Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: QqoH43aAU3SHWUCpL3TDLTGxF3UIHnsuY8YON3FlroM=
Subject key identifier: 82:49:41:B2:BA:B3:41:55:5A:40:07:2A:86:98:E1:74:45:4C:99:D2
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0637488E3A0DF8A8D9CE7F282FC63E75427F3460
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 07:00:00 +0000
ROA not before: Mon 26 Sep 2022 06:55:00 +0000
ROA not after: Mon 25 Sep 2023 07:00:00 +0000
asID: 59282
IP address blocks: 2400:d680:5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:37:48:8e:3a:0d:f8:a8:d9:ce:7f:28:2f:c6:3e:75:42:7f:34:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 06:55:00 2022 GMT
Not After : Sep 25 07:00:00 2023 GMT
Subject: CN=824941B2BAB341555A40072A8698E174454C99D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:fd:e8:e3:aa:a4:94:c6:1d:bc:12:47:7d:81:
4d:72:a0:3f:47:15:82:5d:0a:1f:82:53:64:50:84:
fd:cd:28:89:b4:2c:b5:60:88:1b:6e:25:2c:33:c0:
4c:af:e2:2d:bb:8d:5c:7b:df:35:d4:83:2c:52:62:
62:44:15:ee:2c:b1:ed:59:e5:9d:5e:2a:ef:ae:5d:
63:1f:6e:2d:13:2d:bb:c6:0c:12:94:c5:2f:cb:21:
64:c7:8f:69:2c:e1:e8:35:da:a1:1c:b7:cb:1e:f1:
ab:19:a2:b3:f3:28:3b:3e:88:ae:d4:0e:93:ff:d7:
0f:bc:5d:a7:aa:c6:19:c8:9d:5c:a0:c6:71:09:ff:
4f:6d:7e:e1:00:3d:ee:fd:40:71:dd:11:e4:d2:dd:
79:9c:ec:a7:db:aa:09:f0:45:4d:2d:49:8c:24:b4:
26:29:c8:53:5f:49:f0:ce:d2:3e:4b:94:be:16:6a:
8d:3b:e5:54:4c:60:ce:77:0b:10:2b:62:83:b6:16:
e2:de:db:ac:03:8a:8d:60:d0:68:62:12:e3:ff:37:
3f:d9:00:e0:27:c5:2b:95:05:c8:7b:cf:f5:bb:fd:
4c:7e:c1:a1:07:fa:d8:72:fc:f2:5e:f3:86:5a:3a:
5d:b8:57:48:df:42:23:b4:38:00:49:f7:ef:b3:45:
26:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:49:41:B2:BA:B3:41:55:5A:40:07:2A:86:98:E1:74:45:4C:99:D2
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:5::/48
Signature Algorithm: sha256WithRSAEncryption
cc:5a:0a:fd:5a:e7:b1:67:09:85:fc:8c:69:50:24:4f:ac:05:
42:8a:5c:cb:36:41:00:15:f8:9a:e2:53:6e:49:03:92:3b:17:
af:10:3c:c2:8a:b9:bc:56:0b:e4:78:da:b2:e8:54:e0:f8:76:
2d:4b:db:57:45:3e:9d:b9:63:d4:e8:17:cf:04:27:d2:c9:0c:
95:f6:10:a1:6a:c3:4f:08:d2:c8:cb:c2:d7:f4:e5:fb:f6:fb:
12:d9:ee:c0:53:1c:07:59:59:84:e8:74:db:3b:6a:3a:4b:3c:
5d:ea:81:a8:55:b2:15:a4:29:a3:cb:d5:0a:65:ed:39:71:41:
48:72:3e:10:e9:4e:6f:fe:51:39:98:71:34:d2:88:a3:95:4c:
3e:b3:2a:5a:3d:44:df:2d:21:e1:ff:3e:16:38:32:4d:b3:df:
ad:24:bf:ae:0f:d0:51:c6:e7:3b:c2:a5:dd:75:0d:e8:2f:89:
1e:3e:7b:88:a5:cd:b6:9d:20:6b:68:23:1d:bd:65:ea:6b:7d:
de:ca:5b:d6:19:9b:94:3d:7b:47:44:ac:a9:95:ce:ea:62:36:
fd:88:ac:53:61:46:9c:ea:bc:14:86:f6:37:1d:6c:63:4e:6f:
62:46:dd:b5:c5:62:36:d9:74:0b:44:9a:21:ff:93:f8:a1:a9:
83:30:81:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org