Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a38623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: H4c5gM4NPC09/rZEyP3kfEgBFf8lhtWwKbQoBgr0rmk=
Subject key identifier: D5:9B:16:AF:D7:26:5E:80:F5:24:60:42:D5:B1:34:1F:E6:BA:DF:BD
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2BA299F13E04A64C8EF60A46621F5187D4CFABB0
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:25 +0000
ROA not before: Mon 26 Sep 2022 07:56:25 +0000
ROA not after: Mon 25 Sep 2023 08:01:25 +0000
asID: 59282
IP address blocks: 2400:d680:8b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:a2:99:f1:3e:04:a6:4c:8e:f6:0a:46:62:1f:51:87:d4:cf:ab:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:25 2022 GMT
Not After : Sep 25 08:01:25 2023 GMT
Subject: CN=D59B16AFD7265E80F5246042D5B1341FE6BADFBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f0:db:f1:94:1a:3e:36:1c:fb:fa:08:27:51:
b4:d1:ec:3a:6f:ea:34:87:81:b6:3d:b3:8b:c4:58:
fc:41:8b:3a:72:39:85:56:c4:eb:55:43:2e:ee:01:
de:81:6f:da:8c:8d:9e:73:19:88:1a:0b:62:69:0c:
07:82:76:8f:df:67:aa:c6:92:16:e7:51:e2:dc:35:
a1:7c:d2:8b:fa:c9:75:2a:f1:48:11:cb:ab:b5:14:
48:bb:36:42:d0:4f:0f:d9:4a:20:cf:3f:61:a5:5f:
3c:9f:59:9e:e9:89:ff:d4:3f:bd:63:8b:a6:bb:ba:
0d:35:b3:c1:79:f7:28:79:a4:98:12:74:09:f7:be:
d4:4d:8e:71:79:ab:df:89:15:d2:82:08:1f:63:37:
8d:19:88:63:e1:c6:16:ce:69:fa:c7:b7:5e:60:4f:
d0:25:d3:83:f4:e8:82:6e:53:dc:14:13:fa:af:62:
5c:16:38:7d:a9:11:b8:78:a4:0d:6f:ff:db:d7:ea:
79:24:e9:4b:82:c3:83:3c:2c:17:86:61:64:e8:e6:
a6:e4:87:63:6a:55:d1:07:79:e0:59:6b:81:62:2f:
fd:4d:f7:6e:ea:80:65:ba:4f:b3:55:70:df:f1:6b:
f7:cb:7b:6d:f3:4e:8a:84:3d:e2:dd:ad:8c:86:8b:
0f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:9B:16:AF:D7:26:5E:80:F5:24:60:42:D5:B1:34:1F:E6:BA:DF:BD
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:8b::/48
Signature Algorithm: sha256WithRSAEncryption
c7:d2:d5:98:8d:4d:87:ea:52:ba:f1:85:41:95:ba:c2:57:fe:
d6:f0:68:87:e0:65:00:e8:3e:53:ed:71:e0:5c:15:c1:d0:d7:
20:83:24:0e:f7:eb:bd:ce:a1:e0:fd:9f:1b:c1:fd:be:b1:8f:
0b:9d:ca:b7:c5:d7:f5:65:12:d4:df:93:7a:50:20:3d:17:e9:
5a:6f:43:b7:bd:73:ec:62:ad:b9:21:1f:3d:90:36:88:5e:ea:
84:76:3f:1a:b9:9b:60:fe:a8:8e:18:7d:65:a1:3a:a5:54:93:
8a:84:39:f9:2f:f7:d8:5b:e4:41:b6:d4:d3:88:03:b6:e4:d9:
67:52:0a:97:ae:36:e7:11:3c:72:96:6d:70:f0:c4:aa:4a:89:
67:66:87:2f:ce:42:d1:7d:98:42:4c:49:e6:08:fa:1e:35:12:
b7:03:ae:ec:e8:6a:91:cf:9a:5e:84:7b:4b:c6:81:be:0b:21:
07:46:c9:8f:df:b2:62:97:d9:5a:98:be:90:b8:98:3a:ca:5c:
9b:dd:07:02:45:a4:56:f3:d9:77:83:5f:2b:28:d3:fe:01:9e:
a7:48:b5:af:77:1b:35:f5:3c:ba:97:66:c0:c6:71:dd:9a:71:
b6:d0:02:b5:e3:52:a7:36:8a:cd:c8:c1:4a:27:a7:8d:6d:50:
71:86:9e:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org