Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a63313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: qdyKGkBrSMyMw8Eah06iM8Waob6Tp/497RKcK9fa0Jk=
Subject key identifier: A3:7B:AC:6E:31:2F:9E:8A:AE:31:37:6E:74:3C:83:11:54:A8:99:C4
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 038CBDA4ED5C43AB1FA2084AE42DDE02A3229782
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:50 +0000
ROA not before: Mon 26 Sep 2022 07:56:50 +0000
ROA not after: Mon 25 Sep 2023 08:01:50 +0000
asID: 59282
IP address blocks: 2400:d680:c1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:8c:bd:a4:ed:5c:43:ab:1f:a2:08:4a:e4:2d:de:02:a3:22:97:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:50 2022 GMT
Not After : Sep 25 08:01:50 2023 GMT
Subject: CN=A37BAC6E312F9E8AAE31376E743C831154A899C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f0:06:34:b0:46:6e:22:be:db:a1:b0:82:4e:
c3:93:a3:6c:54:bb:b3:70:e4:93:3b:69:d5:59:df:
11:4f:3a:53:34:11:eb:dd:69:ed:a3:94:06:d4:4c:
c8:90:ca:47:97:b0:e9:01:37:73:5c:23:61:22:81:
28:ab:30:2f:bd:ae:52:b6:f0:3e:9b:11:f2:83:fd:
44:ce:e5:f6:1a:d7:b0:06:58:f8:4b:ba:d5:78:f0:
cb:ce:1c:e4:63:78:eb:9f:44:1f:dc:80:db:48:33:
6d:a5:08:bf:84:de:c2:7d:7d:eb:50:7a:43:df:c2:
e3:99:57:37:4a:dd:9a:c3:90:07:8d:b1:6f:be:36:
32:29:11:25:55:ad:0d:ff:29:85:1b:67:0d:81:db:
24:22:77:77:b8:14:61:9e:02:e0:68:d5:40:dd:a4:
54:3c:85:a6:49:9e:01:30:1d:ee:9d:35:34:f1:80:
07:61:95:03:1b:6d:70:eb:67:3b:e9:b1:66:22:ec:
1e:55:95:9e:42:ca:4f:e4:92:90:5b:95:e6:5e:46:
5d:50:37:04:e7:fb:79:c1:02:77:76:89:da:e9:bb:
a8:ea:64:0c:89:ab:03:70:e1:97:4f:9d:42:96:d6:
1d:90:6f:5a:f6:4a:b7:55:f8:63:6c:8a:cf:b4:dc:
b8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:7B:AC:6E:31:2F:9E:8A:AE:31:37:6E:74:3C:83:11:54:A8:99:C4
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:c1::/48
Signature Algorithm: sha256WithRSAEncryption
48:d8:83:d3:46:e8:28:c5:f0:a8:90:69:22:08:24:0b:81:74:
88:4c:6e:cb:8b:34:da:c5:06:d2:13:fd:00:3f:ea:56:82:0d:
7d:c9:c9:c4:75:8b:4a:73:19:b4:1b:d5:64:f9:98:1a:c6:0b:
2c:56:f9:22:6b:58:80:da:6b:92:83:8e:42:1c:ea:5c:06:71:
bf:c9:38:46:59:42:e8:62:54:be:95:df:d5:f3:66:ed:4e:c5:
e6:c4:6c:1a:72:13:9c:b9:50:70:59:4b:27:99:be:89:24:6f:
7f:be:83:ff:3a:1f:68:e8:0c:c5:fa:37:f6:af:38:f3:dc:01:
b7:c3:dc:19:6c:6f:c5:4f:9f:b5:6f:11:15:2c:a8:07:25:47:
83:38:2d:4f:aa:5f:6a:34:0a:75:74:01:59:2c:0e:f4:52:88:
a2:f5:15:93:00:eb:e8:39:0d:6c:24:fb:1f:be:a6:57:16:ed:
2b:b4:c3:26:b1:d1:15:9e:94:d5:6b:f8:8f:dd:f6:3f:1a:f7:
8b:cc:fa:5f:79:5c:c3:79:89:c6:6e:90:3a:4c:b0:5c:33:79:
55:8e:5c:8c:3f:cd:2b:74:fc:47:a4:40:f3:96:e5:27:b9:44:
53:e3:4e:87:9e:f1:f0:63:08:8c:34:8a:63:6e:6f:a3:ea:19:
d5:2f:2b:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org