Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a36333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: sf4gWIgzFWOiyWBmoE4dM2JtFFcaulvZRYEdyThf1Yw=
Subject key identifier: AD:89:25:A1:0A:3B:73:2B:32:6D:DA:FC:44:2F:E4:5D:64:85:03:37
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5530F9F180BBDA508376C775438916EEBBE9A8C6
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:54 +0000
ROA not before: Mon 26 Sep 2022 07:56:54 +0000
ROA not after: Mon 25 Sep 2023 08:01:54 +0000
asID: 59282
IP address blocks: 2400:d680:63::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:30:f9:f1:80:bb:da:50:83:76:c7:75:43:89:16:ee:bb:e9:a8:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:54 2022 GMT
Not After : Sep 25 08:01:54 2023 GMT
Subject: CN=AD8925A10A3B732B326DDAFC442FE45D64850337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:db:02:da:e7:3a:c6:c6:d5:a5:e4:fb:45:d7:
66:86:7c:32:f2:6c:f1:9e:26:fa:b6:5a:c3:0f:0e:
a4:1b:ae:8b:9d:c7:a2:36:3c:18:05:4a:dd:11:4c:
b1:b0:f1:ed:ea:48:63:b7:81:a3:b0:74:eb:13:2f:
c2:87:9f:e2:18:0c:dc:97:1e:75:3b:a2:03:f3:40:
13:a2:b1:fc:1c:4a:10:db:af:00:82:7c:bf:61:96:
0c:dc:8b:5d:c5:6c:04:f4:43:91:eb:ff:28:6a:23:
4c:1f:e3:1c:97:fa:02:c5:59:a9:87:8c:bb:e5:8e:
67:75:6e:3f:88:8d:59:97:7d:f3:c4:12:54:69:7a:
2b:7e:53:7d:d4:60:5e:10:74:2c:47:00:27:f1:fa:
97:10:9d:fb:26:9a:72:e2:55:a0:b1:44:dd:70:74:
b6:f2:e3:2f:93:0b:6e:71:24:76:81:02:cc:68:4d:
24:80:bc:1e:b4:57:88:8a:52:02:1c:25:ca:fa:4b:
fa:5d:21:cb:46:c9:de:f6:b4:38:76:17:58:57:d5:
0e:de:5a:00:5d:d8:41:38:b3:94:3f:a1:68:c9:2c:
c2:0f:55:d2:90:f1:b2:ba:ff:e1:9e:35:69:cf:6e:
b5:f6:20:3c:d7:d2:c0:c5:c0:f3:2a:ce:a3:b3:e6:
a5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:89:25:A1:0A:3B:73:2B:32:6D:DA:FC:44:2F:E4:5D:64:85:03:37
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:63::/48
Signature Algorithm: sha256WithRSAEncryption
11:09:40:cf:cb:1e:4b:5e:9c:c8:66:a5:18:f9:ea:f4:ea:65:
3d:b0:2c:fe:9f:ce:21:65:3e:2a:1b:d4:cd:33:1e:1f:eb:b1:
d0:da:78:ab:65:bd:09:3d:6d:a6:24:f3:9b:90:76:ad:ed:5f:
1d:f7:7a:4e:9f:c8:e4:81:78:18:8f:4d:9d:86:93:1e:ff:80:
b1:14:7e:4b:18:18:fd:f2:33:31:c7:29:f7:b9:12:ec:41:db:
69:0e:fe:10:3d:43:d7:8a:d3:8c:09:64:78:18:88:cf:06:23:
7a:ab:7b:26:91:0c:8f:a0:58:a0:ef:66:73:e1:bb:ee:60:33:
80:70:e8:e3:e2:d7:9a:b7:8c:0f:73:ed:69:92:15:04:9f:b8:
c8:14:5c:a8:5d:65:b5:19:2f:f1:9b:a1:d2:c8:ae:72:60:61:
d9:ed:a8:22:81:76:ae:6b:82:47:69:de:27:c8:b9:2f:ab:b0:
5f:e1:78:2f:9d:d8:88:b8:9a:f8:4c:cd:cd:e7:e3:0c:d0:d9:
5d:47:a6:ba:92:7f:f1:25:05:47:44:11:37:a6:bc:31:69:ea:
16:00:b0:5e:74:65:ce:33:3f:cd:a6:d1:18:1b:e1:2d:6e:52:
ce:69:62:36:91:b7:e2:7e:63:e9:83:d1:95:29:bd:69:26:60:
3e:94:83:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org