Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a35613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 0qj4WgBzfTRPoHLJ1oDNS8+FM9nOBHtGNA0l6her+ug=
Subject key identifier: 9C:7A:A8:E3:FC:93:FD:70:1F:25:5E:52:24:37:89:C3:51:73:15:6E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6D0E8024B798B26B9833B72BB3137CB71D141334
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:55 +0000
ROA not before: Mon 26 Sep 2022 07:56:55 +0000
ROA not after: Mon 25 Sep 2023 08:01:55 +0000
asID: 59282
IP address blocks: 2400:d680:5a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:0e:80:24:b7:98:b2:6b:98:33:b7:2b:b3:13:7c:b7:1d:14:13:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:55 2022 GMT
Not After : Sep 25 08:01:55 2023 GMT
Subject: CN=9C7AA8E3FC93FD701F255E52243789C35173156E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4c:0a:11:66:38:c3:4f:6e:27:9f:12:ca:5b:
f2:fc:a8:dd:fc:75:46:c9:bc:65:64:4a:d7:1e:e6:
50:1f:fc:ae:a5:fa:db:4b:b8:e4:b9:75:94:c4:47:
60:d6:b6:f0:c8:5b:dc:2a:65:1c:9f:2f:1f:52:6e:
95:07:c1:59:1c:11:07:f5:18:ae:67:95:9f:51:33:
eb:7e:99:da:03:f2:74:84:c8:01:68:79:b2:cf:94:
c0:81:36:c0:05:7d:c4:de:99:05:76:24:19:35:6c:
80:1a:09:33:f4:97:8a:d1:71:16:1e:c9:99:8f:ce:
29:eb:cc:68:1b:0d:b1:7e:8b:6e:61:e6:67:8d:00:
34:0c:8e:be:e3:66:91:0f:6e:d0:96:fb:fb:29:95:
5f:72:a1:b3:62:20:c0:fa:5d:18:15:5a:aa:69:c2:
6b:cc:99:d1:0a:10:34:fa:63:92:1b:e6:d5:f5:65:
63:7d:64:9d:2d:93:ab:6d:b9:ad:23:a3:88:c4:9b:
62:69:70:d2:aa:1f:47:63:34:60:f5:e7:3b:f6:46:
f0:3e:a6:ff:20:db:60:d3:f2:78:af:b9:cb:45:c4:
66:ac:c2:37:23:1d:50:4c:d5:61:65:0a:52:f5:f2:
de:fa:cc:7d:ac:9f:5b:31:5c:a9:99:1d:7b:ab:63:
a5:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:7A:A8:E3:FC:93:FD:70:1F:25:5E:52:24:37:89:C3:51:73:15:6E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:5a::/48
Signature Algorithm: sha256WithRSAEncryption
8c:83:72:5d:29:9c:52:5e:24:b6:54:b2:92:65:48:7c:b3:dd:
fc:7c:63:71:88:31:b5:20:f0:c9:ad:ea:08:ce:25:84:8e:26:
63:3f:ad:21:1b:cf:cb:e7:ac:f9:6a:3e:5c:7e:a9:7b:28:1b:
47:53:a3:36:50:c0:31:ed:95:a0:e0:a9:3a:61:10:c1:c8:44:
9d:22:dc:01:a8:81:16:d1:65:b4:72:24:2f:1c:de:d3:64:df:
1c:e1:d9:27:41:ab:9b:8d:0b:cf:b5:d4:31:dd:5f:0e:21:35:
29:f1:64:8e:36:e5:93:a8:79:3d:26:f2:f7:73:cb:0d:90:20:
30:a8:18:07:e5:cb:a8:e0:67:8b:79:1d:c4:a9:2a:1a:15:63:
1b:4f:c7:f6:b2:8e:3d:6f:bb:87:93:a9:3a:43:d1:eb:2e:f2:
b2:84:84:6d:4f:b5:ac:7a:cd:19:7d:ae:98:4d:b9:0b:25:e7:
8b:56:49:ee:96:2c:9e:f3:0f:89:eb:6c:32:52:10:e7:da:07:
f0:3e:72:dc:30:67:1d:2b:4f:9e:f8:ba:14:95:89:2b:f6:73:
9a:9d:1e:fb:e2:a5:9b:f6:d1:75:73:5c:9b:a0:23:41:51:4e:
6a:8c:11:56:ac:40:4d:8e:13:7f:e3:61:da:dd:95:17:e4:9e:
80:f2:54:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org