Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a33663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: nCsup04d7LtqDKQxVQNhvXwXCg+RQXWEe9Dl/+g9efA=
Subject key identifier: 39:45:BC:F0:B5:38:40:11:EF:8B:BA:E9:21:8F:F2:0C:11:F1:B4:0C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0EF7D8FF5E4AF0DAC9281C4E5AA84573B4B73E3E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:23 +0000
ROA not before: Mon 26 Sep 2022 07:57:23 +0000
ROA not after: Mon 25 Sep 2023 08:02:23 +0000
asID: 59282
IP address blocks: 2400:d680:3f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:f7:d8:ff:5e:4a:f0:da:c9:28:1c:4e:5a:a8:45:73:b4:b7:3e:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:23 2022 GMT
Not After : Sep 25 08:02:23 2023 GMT
Subject: CN=3945BCF0B5384011EF8BBAE9218FF20C11F1B40C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4d:7c:da:2b:a1:57:b1:2c:8c:27:57:68:45:
7c:49:f7:10:5a:7f:52:3d:4c:06:82:8e:07:e4:1f:
63:3c:16:11:3f:ab:6c:ff:86:56:30:e7:88:cf:53:
9a:18:ca:cf:a8:27:25:67:a2:02:6b:b6:01:d9:e1:
87:cd:6e:9c:22:b0:99:cb:2b:9f:af:05:1f:f3:1f:
b4:8f:f8:fa:50:bd:92:e1:f9:3f:92:a4:cf:12:3f:
1f:67:50:4b:d7:68:24:4b:4d:1b:0e:b6:31:ab:ae:
bc:d5:1b:6f:5c:e5:0f:65:22:09:7a:9a:36:40:af:
42:92:dc:ef:c1:d1:0e:78:b4:e1:61:68:d0:9d:65:
61:6b:7b:b4:5a:80:da:ef:af:56:f1:eb:a1:58:13:
fe:78:55:74:44:a0:0c:8e:f9:57:08:b5:1e:86:cf:
7f:8b:5f:8a:17:fb:64:2f:46:75:4e:94:5d:05:c3:
5a:2d:dd:33:34:98:26:5f:7a:4e:93:9e:f2:b6:45:
85:1b:b1:b3:fa:9e:16:5d:5c:07:67:ce:16:8e:29:
43:0a:78:a1:56:96:7d:8f:4a:3c:d8:82:4c:ad:9e:
03:6d:a3:e6:2e:25:ec:3e:f1:2e:c8:f0:a2:9d:f9:
bb:69:92:ac:5a:3e:5d:c9:c2:c9:8d:5d:eb:a6:19:
21:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:45:BC:F0:B5:38:40:11:EF:8B:BA:E9:21:8F:F2:0C:11:F1:B4:0C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3f::/48
Signature Algorithm: sha256WithRSAEncryption
62:ef:07:61:94:c3:b5:f5:18:5e:66:f3:ed:db:7c:af:36:41:
df:35:48:8a:c1:3a:37:17:84:d7:59:28:20:98:61:21:4f:52:
47:c0:da:84:11:ac:af:3c:40:23:3e:9b:d8:3c:47:e6:47:66:
c2:2a:dc:01:5c:10:f1:3e:92:a1:b5:4d:86:fa:86:e2:71:19:
42:dc:14:ff:01:3f:4d:e7:a8:a7:9e:77:2b:76:e1:5c:b8:82:
e4:65:43:65:9d:9e:5e:15:54:2e:1e:60:41:09:82:ee:13:ba:
51:f8:55:e2:0f:93:42:fc:ab:67:00:63:e4:91:ee:9e:47:91:
8e:2d:d2:fd:d5:5b:1e:5d:d7:a2:c1:54:82:ff:f1:69:46:6b:
04:76:25:70:09:01:e3:47:cf:bd:0d:b7:1f:ef:7c:8a:bd:d3:
bd:6f:b4:fe:40:6d:78:c7:79:32:c9:68:51:58:e1:a9:ff:da:
5e:e4:21:7f:6d:cb:50:96:7d:d3:9a:43:7c:c4:d2:b4:96:00:
a3:09:7b:0e:91:7c:e6:09:17:41:bc:98:46:f2:a3:c7:e6:41:
70:7e:ad:52:64:60:3e:3d:d8:52:e4:fd:ad:62:db:86:66:3e:
9c:50:01:85:77:2c:86:03:0f:f6:d2:55:17:95:32:e0:4a:14:
80:43:01:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org