Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a36363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: qFA1KMGggkJux4WciEdQDZztEn1Nm/+IfYUWTD6zVj8=
Subject key identifier: B6:8D:F0:9E:9F:32:E7:DC:52:18:A8:8D:06:34:94:52:FD:AE:3A:23
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 65F065DB78B9F29EA17E0782CEFBBD25833DFD7B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:11 +0000
ROA not before: Mon 26 Sep 2022 07:57:11 +0000
ROA not after: Mon 25 Sep 2023 08:02:11 +0000
asID: 59282
IP address blocks: 2400:d680:66::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:f0:65:db:78:b9:f2:9e:a1:7e:07:82:ce:fb:bd:25:83:3d:fd:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:11 2022 GMT
Not After : Sep 25 08:02:11 2023 GMT
Subject: CN=B68DF09E9F32E7DC5218A88D06349452FDAE3A23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:19:08:c8:7a:39:5e:85:bc:59:12:85:3a:fd:
3c:4b:11:67:02:c9:49:e5:8d:f9:ae:8d:13:a5:02:
8f:60:8d:13:73:45:eb:79:6d:22:b2:61:71:85:a4:
a8:ab:41:bf:1d:a0:ae:b2:c8:6d:8d:8f:f2:69:b5:
98:a8:a0:10:3a:d6:f4:3b:97:5f:0a:b0:2a:69:1f:
e6:58:50:16:09:f3:30:4f:f3:ae:7d:77:78:83:41:
df:6a:59:60:89:a5:50:74:83:b5:43:e3:25:e8:89:
89:9f:a7:0e:d4:c4:e2:4b:d9:72:8e:9e:8a:06:b2:
49:98:ad:f0:ad:da:2c:57:5d:b1:d6:a0:46:f6:48:
0b:d5:94:4b:8f:04:d1:aa:90:e8:95:43:c3:de:ee:
67:71:87:35:39:bc:ca:d1:10:9f:14:96:e3:f3:ec:
ac:f6:38:fb:8e:c2:ea:b1:a7:3b:03:93:dc:ba:04:
8c:3b:e4:11:62:92:ad:dc:91:37:d9:18:1f:97:30:
71:fd:0e:5f:12:65:96:aa:29:20:2f:6d:6c:14:f6:
33:cf:cb:80:93:7f:75:bf:dd:ad:c7:10:46:08:ba:
0d:35:5a:3d:db:bf:95:46:8c:ed:f5:61:21:c9:42:
96:e3:c4:ae:4f:70:74:57:84:d9:06:5f:93:bf:fa:
bf:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:8D:F0:9E:9F:32:E7:DC:52:18:A8:8D:06:34:94:52:FD:AE:3A:23
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:66::/48
Signature Algorithm: sha256WithRSAEncryption
1c:69:dc:18:14:e3:d6:5c:05:09:2c:da:f8:26:08:5b:81:59:
17:8e:78:ae:8b:19:78:e3:e6:2c:51:f8:a5:a3:ce:53:0f:58:
0d:c5:08:dd:be:7b:ed:42:00:83:22:dc:70:7f:aa:52:71:c1:
ac:a5:07:fb:e4:1f:af:13:24:7b:25:66:9b:a4:fe:00:14:af:
48:0f:81:26:80:c2:f3:58:61:a3:61:09:4b:6f:9e:c5:6b:e0:
24:37:d5:83:ac:26:bc:18:c0:11:a5:05:ee:60:40:4c:04:5c:
f1:ea:7c:23:ca:12:ce:f4:31:7e:b4:da:9e:04:df:e1:9c:e3:
f6:20:79:82:a0:5e:cc:13:61:ac:f6:c7:cd:eb:23:92:bb:9b:
37:94:59:9f:cb:4a:49:d8:5e:49:05:1b:4e:30:58:ff:4e:e3:
b6:dc:7c:ff:bc:60:de:70:85:59:0f:76:30:1e:38:64:d5:2b:
67:1b:f0:cc:15:29:66:b2:d7:5d:99:ea:3c:82:14:ba:60:35:
eb:da:e0:c4:f8:db:61:ce:df:6e:ff:64:a4:6a:45:49:11:df:
bb:7a:43:92:42:9b:41:22:bc:3f:5d:83:8a:1b:09:16:31:70:
a5:a3:07:b4:11:e7:88:7d:25:1f:dc:ee:f4:ae:c4:4d:c0:8e:
ce:be:a5:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org