Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a61623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: y2rlH3WvkGdmWC+VQgcuHPmoOFkPpyU4NJIvw6uxS6M=
Subject key identifier: EF:B3:94:0F:EB:9D:34:52:84:9B:D4:1A:C5:DF:13:D2:EF:D6:BB:BA
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6B5D3895509CE56FB8DEF2A4EC5D9DCD86E7A38C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:50 +0000
ROA not before: Mon 26 Sep 2022 07:56:50 +0000
ROA not after: Mon 25 Sep 2023 08:01:50 +0000
asID: 59282
IP address blocks: 2400:d680:ab::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:5d:38:95:50:9c:e5:6f:b8:de:f2:a4:ec:5d:9d:cd:86:e7:a3:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:50 2022 GMT
Not After : Sep 25 08:01:50 2023 GMT
Subject: CN=EFB3940FEB9D3452849BD41AC5DF13D2EFD6BBBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bd:9b:7f:9b:c9:29:c3:b6:77:92:fd:5a:3e:
8e:11:37:cb:63:6b:a0:49:c6:eb:b1:2a:45:aa:50:
46:a0:dd:bc:44:73:b4:97:8a:fb:6c:39:d3:16:fe:
b2:40:1f:f6:95:45:6e:75:f5:59:83:2b:be:a1:c4:
da:7f:4b:5f:b1:b7:48:3c:ec:74:6c:35:7a:b3:a2:
17:f6:3f:42:aa:d4:63:75:ef:6c:72:98:01:86:3b:
31:1e:be:8a:d0:b2:a1:0a:e2:2f:5c:cb:8a:af:04:
7f:32:1e:40:fc:ed:55:0e:84:89:e4:a0:84:ec:39:
b6:4d:38:fd:3a:08:8a:89:f7:d3:81:fd:72:0b:86:
bb:e8:7a:5f:62:46:3c:be:94:f0:b4:52:a9:4f:cb:
50:db:58:4a:04:1a:3e:80:ec:85:0a:d3:d7:49:a3:
d1:76:90:09:3a:6f:93:42:2b:3d:97:f8:44:4e:aa:
f4:6d:af:53:d2:83:6a:59:e5:a3:d7:4f:8b:b9:0b:
7b:20:34:7c:61:18:fd:53:c0:e2:d0:fd:48:5d:ce:
53:3c:3c:46:d5:e9:3e:7d:6c:70:25:0e:33:67:ac:
c5:34:c6:38:27:77:ec:cd:82:94:f3:73:4a:e0:87:
75:9b:59:cb:52:0e:c1:57:0d:09:d5:ba:b0:fb:d6:
36:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:B3:94:0F:EB:9D:34:52:84:9B:D4:1A:C5:DF:13:D2:EF:D6:BB:BA
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:ab::/48
Signature Algorithm: sha256WithRSAEncryption
7f:ef:0f:8d:ca:6f:c0:1d:fd:06:4b:9d:7b:d4:81:98:b0:e9:
12:62:d9:5e:61:4b:0a:f5:79:db:88:57:da:30:ee:54:65:f1:
8f:cc:0d:81:31:42:db:b4:ca:f9:2a:89:2d:e5:8f:42:57:91:
6d:c1:0f:e9:d0:05:62:f7:38:0b:9a:e8:5a:17:e2:b7:97:4f:
17:e3:86:83:38:85:91:c1:e4:96:d8:2c:f2:19:39:8f:77:e5:
cb:89:ec:80:a7:a2:da:c3:85:8f:14:8d:3c:c5:94:29:08:2e:
06:18:bb:80:10:49:93:3a:78:17:b3:7f:ab:42:46:31:4a:aa:
a2:b2:82:18:f2:2b:a6:21:e3:6b:cd:e8:05:ec:f5:d9:0c:25:
d7:e9:3a:75:33:94:fa:3a:bf:e8:34:60:49:72:be:0c:4e:af:
ab:86:cf:f8:61:51:f6:f7:ff:bd:4e:01:b5:e2:1d:cb:1e:0d:
4e:1b:8b:20:f2:56:4f:b2:d0:a4:65:04:2b:23:39:bd:3a:61:
54:f5:8a:d0:66:9a:11:43:ff:a9:c2:00:48:1d:04:24:77:81:
51:fa:61:89:34:e7:56:7a:38:2f:95:56:87:6e:60:57:0b:23:
ae:37:d4:5b:41:01:2a:bd:54:31:6b:88:05:4e:4c:df:5e:c8:
c3:7e:bc:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org