Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a64663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: +FrQxBhOSM2Riu7S4sB3s8WtDRHi1Ke32Y5iz11qj7M=
Subject key identifier: 06:2D:11:29:09:AB:50:99:6E:0B:E9:1D:93:08:E3:62:7C:35:D3:F9
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 57038394E779D0204FADAE74FA3BE9C5D59032A0
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:11 +0000
ROA not before: Mon 26 Sep 2022 07:57:11 +0000
ROA not after: Mon 25 Sep 2023 08:02:11 +0000
asID: 59282
IP address blocks: 2400:d680:df::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:03:83:94:e7:79:d0:20:4f:ad:ae:74:fa:3b:e9:c5:d5:90:32:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:11 2022 GMT
Not After : Sep 25 08:02:11 2023 GMT
Subject: CN=062D112909AB50996E0BE91D9308E3627C35D3F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e8:f4:29:3a:d1:ff:d6:5a:58:c3:b4:49:d9:
16:bb:81:a7:2e:fa:f3:95:62:f7:1b:32:99:77:57:
4f:7f:fa:ac:1d:75:c3:f5:25:d9:ed:7c:24:06:d1:
56:82:ba:1b:7d:c4:34:98:f2:9b:6d:74:50:18:c0:
6d:e4:1e:e2:33:d1:c1:c2:8a:39:31:8b:6e:8a:63:
33:94:c1:1d:d2:9f:0d:87:08:2e:ef:7a:26:a4:c3:
1e:03:6c:06:ed:f5:fd:f3:a1:3c:32:0a:2b:64:82:
cc:4c:69:cd:73:0c:7c:cf:53:05:6c:20:01:e3:8c:
26:90:4d:1d:ac:ed:70:d3:cb:d7:80:0c:30:d4:67:
2c:34:9e:2e:51:eb:76:3b:e0:aa:2f:5c:36:ae:7d:
ec:75:c4:46:47:2e:fa:e1:29:ef:04:02:61:55:22:
46:f8:50:4d:07:2b:ca:1a:00:27:08:4c:51:86:1f:
b8:80:bc:d2:8e:8e:7b:28:0d:b1:93:eb:64:f0:32:
4f:cd:a2:4f:b9:e4:81:25:00:c4:85:e7:19:b5:86:
50:4e:d9:c1:1f:a8:9d:6f:ee:c5:55:a9:e7:96:da:
1c:8f:77:34:2b:77:d8:1e:36:8a:9d:dd:2e:7a:73:
61:c5:e8:d1:36:dd:f8:0e:ab:43:b1:79:68:d5:c4:
24:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:2D:11:29:09:AB:50:99:6E:0B:E9:1D:93:08:E3:62:7C:35:D3:F9
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:df::/48
Signature Algorithm: sha256WithRSAEncryption
04:60:c2:f6:af:0a:8b:b3:01:8a:1e:b3:b1:39:b8:5b:aa:14:
bb:68:67:8a:43:0b:8b:95:02:5a:71:a6:4f:ad:a7:71:f1:b3:
cb:43:b2:59:be:51:1a:06:0e:a4:9d:87:a6:45:9c:a4:2c:2c:
ba:7c:1d:7b:9f:ca:38:4e:e8:8b:f6:a5:e9:b5:be:ce:b5:6d:
68:79:46:97:f0:d6:c0:99:48:8e:99:02:a8:4e:d3:96:96:04:
57:bd:1c:0b:66:a8:4f:21:35:04:2b:87:65:c8:0e:15:f7:50:
46:11:69:3a:5f:e0:9a:ce:e3:96:10:ba:99:67:a3:eb:58:b9:
7d:d3:28:f0:73:8e:7e:4e:e9:42:41:ae:c7:83:b2:f8:e2:35:
2a:a8:18:83:30:35:50:de:bf:34:99:8f:a8:d0:d7:ae:bb:5b:
41:ae:8b:4b:33:90:07:dd:e7:b8:1f:e8:e4:9b:18:f2:4b:fb:
7f:6c:f2:68:68:ca:82:24:43:6b:54:1f:9a:58:00:6e:70:fb:
27:00:3f:85:85:29:bb:0f:15:4c:99:98:be:0b:79:91:95:d0:
a6:94:eb:13:67:59:5a:39:68:af:5d:5c:af:9f:31:b7:9a:41:
77:7d:c4:ec:5b:09:68:d2:ca:d5:79:ee:21:cd:ee:30:fa:9e:
0d:ad:4a:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org