Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a62383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: +pWrHtCtVA5wX8dZAjs5NHkEhJhav2vkksMdeuHSr+s=
Subject key identifier: D6:3E:BA:DB:E0:79:39:2C:9C:47:AF:6D:94:42:6F:37:50:64:53:D4
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 40F36EFB362CEF63DB3AD7128E5B43CEA747E8DD
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:31 +0000
ROA not before: Mon 26 Sep 2022 07:56:31 +0000
ROA not after: Mon 25 Sep 2023 08:01:31 +0000
asID: 59282
IP address blocks: 2400:d680:b8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:f3:6e:fb:36:2c:ef:63:db:3a:d7:12:8e:5b:43:ce:a7:47:e8:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:31 2022 GMT
Not After : Sep 25 08:01:31 2023 GMT
Subject: CN=D63EBADBE079392C9C47AF6D94426F37506453D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:73:92:e9:49:5b:34:1e:67:62:d2:38:bf:0c:
e2:51:2b:14:4c:f6:eb:e4:ab:26:16:03:a6:74:52:
4f:1d:2f:b6:ab:53:0f:d3:f9:1f:19:a1:62:56:23:
2a:78:97:af:58:de:c3:eb:19:95:94:1b:1f:3a:44:
65:c0:4b:61:0b:bb:a7:68:a3:30:4c:4d:d8:52:b7:
cf:72:dd:01:6f:f7:22:bb:00:ed:07:53:1a:92:08:
33:03:31:18:a3:17:9e:93:9b:29:e7:2d:8c:49:88:
bd:00:28:8f:23:06:3f:8a:7a:e6:59:ec:e3:00:f8:
6f:bd:40:60:2c:69:7a:d1:4b:c4:78:da:8d:46:40:
03:de:ae:56:65:a8:30:91:fc:66:86:7b:c4:1e:48:
e2:e3:0f:76:f7:df:29:85:0f:4b:82:e1:8a:4e:d7:
7b:79:b5:fd:04:0c:de:ce:e2:c4:96:f1:98:75:dd:
23:d4:81:1c:eb:6d:d9:d3:e3:b9:fc:36:8e:30:ee:
a1:a2:9d:39:f9:6f:a0:0f:d7:3e:25:7f:92:c0:db:
71:08:c5:90:27:32:9d:ed:3c:5d:17:ad:00:39:39:
f1:c1:fb:af:fc:55:ad:f0:82:69:71:88:61:c0:01:
83:d8:fd:8b:4b:42:1c:64:4c:5e:c8:95:a3:1d:00:
9e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:3E:BA:DB:E0:79:39:2C:9C:47:AF:6D:94:42:6F:37:50:64:53:D4
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:b8::/48
Signature Algorithm: sha256WithRSAEncryption
2b:cd:47:e2:d3:f0:a0:b5:57:4a:84:c9:2e:99:c2:b6:3d:a8:
80:37:66:7d:0b:37:6e:67:b0:c8:55:ff:b1:2b:67:cc:0c:25:
8c:22:ba:c5:61:d8:f3:fd:16:cb:4f:1f:25:c8:be:f3:5d:90:
ee:e6:60:3e:45:72:54:54:b1:47:55:72:92:2a:17:08:74:48:
77:26:a2:24:2b:7e:6b:db:c5:3f:f7:05:bd:59:3a:fd:f3:73:
81:52:e1:a8:5b:01:a8:56:40:c2:aa:15:23:f4:bf:2e:42:c1:
cc:c2:a9:e6:21:e3:b4:1f:7a:df:a5:86:45:8e:25:71:4a:93:
3a:fe:3b:7a:23:8c:e5:29:78:71:29:11:c8:ed:c1:77:0f:d9:
d2:66:9a:66:b6:8b:5f:a8:6c:d9:15:fc:5e:aa:d5:a6:d9:22:
66:5a:50:19:e5:aa:8b:40:00:7b:f6:36:d4:d2:f6:1d:43:a7:
d1:be:dd:67:fe:e5:2b:c5:c3:3f:0d:cc:2c:8d:d4:78:fa:ec:
e4:47:d2:47:70:f1:d9:35:88:a3:20:5c:04:78:64:61:71:bc:
2e:d8:f0:18:5d:a9:9b:87:3d:65:66:13:b0:05:84:88:60:9e:
57:d0:01:f0:a4:03:46:30:ce:57:c8:c8:de:cb:4e:c8:39:37:
0c:2b:71:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org