Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a65333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: aCVN5cRstgjjKt8K5bc8BFj9mtV/TmjcvK0V8hw781g=
Subject key identifier: 42:75:57:11:7B:64:B7:9A:7A:A7:C9:83:50:BB:5F:66:CD:7E:39:28
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5757CEFF97DCBAB91DA59BBCCADE8DE848BE9B10
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:44 +0000
ROA not before: Mon 26 Sep 2022 07:56:44 +0000
ROA not after: Mon 25 Sep 2023 08:01:44 +0000
asID: 59282
IP address blocks: 2400:d680:e3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:57:ce:ff:97:dc:ba:b9:1d:a5:9b:bc:ca:de:8d:e8:48:be:9b:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:44 2022 GMT
Not After : Sep 25 08:01:44 2023 GMT
Subject: CN=427557117B64B79A7AA7C98350BB5F66CD7E3928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:53:6e:7a:21:a1:ac:43:a7:9e:d6:11:f3:8f:
1c:5a:6e:0d:87:cd:89:eb:59:83:f9:aa:e6:6f:da:
ca:56:4e:88:6c:a0:52:1d:c3:95:38:a1:e6:f1:6e:
0c:ca:0f:c2:e8:5b:d8:df:67:73:60:c2:00:74:b2:
60:48:02:69:54:2e:06:1a:e0:f5:3c:bd:e7:15:3c:
6b:10:c4:da:25:85:6d:0b:fd:53:d9:f6:26:79:59:
49:6c:6d:de:25:0b:dc:f5:fa:5b:2d:58:fa:75:55:
5c:cb:04:63:c3:29:9e:14:a6:9c:63:11:2a:46:b9:
4d:df:dc:a2:65:5f:5a:14:3b:d1:2c:37:e7:7e:99:
18:cd:f2:2c:8d:f5:a8:5f:bd:4e:d5:9f:b4:1c:72:
ca:07:6f:6a:50:de:a9:9e:6f:ee:b0:3a:49:92:6b:
51:7e:59:05:dc:b7:f6:93:59:28:3b:cf:8b:44:35:
34:a5:49:cb:ca:0b:db:5d:23:c4:82:0f:22:74:f2:
93:89:05:30:b5:be:d2:f9:c8:a2:10:41:20:bd:7d:
1a:ab:89:73:93:6f:13:d7:60:de:44:8a:6c:69:7a:
2c:0f:67:bd:a6:1b:96:92:b1:0a:2d:74:ec:88:e6:
bc:c9:3a:4c:8f:48:28:fc:06:2b:d2:23:cb:2c:75:
8d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:75:57:11:7B:64:B7:9A:7A:A7:C9:83:50:BB:5F:66:CD:7E:39:28
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:e3::/48
Signature Algorithm: sha256WithRSAEncryption
27:95:64:17:7a:bf:b6:fa:29:7a:91:fb:20:07:b7:21:6a:66:
26:5b:38:0d:ee:56:07:46:1f:b3:a6:9c:79:3e:9b:d2:32:3a:
41:b2:15:86:3d:23:35:3f:3e:c5:fc:a8:f8:0b:8b:b7:14:4d:
50:39:df:d8:bb:16:4e:28:af:0c:19:c4:81:3b:e1:24:49:15:
66:16:c4:db:61:3a:d7:79:f8:1f:5a:1b:07:83:61:7e:f0:10:
21:b1:fc:c9:d1:48:0f:9a:ee:65:94:22:bb:5b:c4:73:06:d0:
84:fd:48:ec:2c:5a:b5:0d:01:3d:6d:78:75:c2:6e:12:c2:84:
f2:3e:58:3a:27:8c:1b:2f:93:be:2b:4b:54:21:c1:5c:64:eb:
a6:6d:39:e8:99:51:c6:8e:a6:1e:14:c6:b8:b9:84:4f:80:93:
54:c7:ed:84:7f:82:47:2a:ed:9d:50:69:5a:b0:25:b1:d9:27:
45:a9:2c:42:03:5f:db:14:e3:d5:bf:f4:e8:14:d0:e5:12:8c:
ab:03:07:b6:88:ca:2d:3a:01:d5:c9:3b:76:6a:6a:b4:46:77:
3e:ac:19:d8:d5:2a:bb:25:1d:5a:ed:75:c8:96:0d:80:a6:e5:
11:a5:fc:ce:a6:78:c0:4c:a9:f9:4d:d0:a7:5b:36:f5:cb:01:
12:79:ff:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org