Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a34653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: MNbgQHvR71s28Q13eoO0Ah4efOgh3dWkVxmVciH4MpM=
Subject key identifier: 96:F6:FE:81:88:A1:10:70:D6:44:97:7B:D2:CF:43:44:DA:75:54:97
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 40CDD6ED9A9852DF7FFA5F4B229F9191949C943E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:12 +0000
ROA not before: Mon 26 Sep 2022 07:57:12 +0000
ROA not after: Mon 25 Sep 2023 08:02:12 +0000
asID: 59282
IP address blocks: 2400:d680:4e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:cd:d6:ed:9a:98:52:df:7f:fa:5f:4b:22:9f:91:91:94:9c:94:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:12 2022 GMT
Not After : Sep 25 08:02:12 2023 GMT
Subject: CN=96F6FE8188A11070D644977BD2CF4344DA755497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:58:0d:1f:ca:9f:c7:88:5f:60:5e:6d:48:37:
29:08:43:fe:7c:77:69:ad:42:40:91:95:df:79:1d:
67:fb:09:2a:a4:79:ac:5d:75:50:02:24:e1:4f:7b:
7c:41:00:af:65:a5:a0:78:48:24:45:33:2a:e4:02:
61:1e:2e:43:46:aa:47:d4:18:b7:c7:94:40:78:35:
9c:3a:7e:6e:9c:78:9b:28:7c:4d:8d:5f:40:bf:42:
aa:9a:43:36:f4:c0:5e:5c:af:2a:16:6f:7a:1c:d8:
60:c4:bd:2f:a5:58:39:85:33:15:62:a6:ad:e9:33:
25:98:b3:17:16:bb:05:c2:4e:4c:67:62:4d:27:6b:
ca:4c:49:61:6a:a9:35:50:e4:73:30:76:a7:0f:28:
35:73:67:cd:c7:3f:0c:11:0a:c1:4f:c0:6d:db:02:
36:3a:9d:5f:cb:5b:9d:32:4e:4d:04:20:2d:b4:32:
32:de:a4:5f:41:7a:0d:a1:54:6b:2d:46:02:be:2a:
2d:0d:b3:d8:16:9f:ef:96:6c:3a:1b:33:f9:26:ac:
37:f7:19:0a:c0:84:a8:d4:1f:62:ff:38:b9:98:05:
69:78:58:2f:9d:9d:59:e6:4f:10:a1:b5:a2:a4:e5:
84:2e:7a:e2:de:de:93:77:75:ee:90:31:fb:0a:14:
a9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:F6:FE:81:88:A1:10:70:D6:44:97:7B:D2:CF:43:44:DA:75:54:97
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:4e::/48
Signature Algorithm: sha256WithRSAEncryption
18:30:0c:50:ba:bb:91:41:71:c8:a5:56:16:1e:de:b4:80:09:
cf:4e:f4:95:7e:46:07:1c:85:5f:09:97:1b:a3:88:b4:9a:e5:
ac:22:24:63:de:93:c2:8d:ec:a0:17:e5:42:da:df:f9:b3:8f:
55:cc:2d:44:2e:a2:e9:4e:80:b8:96:3e:46:dc:c5:62:be:1c:
f3:47:a5:81:bb:72:5f:e6:53:11:17:cd:f3:33:81:73:1d:d3:
ee:36:0a:15:28:4b:77:a8:9f:ae:bc:61:41:91:28:46:58:4a:
21:73:10:20:3e:96:6b:57:00:e6:d1:df:e2:5e:96:35:0d:b0:
99:2f:24:e1:b9:a9:67:15:05:d5:41:d0:a9:2f:36:69:3e:74:
c6:7e:bd:c3:21:20:85:89:66:79:0d:aa:a6:56:d0:20:4f:7a:
37:f2:b0:6f:25:88:6c:52:70:1f:3b:f2:e3:58:12:5b:10:cc:
5c:71:6e:30:ed:0b:c9:f5:7a:b0:68:80:30:31:94:f7:c6:c3:
38:36:dd:8c:65:a8:3b:6c:dc:6b:4f:5d:95:bf:17:04:2b:cd:
31:5c:9f:33:eb:c1:65:99:e3:0b:7b:f1:89:9f:8b:b5:37:f4:
d3:10:97:0e:b4:19:76:77:83:c4:0d:e3:f1:d5:2e:70:44:1a:
0b:e2:5e:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org