCDB1F57DD724EC54029F2D0D72D953E8F255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:77:d8:5b:75:42:ed:dd:22:47:68:0f:88:43:
16:40:8b:81:09:bd:93:c8:5e:15:7b:81:6a:e7:36:
be:45:84:7d:9b:78:d6:2d:b4:6d:a7:09:34:44:a0:
3b:12:6c:8d:70:17:55:1a:f5:23:09:7a:3a:26:96:
eb:73:77:31:84:fe:69:c3:a6:90:1e:d9:c7:2a:49:
63:7c:6e:ac:8c:fe:68:71:90:9a:bf:0a:03:1f:81:
0f:a4:f5:45:2e:30:59:1c:f7:66:91:b9:1f:ca:a1:
67:74:8a:a3:55:f2:bb:46:6e:fe:7a:ad:f0:69:88:
de:59:69:70:4f:38:db:81:f5:58:74:b3:33:f0:e7:
1f:7c:72:92:a1:3e:87:e1:1e:9c:49:be:f9:b4:00:
c3:60:49:13:2e:48:34:b8:42:81:eb:5b:79:3d:41:
5d:36:27:ed:65:3b:4e:95:95:af:50:81:ed:5f:60:
4b:e8:65:0e:cb:52:75:60:57:3f:22:19:6f:a5:08:
92:7f:4f:f6:60:12:f5:3f:a5:f2:89:cb:6b:44:67:
3c:bd:83:73:24:c3:1e:d2:4d:23:c4:ee:76:6a:15:
6e:65:21:c1:9e:d3:08:4c:ce:44:01:51:f7:1b:61:
1d:17:9d:4d:0c:45:cd:0f:a3:b3:9c:2b:90:be:ba:
34:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:5C:CD:B1:F5:7D:D7:24:EC:54:02:9F:2D:0D:72:D9:53:E8:F2:55
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3e1::/48
Signature Algorithm: sha256WithRSAEncryption
7f:3b:ed:6b:9b:1d:e8:3e:8b:fd:73:f4:b9:f0:05:75:fe:3e:
d6:37:f3:05:7d:48:0c:68:4e:37:57:fa:e9:3f:31:14:2f:f1:
e5:cf:9d:85:e4:43:0e:a7:82:19:18:7c:b2:eb:3f:2d:0e:fe:
9e:9a:ba:ee:b3:49:d6:e5:92:46:6d:45:43:8d:13:c0:10:ea:
b3:a6:a9:0c:56:38:d8:c1:99:8b:bb:70:95:d0:45:e7:0a:0b:
61:a2:c6:26:fb:a3:3c:bb:6d:1c:38:93:7d:b9:3b:ac:a5:45:
37:c4:c5:d0:f2:0c:86:19:9f:03:0e:f4:44:3c:fe:aa:a9:d9:
bf:76:c6:fd:d7:20:89:01:d7:69:cc:48:3d:3f:52:e5:4e:b6:
de:42:8b:1d:46:28:4b:1f:1c:2f:41:a9:cd:b4:eb:9f:65:b0:
14:b8:26:8d:07:b1:72:87:b2:39:39:68:64:ea:44:1a:f6:e7:
24:87:fb:ad:2d:46:2d:b1:a2:79:a4:4f:15:0c:d0:1a:ea:6f:
f7:c6:2f:71:af:f7:0c:3f:57:be:2c:03:c1:42:0d:df:e9:af:
d2:97:3e:98:5b:f3:f7:0d:de:00:09:02:ba:a4:cf:94:21:cd:
99:33:bb:bb:0a:70:1f:9e:42:8d:07:f0:14:92:df:06:e9:73:
2b:e3:13:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org