Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a62623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: aRv3xuQrswpbu8NZQC8UqU/jzzew15G7U0d09dKKK+U=
Subject key identifier: 88:17:FF:B2:AE:11:CD:E9:B7:3D:49:9E:D1:EA:1F:CA:D9:F3:91:D2
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7039DD745B52A843F14404A23970AB4BDDFB0A48
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:25 +0000
ROA not before: Mon 26 Sep 2022 07:56:25 +0000
ROA not after: Mon 25 Sep 2023 08:01:25 +0000
asID: 59282
IP address blocks: 2400:d680:bb::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:39:dd:74:5b:52:a8:43:f1:44:04:a2:39:70:ab:4b:dd:fb:0a:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:25 2022 GMT
Not After : Sep 25 08:01:25 2023 GMT
Subject: CN=8817FFB2AE11CDE9B73D499ED1EA1FCAD9F391D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5c:d5:ff:02:94:05:66:e0:23:ec:36:a3:38:
06:90:88:8e:24:72:48:6e:69:0a:ed:34:87:55:52:
75:a7:de:ac:36:5f:af:29:41:7c:cf:28:75:8f:71:
1a:ce:14:c3:23:05:46:f3:0e:58:81:fe:84:a0:dd:
83:98:2e:41:5b:14:31:c2:ff:70:1d:0d:27:00:de:
50:05:bb:f2:7d:3b:63:87:fa:7d:be:bb:36:56:7c:
b2:16:3f:bb:e0:d5:b1:13:c1:ba:6a:08:98:92:09:
54:d7:f7:19:23:97:29:fa:7b:73:e0:2a:58:c4:09:
83:2a:b5:f7:a4:fe:00:90:82:95:71:44:41:a9:3a:
5d:d8:4d:ff:d8:71:34:50:7b:83:d1:67:cb:6f:ab:
e1:ee:80:77:58:80:ad:07:94:48:54:79:21:13:81:
40:45:8c:71:5c:9e:09:e7:e0:7d:69:f6:4a:7c:0f:
86:2a:fc:97:f0:65:a3:0c:11:9f:ef:05:25:03:74:
e4:04:19:94:36:08:d3:21:a0:34:87:ba:24:e0:c1:
95:9f:43:95:b7:84:d8:c6:7c:53:8c:41:87:19:8c:
15:ff:36:f2:6c:23:40:2e:73:9b:b0:a5:30:90:e7:
cd:de:ea:3e:b2:98:c7:dc:3f:e0:d5:6f:b2:48:95:
36:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:17:FF:B2:AE:11:CD:E9:B7:3D:49:9E:D1:EA:1F:CA:D9:F3:91:D2
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:bb::/48
Signature Algorithm: sha256WithRSAEncryption
9e:a0:28:c0:4e:a3:f1:ae:fb:09:41:63:24:66:4d:34:07:98:
cc:98:ec:26:bc:07:c6:e8:09:a3:bb:eb:36:bf:5a:40:54:35:
90:f1:a0:c1:9d:95:eb:2d:47:66:b5:92:e8:4e:24:3d:47:e0:
a9:c6:a7:3e:cc:51:1d:6a:1c:8f:d8:e3:1d:5c:4b:0e:40:19:
1f:e7:19:aa:fc:f4:35:3e:ec:2f:4b:fa:43:1e:4d:d3:8b:52:
0c:90:b4:07:ec:44:99:07:98:14:43:f1:cb:ed:3b:5c:66:2b:
3c:cb:18:25:0a:ec:f7:46:d9:eb:64:14:35:1d:c2:ce:6a:63:
61:03:3d:0e:08:60:ce:bc:52:dd:40:cf:47:29:21:dc:b0:13:
6f:c5:e2:af:ea:35:30:68:e2:39:13:ea:c4:cc:89:79:db:12:
71:21:3e:e0:7b:12:49:2c:a7:01:ad:28:9e:1c:12:d5:9e:fd:
0e:d4:42:ea:9c:92:6d:a0:20:e3:9c:d6:88:94:2e:40:ad:9d:
05:d1:d1:dc:b0:03:67:54:5b:04:70:f0:b2:36:13:00:8f:ac:
23:47:e7:18:88:15:1b:fb:33:8a:8a:54:c0:c0:dc:6a:31:40:
72:2d:20:76:1d:a7:74:93:cc:b8:95:1e:d3:db:2c:89:80:ed:
c7:67:c3:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org