Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a63343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: UJoq8TMlNOk9CTMmFzaIdXAoAcX9Pf1+AAQbxprD8l4=
Subject key identifier: 37:63:E8:A6:C7:8B:98:94:2B:DC:01:29:2F:FF:BB:B3:91:55:BF:0E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 30212A6F326741B5FA5858EE4D6408CFB68D3005
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:56 +0000
ROA not before: Mon 26 Sep 2022 07:56:56 +0000
ROA not after: Mon 25 Sep 2023 08:01:56 +0000
asID: 59282
IP address blocks: 2400:d680:c4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:21:2a:6f:32:67:41:b5:fa:58:58:ee:4d:64:08:cf:b6:8d:30:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:56 2022 GMT
Not After : Sep 25 08:01:56 2023 GMT
Subject: CN=3763E8A6C78B98942BDC01292FFFBBB39155BF0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2d:e3:94:67:c9:7d:e6:60:bd:59:b5:a1:cf:
46:f5:ff:10:35:59:66:d5:c7:0a:8e:3c:71:43:a2:
4d:5f:c1:5a:7b:2f:4e:af:5e:29:af:ca:17:9f:21:
39:85:6d:0d:73:e0:ff:18:cd:25:cb:b5:16:ee:5d:
30:13:7d:36:75:dd:7c:71:a3:a9:a9:e6:cb:86:71:
4d:eb:00:e0:8f:2c:02:fc:99:18:b0:09:9e:99:5f:
62:44:7c:45:76:d7:36:e8:97:16:3c:b0:4c:00:d8:
ce:f9:94:d6:3d:0b:44:10:5e:2b:24:99:a8:15:e8:
8c:72:0f:9f:04:c2:3e:5e:2c:cb:10:82:a6:fb:d9:
47:b8:25:f9:36:84:3e:03:68:78:ea:9a:a3:c7:8f:
16:4b:5e:7c:11:1b:5b:e0:0d:c2:52:d1:81:62:58:
01:41:71:21:22:3a:0b:27:82:22:b2:17:c1:f6:89:
99:64:60:15:41:c2:fe:49:20:69:60:b7:1c:4e:2e:
76:e1:31:cc:df:e1:3e:f9:e1:4d:b7:10:47:8b:c2:
c6:ec:d0:91:b5:c6:54:d1:3b:5f:95:0e:1d:04:04:
13:25:d8:99:62:ce:ef:9c:73:1f:a3:38:b0:27:7c:
25:98:61:7f:05:a8:06:60:20:1c:ed:24:e5:00:88:
5b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:63:E8:A6:C7:8B:98:94:2B:DC:01:29:2F:FF:BB:B3:91:55:BF:0E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:c4::/48
Signature Algorithm: sha256WithRSAEncryption
cf:64:5b:92:4d:7a:f6:b4:76:04:77:e9:73:4f:82:48:39:cd:
74:72:c5:82:71:d7:b2:35:c9:5d:1b:b6:34:60:e6:6f:92:aa:
4d:fb:33:1e:56:d1:ce:2f:c6:9b:d1:ea:48:2f:11:0d:9a:13:
e0:9d:eb:f7:22:3a:34:20:85:bc:22:a0:88:48:78:fc:b7:60:
01:fe:5b:3b:28:7f:a2:3f:31:ba:3b:ba:08:b8:03:6b:f8:be:
9f:60:2c:03:cd:65:09:f0:c9:a6:55:c7:95:bc:ee:04:00:98:
c0:80:98:74:71:aa:cb:32:75:86:d2:dd:7a:c4:d4:3c:d3:bd:
e1:97:e0:d0:86:7c:9e:49:d3:f1:1e:09:ad:28:ff:db:8e:57:
7c:1a:33:0e:ad:03:ea:59:50:ef:50:95:70:f9:60:e4:f3:d4:
52:e3:52:2a:ac:7a:82:d7:ea:81:ad:29:db:c8:86:a6:ec:b3:
d5:79:95:5e:a2:03:5a:d9:d3:70:bb:59:fd:c2:49:40:4d:26:
c6:ee:90:8e:b7:bf:cf:73:79:4d:9b:17:b6:93:8e:c6:df:17:
9c:a9:ea:ea:49:ba:9f:24:3b:90:a6:c8:bb:8d:23:6c:26:7d:
3c:88:61:37:88:ab:b6:2c:80:e9:f0:76:fe:ea:8f:21:f8:70:
42:71:3e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org