Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: YbvXjx/MYmDAIxLfCu+6eFJBy2BaI1xiIjf3bE59ZAs=
Subject key identifier: 37:70:AB:7E:4D:84:24:7F:9B:C3:EB:72:11:CA:86:13:81:C7:2E:27
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 354E3E199B0DCA892E7BBC48118BFB53EA1B736E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 07:00:05 +0000
ROA not before: Mon 26 Sep 2022 06:55:05 +0000
ROA not after: Mon 25 Sep 2023 07:00:05 +0000
asID: 59282
IP address blocks: 2400:d680:b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:4e:3e:19:9b:0d:ca:89:2e:7b:bc:48:11:8b:fb:53:ea:1b:73:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 06:55:05 2022 GMT
Not After : Sep 25 07:00:05 2023 GMT
Subject: CN=3770AB7E4D84247F9BC3EB7211CA861381C72E27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:70:54:1b:d1:45:93:a7:53:29:94:b3:50:f1:
d1:d6:cb:51:bf:ac:62:ff:01:cc:55:0a:b5:42:63:
d8:a3:43:60:6b:f3:32:ae:50:2b:e2:69:41:1b:9e:
3e:5d:81:9e:22:91:f0:9b:ed:5a:26:41:d8:5b:5b:
6f:2b:bd:6e:73:03:25:0d:03:1f:55:f0:3b:8d:94:
96:ec:93:17:84:1b:05:c5:38:89:85:f6:a8:35:55:
c6:b6:77:62:af:18:f3:33:18:66:82:e6:29:49:23:
83:20:4c:ed:50:92:f5:82:81:cb:69:4c:0f:fd:9f:
46:d2:b4:89:d9:f7:c2:e7:ce:8e:b0:6b:b8:c5:34:
63:18:86:4f:67:24:6d:c9:29:16:5f:6c:36:76:9f:
9e:bb:4f:e6:1e:a3:a6:a3:a5:ae:71:70:fb:c2:c1:
b3:4c:d7:80:31:83:35:d7:85:bb:ce:be:6a:3e:aa:
b3:51:b0:97:89:c9:f9:ac:d0:2b:24:8c:32:ca:3c:
35:14:a2:0e:43:7e:d8:d1:b5:8a:84:4c:4d:c9:78:
78:4e:52:02:75:84:4d:b6:e7:8a:9e:ee:21:34:25:
02:49:26:7c:0a:4a:db:94:bc:97:4f:e0:b1:61:90:
51:25:46:53:19:60:4d:2a:94:f0:34:f0:ef:33:12:
42:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:70:AB:7E:4D:84:24:7F:9B:C3:EB:72:11:CA:86:13:81:C7:2E:27
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:b::/48
Signature Algorithm: sha256WithRSAEncryption
9a:6b:b3:1f:ac:10:c6:fd:b3:cc:ad:2d:94:4d:8e:db:11:bc:
46:01:32:81:58:83:2f:bf:6e:71:21:e1:23:bc:10:20:f4:2c:
e5:3a:09:72:6f:0f:1d:5d:7a:02:1d:55:96:63:61:0b:4b:d3:
b2:18:14:1d:65:9b:71:7e:7e:27:10:d1:33:e4:22:2c:f9:39:
07:21:b0:df:68:7a:62:90:6a:85:1a:9c:0e:15:53:81:70:44:
22:ff:7c:ce:55:d0:1c:92:bc:bd:04:ff:5f:89:60:85:68:ad:
66:df:8c:07:8c:a6:e8:1d:78:a4:e7:77:bb:e8:29:ad:cc:8f:
44:37:96:8f:37:eb:53:97:9c:02:a7:7f:7b:2d:cc:72:27:b7:
13:22:5e:28:53:61:83:f3:55:ca:dc:92:0b:0b:8a:1a:9e:4c:
b9:92:4f:62:dd:2c:a9:0e:39:6c:67:dc:44:65:22:d1:f0:f7:
83:e1:7e:a7:0b:11:a2:d5:97:76:02:1e:a7:9a:47:8a:b9:5c:
18:5b:92:fd:18:57:1a:34:15:19:d7:ce:65:d9:02:8c:f1:24:
b5:2e:45:00:75:05:53:59:43:0a:96:a9:34:93:7e:bc:4b:c2:
fb:1e:a9:22:cf:39:19:4c:07:4f:de:33:49:d0:b9:10:cd:1c:
0f:98:4f:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org