Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a61653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: nrEUSEK0XZXPhgf1Ot8qCOzRcgtVeWLJGDooP0F8MsY=
Subject key identifier: 8A:9E:0E:96:9F:55:13:0B:E1:78:DC:5E:C2:6F:CF:36:92:C2:01:A1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 33DCDF1259CEF440271BDDFF05DAEDAC29EA17F7
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:52 +0000
ROA not before: Mon 26 Sep 2022 07:56:52 +0000
ROA not after: Mon 25 Sep 2023 08:01:52 +0000
asID: 59282
IP address blocks: 2400:d680:ae::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:dc:df:12:59:ce:f4:40:27:1b:dd:ff:05:da:ed:ac:29:ea:17:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:52 2022 GMT
Not After : Sep 25 08:01:52 2023 GMT
Subject: CN=8A9E0E969F55130BE178DC5EC26FCF3692C201A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:76:7f:59:80:e1:6b:63:b5:a6:65:e9:94:49:
85:11:3c:f8:87:5f:4a:44:f4:4e:b6:7b:6c:93:41:
08:47:6f:bd:e5:d5:4c:e5:60:f8:08:47:03:65:79:
95:93:77:81:6b:80:aa:5d:c3:4e:0d:26:42:d0:de:
0f:21:b7:1f:27:e6:31:cb:eb:55:23:12:bf:b9:e7:
bd:d2:4a:23:9a:27:77:d7:c5:1b:b6:29:89:39:ce:
8f:5f:eb:da:4a:b9:fa:f3:de:cc:95:fe:7e:fe:aa:
a2:b7:11:ba:15:57:9b:a4:7b:ab:50:f2:94:e0:d4:
ef:28:be:30:5d:ae:52:85:d8:24:08:a0:e5:47:c5:
c1:43:f6:27:b3:b6:74:c7:ac:22:7d:3e:7e:ab:95:
ce:92:86:12:d6:ce:9d:c0:61:9c:cf:d3:c9:5c:09:
95:38:a2:8b:44:a0:6b:20:a4:48:fd:86:4e:82:86:
ac:60:e5:c6:41:c8:95:e1:c9:55:96:32:6a:f6:19:
bc:08:94:4b:84:6c:33:5a:24:fd:f5:46:e6:b4:2d:
19:47:04:3d:a7:68:6e:74:f3:f3:57:e9:bf:d0:a0:
e9:59:e1:e8:3c:39:b0:f1:e8:a7:5c:ea:63:c6:e6:
02:91:b1:44:9d:9e:96:b6:9a:60:20:a6:27:c5:7e:
d2:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:9E:0E:96:9F:55:13:0B:E1:78:DC:5E:C2:6F:CF:36:92:C2:01:A1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:ae::/48
Signature Algorithm: sha256WithRSAEncryption
94:32:e5:e3:49:d1:ea:64:69:d7:b8:7f:f6:cd:fb:95:ba:2e:
7e:b6:d7:21:d8:a5:60:d3:e9:ae:be:b9:00:b5:bc:32:5b:b8:
54:3e:d3:07:89:e3:16:7b:ca:70:03:04:c0:1d:16:7b:a3:c4:
44:ac:97:44:98:bd:80:89:a6:42:83:e1:b4:33:ce:79:7a:96:
e5:b9:85:e7:2b:86:57:f5:9b:0b:94:43:c0:ae:67:8c:dd:59:
40:1d:7c:54:cf:82:6b:83:b1:37:87:28:ba:ad:fe:6d:d9:d4:
6d:77:27:4b:0e:8b:05:5a:db:5b:3e:72:21:04:35:08:79:9b:
29:0a:f5:a5:12:90:0a:d5:68:2e:c5:17:c1:6c:5d:88:ae:a9:
75:6c:f4:a9:7b:4d:72:b9:e5:ce:2c:66:76:d7:a0:c8:70:59:
98:59:3e:e7:4c:39:4a:dc:47:dd:c6:f4:a7:d5:25:64:f4:8c:
44:f7:50:ca:bd:a7:d0:2a:38:0a:33:8c:a5:25:3d:e3:7d:ab:
6d:44:23:18:41:56:92:d5:75:f8:b4:eb:ff:21:4e:95:78:ae:
e9:da:b5:94:a1:48:29:a5:6a:e8:54:46:13:91:a1:4a:03:ee:
9f:c5:d7:5b:aa:11:78:b5:fb:c6:01:f4:05:9c:7b:75:9f:2b:
e8:3c:81:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org