Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a35353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 8cY2dwUKJso1iALmSi0q2wBb7EZUHrxOsvtczUeGL0s=
Subject key identifier: F8:00:46:4B:D5:7B:49:3A:E3:B0:6E:5A:61:37:3C:81:3D:45:1A:1D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0867690EAC7CAF30DC497A409D50ABA2895A1280
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:43 +0000
ROA not before: Mon 26 Sep 2022 07:56:43 +0000
ROA not after: Mon 25 Sep 2023 08:01:43 +0000
asID: 59282
IP address blocks: 2400:d680:55::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:67:69:0e:ac:7c:af:30:dc:49:7a:40:9d:50:ab:a2:89:5a:12:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:43 2022 GMT
Not After : Sep 25 08:01:43 2023 GMT
Subject: CN=F800464BD57B493AE3B06E5A61373C813D451A1D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:31:21:bb:d7:3f:4e:8c:7f:6d:16:70:da:81:
8a:ee:05:4b:b5:31:52:0e:ad:4b:53:45:a9:85:5b:
46:3e:ee:7c:af:9c:f2:be:7d:90:e9:74:d0:5a:7b:
d4:f4:80:e1:f3:60:98:89:a5:14:f3:d3:ba:d7:eb:
04:93:51:d1:51:1e:26:ca:89:8e:c5:52:6a:61:f7:
0d:a8:30:e8:84:a3:c0:49:98:b1:f4:ca:87:4e:0d:
30:be:b0:79:fa:ff:cf:ac:98:6d:1b:ae:5b:16:f0:
3b:11:b1:99:ab:de:be:85:b2:0e:af:5e:b6:ab:af:
81:28:35:06:b1:e0:25:51:d6:d6:16:ab:83:91:c0:
a7:f9:62:cc:8c:10:a2:38:df:4e:3a:f3:8a:c3:62:
3b:6b:ee:0f:a3:46:2f:65:82:06:e1:e9:89:38:73:
f8:4b:47:16:ff:56:20:79:00:e7:ac:6d:3f:97:8e:
e3:17:1d:72:bb:4c:cb:03:14:ac:49:3e:9a:83:a4:
bf:3a:f4:fa:bb:c0:55:58:eb:d1:c5:27:7b:a9:6f:
82:c9:39:60:a2:f4:37:3c:dc:05:9b:b0:61:6c:0c:
a3:ee:5c:dc:da:5a:13:0f:cb:8e:64:c7:b0:54:56:
e1:4e:d8:55:81:14:08:ae:59:24:72:7f:51:5d:cf:
68:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:00:46:4B:D5:7B:49:3A:E3:B0:6E:5A:61:37:3C:81:3D:45:1A:1D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:55::/48
Signature Algorithm: sha256WithRSAEncryption
d0:00:84:3e:8d:f5:0b:e6:ce:01:60:ec:83:ab:e4:5c:23:74:
ca:9d:a4:d6:8c:ba:c0:dc:1a:5a:86:7f:0b:9a:20:02:dd:d9:
3c:ae:5f:39:3b:f4:01:ed:98:ff:77:53:2a:52:af:94:b2:b5:
20:55:d0:27:0d:c1:85:b7:60:c7:36:26:3f:41:ff:fc:6f:cd:
e4:68:18:bc:27:67:d7:d7:4f:6c:0c:48:f4:ac:10:85:e2:66:
fe:4a:d0:da:95:2a:4d:12:1d:1a:e2:7d:90:91:5d:f0:0c:34:
13:7c:bc:f4:65:a3:54:ec:e9:c1:4f:e6:43:99:e7:33:1a:73:
d3:86:bc:43:4d:6d:fd:87:b3:71:42:5a:bb:ff:57:5e:15:47:
e4:14:a4:bf:46:b3:36:ee:b0:38:16:63:ea:29:66:81:95:1c:
8d:23:42:df:9c:ac:34:db:10:97:09:83:4f:19:8f:d6:52:4e:
1b:8c:fe:80:20:5f:8a:22:d7:bf:72:ba:76:26:1e:4c:7e:f4:
1f:a4:a2:80:61:20:ac:6d:d0:7b:f1:9c:5a:98:b5:7a:14:cb:
5f:fc:ff:c9:fa:17:3c:d1:e8:e5:59:c5:41:94:5d:38:19:54:
26:e2:8a:dc:d6:5c:e9:19:db:8f:f6:c8:40:03:8e:72:f2:62:
08:42:fd:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org