Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3366663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: maXtTszd7NT+Yn4rN9ZlGOqYKhTr2EpJFOx9JzaN+gY=
Subject key identifier: 4D:AA:8A:03:E0:AD:26:90:4A:29:94:85:AC:70:0F:3A:56:ED:58:B4
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1590D28866C5FB9974805CDB16FB824E90A32DB6
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:22 +0000
ROA not before: Mon 26 Sep 2022 07:56:22 +0000
ROA not after: Mon 25 Sep 2023 08:01:22 +0000
asID: 59282
IP address blocks: 2400:d680:3ff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:90:d2:88:66:c5:fb:99:74:80:5c:db:16:fb:82:4e:90:a3:2d:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:22 2022 GMT
Not After : Sep 25 08:01:22 2023 GMT
Subject: CN=4DAA8A03E0AD26904A299485AC700F3A56ED58B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5e:c8:83:91:25:b4:e9:0d:40:a8:ba:5a:cd:
c3:70:09:71:1d:35:a3:60:5a:9a:61:8d:9f:b6:62:
05:92:94:73:31:25:e8:45:8f:c6:1d:c3:99:ee:1f:
d2:eb:8a:1c:b3:46:ed:ee:49:ee:05:6a:24:fe:3c:
a9:14:11:d1:ce:e7:3d:30:15:2e:29:92:26:36:7e:
b0:48:71:0c:7d:5d:de:73:1d:b6:5c:2f:d4:de:9a:
b0:8f:99:05:fb:b3:31:b1:db:0f:a2:15:06:fa:4f:
4f:50:ca:7e:46:bb:0e:23:d6:89:10:10:ba:39:0d:
06:cd:95:37:b6:60:b2:2c:be:a4:0b:0e:53:27:9f:
e3:ed:98:46:0f:9d:d3:31:76:ce:a5:26:7c:b2:a6:
8b:78:85:0f:ee:bb:51:93:51:45:ff:67:02:aa:2c:
db:5a:7d:59:4b:2b:f2:69:0c:d1:fd:a3:13:d0:be:
17:94:5a:72:94:05:a8:c6:75:69:19:ba:ac:d1:ae:
07:2c:ad:6e:1f:a8:fb:bd:85:4c:2a:06:35:74:cd:
41:a6:47:28:5d:1e:bf:41:26:ad:ee:8f:63:15:04:
f1:df:41:a9:7e:25:32:0e:11:76:5a:ff:e8:77:b6:
b4:fb:6f:de:a3:24:80:a8:db:86:ae:ff:cb:53:47:
f8:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:AA:8A:03:E0:AD:26:90:4A:29:94:85:AC:70:0F:3A:56:ED:58:B4
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3ff::/48
Signature Algorithm: sha256WithRSAEncryption
91:d9:9e:97:4a:13:eb:f6:a9:7b:25:d0:11:cb:08:c8:02:50:
cb:93:53:03:35:5a:49:50:e8:0f:74:e6:1d:c9:b8:53:54:21:
a7:22:60:d2:ee:13:cb:72:e8:e3:2c:b2:72:d8:f5:d0:17:86:
1b:c8:99:0b:10:d9:47:84:e4:ce:b1:75:b7:31:0c:70:42:55:
78:ba:6d:72:8a:0f:44:85:56:7e:3f:4b:7e:5b:da:ae:4a:1a:
23:b1:1f:b4:38:27:50:3f:d7:6b:e6:74:4b:45:23:57:70:27:
fc:37:6c:72:ce:a2:ea:ee:db:02:d6:89:34:72:5d:33:54:24:
a7:e1:e6:d0:de:8d:fe:b0:9c:5a:09:95:c2:ab:9f:5b:f2:cb:
34:ec:ec:bf:71:ef:e1:db:d6:89:c1:63:7d:fd:f3:e5:45:0e:
dd:b0:e1:9a:36:b1:04:9b:ad:d9:6a:aa:aa:28:06:2d:b3:77:
e2:6e:7f:e1:ce:77:0e:b3:1c:1c:8a:9c:1f:e3:90:cf:6b:b1:
b1:71:f8:09:58:3e:3f:1c:f9:0f:c9:01:ab:4e:b6:db:c0:fd:
79:9d:11:5e:82:0a:7f:ac:21:9e:05:92:53:f9:f3:9b:59:66:
2e:a6:d4:6a:6e:df:6c:7f:f0:9e:0c:72:54:9b:c3:bb:75:6a:
24:1b:f0:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org