Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a383030303a3a2f33332d3333203d3e20313430343037.roa
File: 323430363a313334303a383030303a3a2f33332d3333203d3e20313430343037.roa (raw, json)
Hash identifier: tMK9tbsbtsrJ0hptqaVWvvhSqW5HfCrFA0kp7JMnLr8=
Subject key identifier: D8:0B:25:6A:F5:17:D4:76:C1:C4:16:71:9E:2E:9D:DB:8C:F8:A6:C6
Certificate issuer: /CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53
Certificate serial: 43583B1ACCD80DAEAE658E802322C1E2545F4DD8
Authority key identifier: F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a383030303a3a2f33332d3333203d3e20313430343037.roa
Signing time: Sun 28 Aug 2022 23:09:08 +0000
ROA not before: Sun 28 Aug 2022 23:04:08 +0000
ROA not after: Sun 27 Aug 2023 23:09:08 +0000
asID: 140407
IP address blocks: 2406:1340:8000::/33 maxlen: 33
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:58:3b:1a:cc:d8:0d:ae:ae:65:8e:80:23:22:c1:e2:54:5f:4d:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F10DEA85A199138D0AD96DC4D3CB537CDA662C53
Validity
Not Before: Aug 28 23:04:08 2022 GMT
Not After : Aug 27 23:09:08 2023 GMT
Subject: CN=D80B256AF517D476C1C416719E2E9DDB8CF8A6C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ac:6c:8f:2a:3f:3a:50:86:ee:1a:b5:25:c4:
ed:65:6c:17:96:a7:45:69:06:08:2b:79:d9:a7:cf:
bf:6a:67:a3:59:54:62:92:12:96:df:9b:14:74:a5:
41:66:3f:f9:8d:e4:c1:69:70:54:90:23:3b:7c:db:
a3:6a:6f:26:9a:6b:a9:70:c5:4b:58:e9:ea:bb:d9:
ce:1b:c2:7a:59:78:90:60:f9:b8:91:2f:fc:47:eb:
44:7b:94:c1:ea:e1:4b:b0:49:b8:a4:b3:3d:a3:84:
59:d7:a9:f2:e6:a9:f1:db:67:ea:2c:90:3b:54:c8:
4a:ea:29:f7:7b:21:8b:7b:75:5f:42:a8:35:ff:88:
16:66:ec:32:f3:66:d6:0e:2e:c4:3d:b3:48:20:f1:
dd:25:73:18:1e:b6:34:27:46:d6:bc:71:4b:ae:4e:
01:b6:cd:cf:fb:4f:65:95:05:8b:fb:e6:3b:7c:2d:
a8:b1:99:3a:bf:fd:7c:a2:2e:08:ce:3c:09:e1:63:
a3:5a:74:25:50:58:5d:48:a7:13:ab:93:c4:e3:ec:
c1:a1:14:cc:3e:97:f2:ce:e3:f5:8e:85:74:a7:73:
55:ce:1e:fa:ae:a4:cb:49:e4:a1:b0:f1:13:9a:a2:
3a:06:d5:52:b8:81:45:09:e2:85:38:3b:1c:4d:af:
74:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:0B:25:6A:F5:17:D4:76:C1:C4:16:71:9E:2E:9D:DB:8C:F8:A6:C6
X509v3 Authority Key Identifier:
keyid:F1:0D:EA:85:A1:99:13:8D:0A:D9:6D:C4:D3:CB:53:7C:DA:66:2C:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F10DEA85A199138D0AD96DC4D3CB537CDA662C53.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c596bcc8-38cd-4437-80b1-5bae9f857937/0/323430363a313334303a383030303a3a2f33332d3333203d3e20313430343037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:1340:8000::/33
Signature Algorithm: sha256WithRSAEncryption
85:2b:10:45:a7:f0:86:56:9c:f6:74:f7:b7:fd:de:82:fb:a7:
2d:dc:da:c7:3e:7f:bb:4f:d0:b1:ef:aa:c4:67:85:b4:d2:f1:
f6:67:66:df:df:87:74:d4:35:d6:b9:48:6f:97:c3:0b:a1:26:
51:78:27:09:85:26:6c:c1:fe:6a:c2:87:37:d1:a1:e1:9c:49:
7e:1b:ea:72:14:d8:52:da:3e:83:7a:8b:3d:a3:8c:3b:86:b9:
dd:a6:dc:4b:d5:31:9c:4b:2d:51:fe:5c:7e:3f:47:93:14:e3:
5a:13:18:29:7b:67:32:28:b9:6d:99:71:fc:21:52:8c:63:c7:
14:df:4e:b5:6a:29:92:6a:e4:68:53:0d:3b:d3:88:49:af:b8:
15:3d:12:6b:0d:e2:78:15:46:b6:69:6d:c0:53:e0:f7:07:3b:
3e:46:6b:23:77:3d:c2:4d:b5:6b:7a:26:e1:f4:dc:ed:9b:59:
27:7d:d5:ba:93:57:fd:9f:a1:18:c1:a2:fe:9d:f3:cb:f8:48:
e6:9a:3e:0a:4f:37:9b:de:9b:f3:91:d9:36:eb:42:cd:5b:4b:
69:f2:31:fa:6e:11:04:89:62:65:d3:c7:e9:37:b2:ec:1b:8f:
cc:a8:73:e4:8b:65:e4:1d:c7:1e:d9:72:a9:17:f4:d2:c3:6c:
81:ae:94:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-ams.rpki-client.org