Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a65383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: xgtw/kYwME2t8i4P7liV9iTeCnUvwgVuNyc/6UEboz0=
Subject key identifier: 88:8A:A4:8E:EB:35:40:0D:71:F0:1B:40:49:AB:AB:BD:BF:29:78:5C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5CA9D20E88E988514D7C3383DF41C6DA4408F8D2
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:07 +0000
ROA not before: Mon 26 Sep 2022 07:57:07 +0000
ROA not after: Mon 25 Sep 2023 08:02:07 +0000
asID: 59282
IP address blocks: 2400:d680:e8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:a9:d2:0e:88:e9:88:51:4d:7c:33:83:df:41:c6:da:44:08:f8:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:07 2022 GMT
Not After : Sep 25 08:02:07 2023 GMT
Subject: CN=888AA48EEB35400D71F01B4049ABABBDBF29785C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:30:25:61:ba:c2:82:93:6c:77:58:ff:ac:a3:
68:01:22:db:88:87:db:6d:05:84:90:e6:b7:78:06:
70:30:2d:ff:9a:8f:7f:4d:7f:0c:f9:c7:e2:d4:2a:
f6:28:c3:cb:f1:0f:5a:29:b0:00:ab:d8:8b:30:29:
f2:be:0f:64:60:33:50:c6:56:06:fa:c0:e9:eb:b6:
42:f2:e4:ee:c9:39:1e:b0:dc:50:ed:1e:2c:9d:b1:
c6:47:d5:21:d7:ff:46:4d:85:d4:74:26:09:b7:2c:
60:30:bb:75:af:d7:4d:b4:02:70:68:d3:9c:bb:bd:
76:94:54:1e:e5:83:69:d3:12:67:c7:86:b5:2a:39:
00:d0:62:56:0d:24:07:67:62:8e:ba:fa:1d:6c:b5:
2a:c7:04:c8:f5:a8:b1:56:48:cd:8e:a3:60:24:df:
5b:71:04:38:d3:93:ef:ed:a4:7a:24:2d:33:71:08:
db:cd:0a:a6:9f:3d:d7:f7:9e:62:9d:31:51:0d:de:
21:32:82:9c:f4:12:23:73:af:ce:a5:df:7f:7e:9b:
57:b1:df:60:04:e0:02:0a:3c:c4:58:19:af:81:f3:
e6:21:40:e3:fa:15:40:c0:c6:aa:4c:37:05:e6:50:
d7:2a:8d:41:3b:01:cc:da:3f:05:cc:f2:58:a1:65:
66:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:8A:A4:8E:EB:35:40:0D:71:F0:1B:40:49:AB:AB:BD:BF:29:78:5C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:e8::/48
Signature Algorithm: sha256WithRSAEncryption
98:6f:13:ab:07:fb:84:53:fc:68:c1:ca:00:9c:fc:3c:30:eb:
62:af:e7:1b:68:a3:49:16:67:c3:2f:cc:61:b8:4b:96:10:2c:
03:c5:60:28:90:5e:50:d2:92:0e:98:24:cb:4d:9c:32:3f:fe:
48:59:c9:e0:26:02:5a:55:c6:0a:a3:a9:40:fb:2c:50:88:da:
b7:4d:8c:ec:9d:33:53:de:93:9d:7b:6d:d0:7e:57:2b:8f:7d:
b7:6e:a0:5c:ef:8a:8f:2d:87:32:bd:2f:0a:b3:f5:f7:c8:f0:
6f:13:ac:7b:41:5b:e5:ed:d6:3b:57:de:35:68:ca:0c:34:5b:
b5:2e:64:0e:5a:c1:7d:a3:55:24:d5:06:ae:95:f9:74:a4:17:
e4:8b:ce:f7:88:00:03:99:00:ba:b8:5c:d4:57:35:64:a3:74:
23:3d:f3:ab:1e:73:4d:f5:f3:a2:89:18:bd:a4:3e:c8:58:8d:
68:ef:ea:1d:4f:14:b2:3b:c2:c8:75:82:5d:8d:e4:83:0d:b3:
df:39:7f:6e:22:47:06:79:ee:be:dd:22:74:ce:34:81:fa:c7:
c6:20:03:b1:33:cb:82:25:d7:bd:d1:51:03:78:78:7c:40:8a:
01:1a:f6:58:0a:4a:a0:1e:a7:75:d3:38:ad:b6:48:2b:5f:56:
ef:20:aa:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org