Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3365333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: UsiTRnvapgjb2mxMCCsuitU4YsS0ZpqOEcGvYOYZPjo=
Subject key identifier: 80:66:9B:E4:BD:0E:09:29:A3:6F:21:77:E9:60:F9:39:5E:DB:F2:B6
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 54F83C4E4F086AFE09BD24412BE77323405B497D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:42 +0000
ROA not before: Mon 26 Sep 2022 10:55:42 +0000
ROA not after: Mon 25 Sep 2023 11:00:42 +0000
asID: 59282
IP address blocks: 2400:d680:3e3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:f8:3c:4e:4f:08:6a:fe:09:bd:24:41:2b:e7:73:23:40:5b:49:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:42 2022 GMT
Not After : Sep 25 11:00:42 2023 GMT
Subject: CN=80669BE4BD0E0929A36F2177E960F9395EDBF2B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b3:f1:b1:53:b0:39:ac:9e:ac:73:d3:e4:b7:
13:56:3f:f8:74:f5:77:8e:d6:82:4e:2a:de:f5:31:
73:4b:1c:b4:fd:f2:9d:70:50:34:45:6d:b1:0e:be:
1b:77:41:93:3a:59:7e:6a:01:e4:67:fb:c2:97:25:
b4:a6:15:99:2c:d2:7c:dd:aa:77:ae:81:76:d9:eb:
8e:87:98:7f:cf:52:fc:51:d0:fe:e1:e2:e4:27:d9:
88:9d:17:e2:c4:f6:03:29:1f:62:0c:0b:69:73:8f:
c8:e2:89:be:20:03:cb:d5:ad:d6:9d:99:82:89:e1:
4d:3c:d8:64:77:16:57:c5:3f:d6:3b:e6:09:b6:96:
4e:c8:29:2e:70:38:b7:66:1f:d0:1d:fa:4e:7a:c6:
73:64:fb:a0:69:01:5e:51:9a:38:9e:9a:30:ce:26:
fe:19:07:e1:20:d0:a0:1f:0d:08:27:c5:a8:de:51:
99:22:48:4f:c5:3e:f6:b5:de:fb:53:85:02:52:7f:
3d:8f:04:60:d9:28:8d:8f:b2:5e:69:a4:98:50:3e:
00:55:b6:9d:ca:92:52:d0:08:77:8f:bc:6c:aa:af:
2e:86:9e:e7:7d:5a:be:5b:95:b3:91:27:9f:f8:27:
a0:5c:da:b5:1d:17:66:db:5b:d1:9a:49:97:05:67:
1e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:66:9B:E4:BD:0E:09:29:A3:6F:21:77:E9:60:F9:39:5E:DB:F2:B6
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3e3::/48
Signature Algorithm: sha256WithRSAEncryption
80:39:b0:4a:c7:ea:a8:5b:fb:ad:df:a8:f8:0a:68:8a:ee:fa:
ed:93:d3:32:67:fc:72:7c:0c:19:5f:48:aa:ee:fc:4d:30:d0:
fc:b0:92:1b:89:74:9a:1c:55:bf:8d:c8:9d:a8:a1:e5:89:a1:
ba:b6:12:d6:4e:54:25:81:80:65:95:26:85:7f:38:6f:fa:3e:
86:fa:c0:7f:e3:54:32:2d:a2:c2:38:33:f7:ab:04:40:ce:68:
21:0e:24:ca:71:3b:49:e4:2c:d1:38:54:f9:3f:65:9e:e0:a4:
bd:f0:d2:41:ce:2f:0d:e0:a6:a5:af:68:32:43:c6:f8:81:3f:
f2:ce:04:b3:03:ea:46:f6:e6:fe:c8:70:da:70:82:98:c0:95:
4a:81:60:b4:dc:97:9c:52:02:45:40:c3:d1:56:15:a3:1f:02:
a8:49:2c:96:34:d1:7b:8a:a2:b4:9e:e4:fe:e3:ef:04:99:79:
01:a4:37:2e:98:0f:7f:19:f1:42:6a:fe:19:6b:7b:c0:15:4e:
3d:19:14:47:58:12:58:fa:c2:c1:40:54:d2:be:c9:60:0f:c3:
b2:28:4e:d2:18:82:a1:30:1a:36:4e:24:2e:be:bf:bb:2b:c4:
0c:8d:d4:ee:39:5f:91:7c:05:0b:dd:97:c8:c8:dc:3b:0a:13:
5e:97:6a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org