Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3365393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: +7StfbDwukkVWrkymv2UMPtjz8Z5WfO582PLhhh7axA=
Subject key identifier: 9E:A4:35:89:DA:68:14:2E:7E:65:11:3D:3B:95:23:A0:99:40:C9:4F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1991A1A219DC4E911B19085E08F9879C59B36BFF
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:28 +0000
ROA not before: Mon 26 Sep 2022 10:55:28 +0000
ROA not after: Mon 25 Sep 2023 11:00:28 +0000
asID: 59282
IP address blocks: 2400:d680:3e9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:91:a1:a2:19:dc:4e:91:1b:19:08:5e:08:f9:87:9c:59:b3:6b:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:28 2022 GMT
Not After : Sep 25 11:00:28 2023 GMT
Subject: CN=9EA43589DA68142E7E65113D3B9523A09940C94F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d7:39:9c:6f:85:6f:4d:25:20:ac:3b:9f:42:
c5:3b:3b:d5:0f:77:03:f2:44:70:71:b8:e4:0a:86:
be:97:79:f9:43:07:ca:0e:4e:f1:3a:3d:0e:b3:11:
42:15:96:d2:6a:33:77:39:85:f5:9a:86:56:99:c2:
56:db:25:e1:58:54:b6:29:68:b1:84:d8:03:c9:40:
71:b9:60:02:d6:ec:d7:c6:47:45:c6:2a:29:c1:47:
ff:9b:6b:03:6b:f0:cf:a6:32:53:ea:69:52:bf:f4:
cc:21:ff:af:77:36:25:5a:89:a9:a6:59:13:0e:e5:
ac:ae:a8:0b:3a:c0:88:7c:16:92:6f:78:a4:9e:5c:
a7:cd:22:cb:75:36:7d:45:46:48:ac:6a:01:1a:7a:
a1:60:d2:58:a1:12:8a:33:ad:9b:f4:e0:9e:25:e0:
4b:b6:db:23:7d:68:9c:02:8c:64:28:e2:d4:ce:47:
bd:e7:fb:5a:4b:55:29:8a:e0:1a:7e:04:49:f8:1a:
2b:9d:48:1c:6d:b8:9d:9e:2e:5c:65:f0:d4:a6:11:
9b:33:5a:c7:42:5b:e4:7b:f2:7c:ac:b8:03:0e:2b:
5c:fc:60:22:3d:0b:29:77:f9:ff:a4:1d:f6:e5:d6:
27:12:65:e2:c4:5f:ab:d8:e9:39:42:90:10:a8:dd:
e6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:A4:35:89:DA:68:14:2E:7E:65:11:3D:3B:95:23:A0:99:40:C9:4F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3e9::/48
Signature Algorithm: sha256WithRSAEncryption
0b:52:fc:7a:60:a8:cd:7b:14:6b:44:cd:e8:ee:77:3e:a6:2a:
48:dc:b0:b6:12:76:5e:e5:36:d7:03:ee:7f:8c:f0:48:06:c5:
3d:e8:b2:76:15:04:60:db:78:79:a5:55:78:24:db:97:c4:be:
75:83:36:0c:fb:7c:33:05:b1:73:c8:dc:3e:3e:5a:ae:b8:0b:
36:2f:df:e1:96:8b:47:10:ba:cf:86:76:6f:22:6e:dd:cd:b5:
26:70:a2:81:56:11:4e:11:82:86:40:0a:77:d9:f0:d8:11:94:
6f:c6:3a:00:b9:06:8b:c5:a0:64:a2:06:b4:3a:b0:37:5c:4e:
e4:50:cc:3a:47:54:eb:a6:3b:6d:3e:ab:dd:20:5b:0c:94:87:
c7:a9:bd:5a:83:3f:d5:39:e4:50:98:76:48:bc:9d:6f:06:78:
99:b8:d9:77:e2:8b:f7:fc:c1:8c:2a:05:b4:60:fb:8e:9f:a5:
71:7d:4d:b7:73:2e:78:db:fe:2e:19:17:38:e0:34:b3:0a:c2:
bf:70:09:fc:ad:b4:cb:84:6b:fa:08:18:43:d1:1c:84:9e:fd:
d9:cc:df:c3:e8:83:cf:9d:3e:e7:7e:6a:7b:9c:a6:89:c0:cd:
26:f6:51:ad:cd:07:f0:7a:28:a2:ec:77:57:87:dc:54:06:ec:
57:2d:01:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org