Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3365623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: y8SnoL/31Ff42QEhAqkw9GO3ut0EhgObMubveaI5Ues=
Subject key identifier: A0:31:17:8E:3D:4E:DC:50:4C:55:11:09:E7:16:65:E8:A5:F5:DB:0B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 601F2B18F60C24F55C84C2D01B5D248FF4BB2A8C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:33 +0000
ROA not before: Mon 26 Sep 2022 10:55:33 +0000
ROA not after: Mon 25 Sep 2023 11:00:33 +0000
asID: 59282
IP address blocks: 2400:d680:3eb::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:1f:2b:18:f6:0c:24:f5:5c:84:c2:d0:1b:5d:24:8f:f4:bb:2a:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:33 2022 GMT
Not After : Sep 25 11:00:33 2023 GMT
Subject: CN=A031178E3D4EDC504C551109E71665E8A5F5DB0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:45:d0:42:a1:55:a6:03:da:99:5f:10:79:06:
25:2f:d6:59:6a:ac:4d:ed:c4:b0:44:cb:7f:d4:6f:
2b:42:5e:41:40:e8:da:17:b6:f3:a1:5b:01:b4:c9:
32:a0:92:5c:16:c8:df:ce:36:6e:8d:2a:79:60:12:
0a:4a:bb:ea:cd:ee:a0:b2:f3:9d:30:ae:79:bc:c9:
1f:26:0a:4b:15:b7:3e:fa:2c:4a:39:ca:f6:60:11:
7d:d4:19:0b:7a:68:c2:ca:9f:ff:84:8c:58:ba:b9:
e0:1d:1e:be:23:38:47:2b:af:a9:a9:6c:88:01:bd:
81:81:b5:4e:45:9e:85:0a:17:00:89:10:09:cf:08:
76:ed:f1:03:8e:ec:0c:9d:bb:03:ed:27:18:82:ac:
00:02:cf:d7:c7:9f:9e:7f:8d:ea:2d:34:33:4d:f2:
84:93:f6:7b:24:00:44:ef:d5:39:09:3b:84:13:5f:
93:07:12:22:32:b2:5d:af:dc:21:fb:75:c5:8e:ba:
63:25:fa:54:5f:5b:c8:93:77:60:05:d0:65:51:92:
a6:e5:b8:d1:e8:84:b6:20:fc:32:5e:2c:c7:16:6b:
fd:4f:56:c3:30:43:b7:0a:d1:2d:09:37:2f:e2:a8:
97:0b:9d:e8:0f:6e:a8:5a:51:96:d4:0e:a7:5f:fc:
9c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:31:17:8E:3D:4E:DC:50:4C:55:11:09:E7:16:65:E8:A5:F5:DB:0B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3eb::/48
Signature Algorithm: sha256WithRSAEncryption
12:1f:66:00:92:b1:5f:e1:de:ea:6e:b1:a0:86:5f:a3:48:f2:
37:c5:f4:8b:15:5d:57:cd:29:b8:ac:bc:8d:36:10:fd:b7:83:
b7:9a:25:1d:fb:ca:9c:43:2e:7c:7a:66:40:9d:ea:79:c7:3e:
4f:09:34:f8:a4:73:2b:a9:3b:95:97:87:f2:83:49:e6:5d:de:
58:1c:a4:d2:d6:a2:a8:54:35:1a:78:be:ba:bc:4a:40:ce:13:
c3:d7:fb:10:0d:45:b2:b3:3a:75:42:17:9d:12:d0:8a:3f:a5:
a8:8c:2c:34:81:d1:1d:22:1f:5d:00:22:fc:2e:ca:33:4e:ee:
aa:6b:19:78:33:b7:5e:7f:58:44:27:2f:47:fa:96:b8:fd:b8:
45:a3:a6:72:0b:a6:fa:bc:ee:09:0f:fc:b3:eb:d2:f9:d5:c2:
75:9b:21:14:f3:ab:06:4f:d7:0b:48:94:2b:74:41:7a:ac:fc:
1f:26:e0:c3:cf:4e:c3:42:ad:7b:2c:b2:9c:f5:3f:70:31:0b:
e6:8c:b7:c6:45:53:00:08:2f:df:d2:4f:40:76:c6:09:ca:f1:
ac:cd:95:78:e1:6b:71:19:28:04:ea:0f:a9:3f:f6:f4:f8:91:
26:89:92:af:b3:5a:33:6e:80:3d:e6:2b:0c:9d:8e:36:77:88:
d4:b1:65:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org