Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a39323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: O4VsnD7Ow2oljJdSawyUn1RBS1DuOni/i1PyxHlbU4Q=
Subject key identifier: 9A:84:84:5A:D9:18:2E:35:6B:FC:87:E8:F4:64:AF:34:C7:D7:72:B7
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 522D85CE6C83994953581FA2469762DC4A04A8ED
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:11 +0000
ROA not before: Mon 26 Sep 2022 07:57:11 +0000
ROA not after: Mon 25 Sep 2023 08:02:11 +0000
asID: 59282
IP address blocks: 2400:d680:92::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:2d:85:ce:6c:83:99:49:53:58:1f:a2:46:97:62:dc:4a:04:a8:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:11 2022 GMT
Not After : Sep 25 08:02:11 2023 GMT
Subject: CN=9A84845AD9182E356BFC87E8F464AF34C7D772B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:68:87:89:cc:82:11:6d:b2:68:2f:0b:39:36:
cb:2b:8d:a0:35:23:9a:ed:02:8a:cb:2e:54:42:3a:
23:c8:95:58:df:5c:71:01:a0:fe:1d:4c:c4:fb:ee:
82:ad:89:b7:8b:13:92:88:48:93:60:90:24:c2:59:
1e:b9:1a:79:a5:b0:cf:e6:15:0b:de:4e:41:f6:f2:
6a:66:2c:d7:8f:d9:43:ca:85:ec:dd:81:f3:2a:f6:
2f:5e:5d:73:e9:2d:50:89:b9:31:7e:ff:43:81:e2:
32:dc:bb:e3:0f:14:54:e6:e1:fa:c9:db:2e:c8:d0:
ee:89:fb:ac:8a:03:1a:3d:89:dd:9a:87:34:7e:41:
0a:4c:cc:1e:c1:7f:5d:5a:a4:ae:86:3a:31:8a:de:
14:6f:1a:d1:8d:86:9c:e6:f9:42:c9:58:05:43:51:
6e:13:d6:3c:22:a2:c5:9b:40:db:a8:fb:c5:cb:3a:
22:79:77:43:38:d1:87:81:f3:1e:5a:2c:5b:46:a5:
9e:a0:c2:54:88:ce:dc:2c:5b:9d:98:f1:f0:8e:9a:
ab:37:13:72:01:a2:e9:da:a9:34:4a:a1:89:92:26:
93:64:02:15:f7:db:f4:8e:8b:e0:25:59:bc:b6:08:
62:df:06:a5:f1:d7:e7:3b:c7:90:7b:08:ba:cf:00:
8b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:84:84:5A:D9:18:2E:35:6B:FC:87:E8:F4:64:AF:34:C7:D7:72:B7
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:92::/48
Signature Algorithm: sha256WithRSAEncryption
40:7c:d2:a9:58:8f:6c:ee:2f:7a:f2:8f:51:e8:66:df:57:77:
17:c2:21:fe:42:ae:ea:c9:b4:75:35:d7:c3:3b:6c:c2:19:99:
b1:33:67:88:ca:f4:ce:48:f9:7a:aa:c3:8e:35:5a:cf:3b:b9:
ef:ed:f5:0b:b8:ac:b4:10:ae:de:41:22:e5:33:7d:58:d7:d7:
52:cd:9d:34:57:40:09:14:f3:b1:9e:64:e6:a8:41:88:c3:ba:
07:08:d3:c8:bf:fb:4a:54:69:93:a0:50:04:66:5a:a5:e9:3a:
3f:63:e9:c5:f7:f6:8f:4f:d4:ae:11:26:09:ca:b8:73:b5:41:
56:8d:8d:09:3a:d5:f8:0e:0c:f1:b2:0c:9c:4c:4c:3f:4b:7b:
09:a7:3c:e0:44:13:18:ce:00:ca:48:ac:ce:e0:23:46:32:96:
15:b5:ee:6f:35:86:6f:8d:ae:b6:18:d7:70:6c:ad:b9:1e:87:
79:bb:31:52:b3:bd:18:d1:05:11:3b:bb:ee:60:ef:4e:d6:69:
a6:5d:29:bf:6c:5a:97:b8:9d:ba:ac:2f:f3:12:e6:36:9a:10:
9f:72:0e:06:02:4c:71:f9:dd:22:df:9f:d4:60:fa:7f:aa:7b:
c2:fb:b5:aa:bc:60:7c:5b:e9:72:f1:53:dd:a7:7d:e6:18:65:
0a:91:19:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org