Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a61393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: y4n0BwBw1mvSMBV1SWVOY9IiA076Ag32n6/zJtSfFMo=
Subject key identifier: F1:ED:02:DC:30:75:80:49:93:DD:9C:06:CE:8E:46:4B:F5:DA:43:04
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6B26F6162138AD017BBE6217EFF8E528F7C7F54A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:51 +0000
ROA not before: Mon 26 Sep 2022 07:56:51 +0000
ROA not after: Mon 25 Sep 2023 08:01:51 +0000
asID: 59282
IP address blocks: 2400:d680:a9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:26:f6:16:21:38:ad:01:7b:be:62:17:ef:f8:e5:28:f7:c7:f5:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:51 2022 GMT
Not After : Sep 25 08:01:51 2023 GMT
Subject: CN=F1ED02DC3075804993DD9C06CE8E464BF5DA4304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:7c:e5:52:78:85:0a:71:48:51:27:ae:69:78:
1e:45:98:8f:34:4d:4f:3c:b7:8d:5f:88:54:d9:82:
70:7d:7d:18:0b:d1:55:96:b6:93:d8:eb:fc:12:20:
cb:cb:14:79:83:29:7f:70:9c:c5:07:7f:c1:81:0e:
e3:f0:62:1e:27:b7:00:cf:d9:5a:7e:86:35:af:36:
b1:f3:0c:e3:a1:26:33:d5:87:17:d6:ee:59:3d:4d:
ba:46:27:b9:8b:4c:3e:6a:f0:49:0d:79:09:19:14:
a1:d3:cb:00:d6:49:20:5f:d5:63:01:d3:2d:ea:17:
ac:6d:ba:d4:95:b5:f3:3b:65:1a:cb:1b:bb:a6:8f:
50:da:78:56:2a:da:ee:38:98:3e:53:61:e5:3e:a1:
88:76:36:8e:9e:ae:e2:29:4d:04:d0:30:01:c7:fd:
fd:49:de:da:43:0f:cd:6f:38:e7:f0:b0:67:a2:97:
c5:75:76:be:b3:b7:72:71:12:8f:e5:c6:f8:5f:e4:
47:02:e4:34:a3:52:fb:33:9a:78:7d:06:c9:b5:c0:
85:64:e8:b4:69:e4:b6:93:e5:46:82:db:14:b9:ef:
ee:c6:86:a7:57:78:b0:87:2f:18:cb:7c:ce:ae:c6:
dc:3b:05:30:16:1f:0d:23:28:35:75:b7:64:3c:71:
58:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:ED:02:DC:30:75:80:49:93:DD:9C:06:CE:8E:46:4B:F5:DA:43:04
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:a9::/48
Signature Algorithm: sha256WithRSAEncryption
d3:fe:e6:2a:50:a3:ea:71:85:20:27:43:ea:48:b2:3a:0e:ec:
5d:40:43:03:9c:af:ae:8e:16:45:17:fb:03:29:e8:c4:09:69:
69:77:89:b6:21:0c:d1:5e:a8:c9:86:0a:65:f1:22:95:5b:85:
5e:56:40:ce:d5:ee:3c:87:bf:ac:64:6c:14:e3:3b:a8:6c:5d:
b3:63:d2:ee:2d:d0:b1:3f:08:79:4d:c1:8e:03:d5:f3:b2:bb:
7a:ae:cc:a7:41:13:22:71:e9:13:8e:72:f4:be:0f:0e:0d:a0:
d9:90:4d:4d:b2:5f:57:f4:6b:f1:bc:02:48:af:1f:fe:3d:46:
e8:d7:54:0a:e4:7e:72:ba:cd:42:5a:9a:69:76:01:46:23:68:
63:26:93:bf:c3:07:8c:dc:5e:c0:4d:98:aa:92:5c:cd:2e:7f:
4c:96:cb:c9:1d:aa:ad:73:e5:24:c0:46:9b:8d:8f:95:57:b0:
88:ce:b9:ae:a7:f3:36:ba:81:eb:10:d0:e4:67:4b:5e:2a:bb:
f3:4f:44:3d:c9:7e:dd:be:95:4c:c0:75:7e:d9:cd:ed:3c:ca:
bd:70:8a:d8:93:93:d4:4d:b7:18:81:c0:ff:b0:6e:24:05:1f:
c7:7e:b3:15:27:30:55:c3:51:de:33:81:8d:90:78:ce:6c:ca:
d0:2d:5f:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org