Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a36303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: apeRRTdIdqg0zm4XibjAPkd7yVIUP7ZVyJFBotBC284=
Subject key identifier: 61:11:2A:CB:5A:60:70:DE:F5:91:C7:6A:DF:A9:85:61:26:0E:43:38
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6F7308F27748F2F8E6858D62FFA91E21FA3DB25D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:14 +0000
ROA not before: Mon 26 Sep 2022 07:57:14 +0000
ROA not after: Mon 25 Sep 2023 08:02:14 +0000
asID: 59282
IP address blocks: 2400:d680:60::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:73:08:f2:77:48:f2:f8:e6:85:8d:62:ff:a9:1e:21:fa:3d:b2:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:14 2022 GMT
Not After : Sep 25 08:02:14 2023 GMT
Subject: CN=61112ACB5A6070DEF591C76ADFA98561260E4338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:90:62:cc:ae:80:5c:a4:4f:45:e7:63:0d:9d:
1f:98:a7:4f:02:57:67:c4:4d:8d:b4:fc:90:43:f3:
c9:c6:3a:f8:c9:d9:31:c5:74:d0:d3:61:c0:25:57:
b6:98:07:c6:f4:23:bb:65:7c:5b:24:3e:98:f7:f3:
51:c8:df:b7:07:5d:20:a1:75:3a:4a:c3:22:97:cc:
6b:42:79:a8:bd:c4:38:00:d0:29:a6:d0:53:ca:aa:
97:2d:48:c3:44:3a:67:d5:b1:02:20:91:33:c3:70:
f8:d5:95:30:0e:a9:39:0b:b2:7d:d8:61:41:a4:38:
fa:ae:d8:3f:e5:0f:41:3a:bb:37:e6:8c:04:27:9c:
ae:5a:8f:f1:9c:db:79:e5:c3:69:6f:8a:27:a0:80:
b7:1f:1e:73:1a:a0:81:ad:5d:a2:12:86:b8:a1:c1:
81:2f:61:a8:e6:c7:ad:d0:bb:74:90:f7:13:9c:1c:
f8:31:60:da:02:25:c7:81:5f:f3:d1:3f:56:05:1b:
84:73:1b:1a:27:bb:c2:d9:0c:ca:26:2f:a4:f8:b5:
ae:fc:0f:58:6e:73:1f:2e:b5:51:d0:76:5e:11:9b:
ef:6e:86:7c:cd:a2:35:aa:43:62:2f:1b:0f:50:b5:
35:87:39:2d:da:96:69:7c:0c:16:d4:65:6f:b6:c8:
13:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:11:2A:CB:5A:60:70:DE:F5:91:C7:6A:DF:A9:85:61:26:0E:43:38
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:60::/48
Signature Algorithm: sha256WithRSAEncryption
b6:d8:2a:61:a0:80:25:e0:b0:4e:6c:87:65:97:a5:82:1c:76:
d3:3d:aa:e4:68:6e:eb:f3:b6:f0:cb:14:69:41:bd:5b:da:2a:
4a:23:17:1c:e4:04:6a:8b:e8:37:6d:af:87:e1:f5:31:cb:00:
51:aa:80:98:0c:9b:1d:31:ee:d9:19:1d:2d:70:08:65:49:1b:
37:59:4f:a8:5d:ab:2f:c5:fd:a4:a0:f4:f5:0c:8b:95:e1:84:
b8:83:ef:cb:d4:28:68:a7:f6:7c:63:84:57:a4:6e:68:82:87:
56:b5:aa:b6:0d:50:96:cc:d2:b3:7d:99:01:cf:05:6e:04:87:
ed:b2:5a:22:55:20:46:d5:20:e6:cd:aa:1f:87:ce:8e:9e:09:
e8:3a:ed:ce:d8:5a:01:83:7c:d7:82:27:ad:d8:ce:68:62:bb:
3a:72:8a:86:8f:0d:95:3c:64:0b:87:8e:fa:f1:89:0f:d3:3f:
1b:90:85:e4:ba:84:be:d2:63:89:f4:a1:b2:17:1b:ba:5e:b0:
28:b3:5f:78:8e:ae:bf:46:49:87:18:79:8b:d8:bf:7e:fa:e6:
73:af:bb:b2:b3:ab:48:80:4c:e6:ca:ea:36:cc:90:52:b6:34:
40:8e:a8:fd:eb:26:dc:1b:65:d8:15:bd:a3:07:92:35:1c:8a:
27:32:4d:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org