Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a36353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: D+VeZv+qn2p3+8KHXU4f42+g284YqN81IrZWnVr0ekE=
Subject key identifier: 16:88:32:34:A3:52:83:02:4A:79:A8:1E:59:38:1A:32:1E:E2:EF:7C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2D9B417DCC282C676A5D03C087063AD0E44987EC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:26 +0000
ROA not before: Mon 26 Sep 2022 07:56:26 +0000
ROA not after: Mon 25 Sep 2023 08:01:26 +0000
asID: 59282
IP address blocks: 2400:d680:65::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:9b:41:7d:cc:28:2c:67:6a:5d:03:c0:87:06:3a:d0:e4:49:87:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:26 2022 GMT
Not After : Sep 25 08:01:26 2023 GMT
Subject: CN=16883234A35283024A79A81E59381A321EE2EF7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b2:9b:62:f8:b5:3f:29:5f:11:c2:a5:4a:20:
7a:b1:9a:42:f3:bd:1c:dd:95:24:8e:2a:c1:b0:ff:
93:6c:0b:18:a4:48:dd:ae:8a:9c:93:ce:ee:3a:87:
4c:43:6d:7a:f9:4a:f6:29:e1:01:20:04:5e:e6:e5:
29:d7:9a:00:a6:29:52:e1:76:10:1d:63:8e:ad:cd:
bd:4c:d5:c2:a7:6e:03:2d:2b:d3:62:2c:02:f9:52:
1f:f4:f6:fc:39:23:66:40:e3:13:c4:62:12:d2:10:
de:16:2c:36:82:29:f0:4b:5a:de:6a:b9:2e:0e:19:
ea:06:2b:d7:7a:71:3a:28:50:b2:d8:aa:f5:39:57:
a1:c3:e9:b3:a3:65:ed:c5:be:e0:bd:9f:51:ea:b4:
10:1a:fc:aa:a6:d7:68:8a:93:9a:93:ac:08:9f:7c:
80:87:68:f8:27:1c:e5:0f:e6:82:9a:a0:bb:69:e3:
d8:2f:af:44:dd:f7:53:02:ee:eb:ea:6a:9f:ed:5b:
eb:0a:c9:46:17:fa:02:d7:a2:6e:f9:1c:31:68:29:
91:34:88:08:80:98:5b:a4:cd:13:2b:1e:93:07:ba:
7d:ef:b0:02:d3:e2:f2:24:1a:cb:5a:2f:d8:4c:72:
e7:36:77:b2:3a:0f:f4:ee:5b:91:2b:e3:b6:9c:19:
74:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:88:32:34:A3:52:83:02:4A:79:A8:1E:59:38:1A:32:1E:E2:EF:7C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:65::/48
Signature Algorithm: sha256WithRSAEncryption
85:6d:30:69:5d:7a:00:37:b0:63:96:cd:a4:27:02:e1:3f:69:
05:6a:4e:b5:97:2e:70:02:e7:20:81:f4:f4:81:05:45:96:64:
fe:48:72:c5:59:b9:d6:11:55:cc:53:c6:98:7f:df:f7:0c:77:
0f:92:bb:f2:76:d5:7b:1d:02:95:76:17:bc:24:0c:48:d8:ed:
83:72:35:8b:ab:1e:36:36:a8:b3:af:e7:a3:f5:7a:5b:1b:0c:
1d:29:3d:7f:88:85:4d:7b:c5:10:05:83:7c:31:9f:dd:33:05:
b9:bc:a6:94:58:c7:60:76:ed:ac:9c:a1:7d:35:fd:8a:7e:82:
8e:0c:d5:32:70:5f:53:f6:10:53:1e:31:5b:54:05:df:9a:8a:
a0:c4:88:7c:a6:ad:cd:0b:61:61:f3:71:ab:66:f8:9b:c7:4d:
50:68:8b:cc:d4:59:d7:21:ba:4f:7e:f8:aa:01:c3:7f:ef:f8:
62:a3:19:6e:36:c6:11:70:c6:6b:f1:08:0f:64:3f:b5:f4:0a:
5b:a9:16:ee:a4:1f:34:b9:1f:92:b6:e3:3e:0e:e4:dd:21:d5:
d9:c2:60:83:d7:a1:2e:d6:01:40:ca:c0:64:3e:22:6a:ed:8e:
fb:24:d8:e8:50:f1:6b:3f:4e:16:c7:64:9b:fe:e0:d5:42:27:
8a:72:7d:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org