Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3365383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: pw/FOhc5BJX4oJmo623LA9H82YcuA9Ufj6tssv6LYR4=
Subject key identifier: 72:0A:79:CE:CA:5B:E2:C7:8D:74:43:81:7B:B5:D9:3B:FB:45:38:21
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1B6F0851D8EC7E447103CF8B3D6D1954E267FE68
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:32 +0000
ROA not before: Mon 26 Sep 2022 10:55:32 +0000
ROA not after: Mon 25 Sep 2023 11:00:32 +0000
asID: 59282
IP address blocks: 2400:d680:3e8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:6f:08:51:d8:ec:7e:44:71:03:cf:8b:3d:6d:19:54:e2:67:fe:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:32 2022 GMT
Not After : Sep 25 11:00:32 2023 GMT
Subject: CN=720A79CECA5BE2C78D7443817BB5D93BFB453821
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:86:17:9a:94:6e:cb:dd:36:d5:59:79:a8:17:
b1:c4:5d:e6:dd:7b:94:00:9d:95:d1:1e:a1:40:5a:
09:b3:2c:42:3b:86:e3:d3:7e:9e:de:13:66:0a:c4:
f0:7f:58:71:ec:6d:8a:c0:dc:f7:89:f5:28:fe:f5:
db:7f:fc:4d:e5:5e:2f:cb:f2:cd:fe:0c:4b:fb:e7:
6c:86:51:80:ee:6b:ed:71:1a:b0:aa:7d:dd:26:a2:
ac:7c:6b:80:61:ba:24:08:4e:23:5d:91:2d:b4:d6:
12:51:0d:ed:6a:4a:59:a7:6a:0d:ba:c5:c1:43:dd:
e1:67:a6:b2:9a:a6:f0:26:07:1b:bc:cc:6b:c7:89:
57:a8:15:1c:28:ac:9e:53:af:66:e1:77:af:86:56:
25:33:6e:87:b0:c4:c5:0a:76:33:52:af:2e:13:0e:
49:60:3f:02:2f:35:8d:8b:8c:14:42:f0:9a:8f:37:
39:f9:8c:4e:f6:6c:cb:c4:fe:a1:5a:30:f8:4a:3e:
11:5b:8e:c9:d2:55:e6:02:1d:fe:cd:42:bf:a2:b4:
c3:d1:0e:dc:a1:6b:4e:0f:56:a6:36:6b:e8:93:30:
5d:ad:95:53:30:01:e1:9c:ae:48:30:c0:f4:be:9b:
39:be:05:64:ea:74:12:96:36:a1:4f:fd:9f:74:2b:
5f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:0A:79:CE:CA:5B:E2:C7:8D:74:43:81:7B:B5:D9:3B:FB:45:38:21
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3e8::/48
Signature Algorithm: sha256WithRSAEncryption
62:c7:5f:74:ee:78:46:31:a5:22:80:21:be:e0:5c:e2:e3:b9:
b5:4e:0d:84:27:9f:ad:58:b3:b5:24:94:fd:9b:f8:12:88:df:
a9:d3:b7:12:a4:73:f6:80:b9:c7:08:93:ca:99:96:68:5b:ce:
7f:fc:02:7e:d8:5b:0e:f3:69:f5:fe:9b:a5:f1:39:d5:4c:4d:
8a:3b:2d:01:8d:ac:68:16:c0:92:98:c9:0e:79:e1:40:c9:a1:
02:69:2f:3c:a1:57:cc:4c:4b:04:91:a1:3a:97:84:80:71:48:
54:3e:38:31:9e:13:5c:52:e3:51:5c:f4:e1:df:d4:80:ae:8c:
14:3b:8b:42:e6:5d:4b:50:dd:5d:19:97:48:32:1b:58:f5:95:
25:99:eb:1d:26:d7:67:31:58:89:52:39:59:59:7e:48:63:fc:
f9:13:88:bd:0b:5a:b4:df:f6:57:45:09:8d:d7:95:31:f9:9a:
b6:c9:57:c2:c4:d1:a7:b2:bd:56:d1:46:73:14:a8:e9:3a:37:
30:70:82:7c:da:fc:e1:05:81:45:da:8b:56:c0:7f:5b:11:c9:
77:29:65:8b:11:d6:18:7a:53:1b:34:35:44:81:51:8a:be:9c:
2b:65:af:a3:7b:b9:85:5e:f2:b0:3a:e0:11:14:2c:95:7d:48:
76:50:5a:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org