Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a62373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: KEsmfGN7PF8sLx0qCEvJCIVLPqbyb74a4ITQY+RRNmQ=
Subject key identifier: C2:F5:EF:8F:8D:A0:19:9E:D6:44:1E:8E:72:29:F3:04:EF:1A:7E:CC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3404787FF72B0498E63046868A8D38F09FD2DC32
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:50 +0000
ROA not before: Mon 26 Sep 2022 07:56:50 +0000
ROA not after: Mon 25 Sep 2023 08:01:50 +0000
asID: 59282
IP address blocks: 2400:d680:b7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:04:78:7f:f7:2b:04:98:e6:30:46:86:8a:8d:38:f0:9f:d2:dc:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:50 2022 GMT
Not After : Sep 25 08:01:50 2023 GMT
Subject: CN=C2F5EF8F8DA0199ED6441E8E7229F304EF1A7ECC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:29:b6:be:1b:e0:1a:54:3d:a2:de:6c:0e:79:
ad:f1:fa:66:ce:14:48:fe:08:d3:b4:c2:f3:d1:8a:
3d:1f:a4:11:0e:9f:6e:be:b1:60:9c:33:6c:d7:50:
3d:20:43:c0:69:18:41:44:d0:83:9c:90:a4:a8:ff:
2e:be:64:37:41:5a:b5:9e:d3:5c:67:7e:10:35:e5:
2f:f3:62:ea:d4:8b:5a:8a:ab:5c:0c:3e:3a:83:42:
70:34:ec:5e:d5:f8:de:e7:63:3b:3c:ad:36:95:28:
ad:a0:72:b3:07:a2:32:75:bc:96:65:ae:9f:ff:d7:
15:b7:72:d3:15:47:7b:91:3c:24:8d:e6:83:59:74:
05:8f:a3:f7:9a:0b:ae:fd:80:92:e9:6d:18:73:20:
73:ab:fb:99:9d:57:50:d0:e8:8d:5c:c5:1f:8f:33:
fa:6d:9d:be:b2:bb:5a:67:11:b1:38:9f:60:c9:ef:
f2:25:59:22:83:18:7f:04:ce:ef:a2:30:48:46:b8:
c6:f8:04:e8:04:4a:a6:90:d1:91:0f:75:4f:f9:e3:
e3:ad:af:35:91:7d:38:7c:d5:0a:46:4b:93:e7:ee:
43:b6:bf:08:ac:e1:80:25:11:cf:e7:ca:7a:34:0c:
57:1a:00:40:6e:9e:5a:21:3b:cc:8f:bb:c1:58:a8:
ba:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F5:EF:8F:8D:A0:19:9E:D6:44:1E:8E:72:29:F3:04:EF:1A:7E:CC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:b7::/48
Signature Algorithm: sha256WithRSAEncryption
5f:d7:7c:2f:70:ec:a6:ee:08:9e:2e:bf:4e:6b:eb:da:a6:28:
61:0f:0f:46:81:20:fc:61:09:7e:04:81:8a:4a:65:fd:c4:bf:
36:b7:b0:b3:cd:18:79:0e:55:50:7a:35:a1:40:3b:a6:01:f2:
6a:aa:a7:49:8e:90:2b:8e:ed:0c:89:d9:59:55:56:51:89:cc:
c4:95:64:a4:02:dc:f5:3b:67:69:0e:f2:7c:ac:fa:72:a9:76:
94:39:da:c5:ec:ce:55:63:ad:fa:78:da:e9:4f:3e:58:d8:df:
87:cc:24:78:2a:d4:a0:8e:1f:66:5d:82:1b:35:51:f0:c1:83:
24:8f:11:af:91:56:2e:50:53:ef:41:89:5c:68:88:73:42:d5:
3f:ed:eb:c7:04:cf:0f:39:d8:ec:b4:85:fb:a0:50:57:0e:e6:
53:19:74:70:90:22:ee:35:cc:98:24:e1:ec:15:7e:e3:e1:bc:
56:61:c8:0a:20:e6:0b:4c:1b:11:ac:c0:45:6f:17:57:85:d7:
14:5c:94:38:a0:ed:ce:5a:35:2f:ab:44:b5:87:ef:f1:f3:8b:
48:da:eb:a1:2c:30:86:dc:54:9b:68:d3:ee:e4:f1:6d:67:cd:
4d:33:41:a9:17:bd:53:51:39:36:97:ec:ae:60:59:de:1b:08:
8a:2a:c6:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org