Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a64653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: zlIHa/edk+aoj3a06m9HwQEyJNGRJ8oq0rCSlAscWRQ=
Subject key identifier: 6E:65:E7:6B:B9:2D:AE:B6:E5:C8:38:05:BF:CB:2B:21:C8:D5:D7:46
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 014516368A6F1AAEEB44074ABB8DBCC368D91F98
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:35 +0000
ROA not before: Mon 26 Sep 2022 07:56:35 +0000
ROA not after: Mon 25 Sep 2023 08:01:35 +0000
asID: 59282
IP address blocks: 2400:d680:de::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:45:16:36:8a:6f:1a:ae:eb:44:07:4a:bb:8d:bc:c3:68:d9:1f:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:35 2022 GMT
Not After : Sep 25 08:01:35 2023 GMT
Subject: CN=6E65E76BB92DAEB6E5C83805BFCB2B21C8D5D746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d9:c7:3e:a8:e3:c6:24:7d:23:e1:59:00:a1:
bd:23:b1:b1:19:fb:9e:22:ec:d3:a3:69:7d:80:a6:
21:bf:0c:05:55:89:4f:ef:cc:48:e0:9a:3a:20:11:
e4:d1:ab:f8:f1:38:52:a9:84:2a:66:9c:2a:d9:cf:
0d:a3:5a:d0:bb:11:3e:fe:e0:b9:81:0d:68:1f:fb:
5e:f9:9f:da:37:cd:50:c0:e1:b3:d7:86:cf:93:9a:
5f:58:0b:a3:4c:85:c0:d6:95:6c:4d:40:00:7b:0b:
9c:a0:32:71:c8:ce:b6:da:0c:26:be:f2:12:7c:5d:
64:a7:8a:f8:ae:ea:8f:e3:d2:6d:66:5c:52:27:6f:
a5:03:f2:02:7c:92:d0:1a:7d:fd:02:e7:4f:b8:9e:
da:3d:3d:15:ca:df:8c:c2:ad:2f:f9:9f:9e:0d:c6:
5a:cc:d5:bf:f4:89:ff:5b:8f:04:e0:c1:d5:8e:7a:
a8:c0:02:97:73:02:54:bd:d5:ba:bd:3c:21:a0:4e:
bb:29:60:cb:2e:ca:2f:90:0b:b3:44:2e:db:eb:2c:
5b:5e:74:a8:9e:35:72:a7:83:1f:97:0f:d6:e9:ae:
92:98:88:cd:ae:88:7b:ef:fa:74:c9:79:ad:4d:4b:
95:47:a9:84:75:6e:09:b7:53:65:ee:1e:1c:08:bb:
85:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:65:E7:6B:B9:2D:AE:B6:E5:C8:38:05:BF:CB:2B:21:C8:D5:D7:46
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:de::/48
Signature Algorithm: sha256WithRSAEncryption
61:70:d0:4f:45:76:c7:8e:5c:21:6d:24:da:48:aa:2a:21:73:
c9:b8:de:ce:1c:ea:07:4b:89:d7:78:82:ae:6f:c9:b5:6b:df:
74:66:04:1b:68:d0:5a:a2:7a:a4:4e:e8:96:a9:1b:88:f8:1a:
0b:85:ef:d3:c3:f7:72:6a:29:12:70:b8:dc:ec:48:ba:10:31:
22:4e:4c:22:28:5f:2c:19:17:db:53:94:30:85:15:2f:ad:c7:
2f:85:2b:07:d3:b4:96:32:ea:2f:f3:f8:d1:32:b7:de:80:45:
41:d9:71:59:55:7f:dc:91:79:2a:df:24:21:26:cb:ba:5a:9f:
56:ee:1b:b2:88:f5:88:8e:90:59:b5:13:ca:74:e4:96:66:56:
b1:82:ef:02:ba:2a:9a:d7:d1:58:08:7e:0c:d2:6b:19:dd:40:
76:34:af:f7:f4:07:2c:98:a0:83:e1:ea:0f:b5:04:76:dd:f0:
bf:40:97:5d:75:b9:b4:3c:f1:d0:2e:92:fc:cc:cc:b1:98:f4:
3a:e5:27:2d:c5:e9:48:31:5a:7e:ac:c0:d8:3c:87:0e:74:80:
2b:9a:0e:85:18:e0:46:43:ec:d9:38:1d:84:44:a7:5c:7b:fd:
1e:66:fe:90:20:16:fd:27:a7:b8:4b:d8:00:38:19:d2:70:03:
24:62:9b:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org