Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3238393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: SwAseYLG6cf1lbAT5czYlpEYD3Yt63XvuXPcGBZdj9w=
Subject key identifier: 13:A6:AC:F6:DF:AB:F9:51:7E:81:23:AD:6E:10:72:D7:7A:09:83:D2
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1ABCCDD6A07101DDAB37D8B1896271BE2D304EE7
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:18 +0000
ROA not before: Mon 26 Sep 2022 12:55:18 +0000
ROA not after: Mon 25 Sep 2023 13:00:18 +0000
asID: 59282
IP address blocks: 2400:d680:289::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:bc:cd:d6:a0:71:01:dd:ab:37:d8:b1:89:62:71:be:2d:30:4e:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:18 2022 GMT
Not After : Sep 25 13:00:18 2023 GMT
Subject: CN=13A6ACF6DFABF9517E8123AD6E1072D77A0983D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e0:55:bb:56:90:0c:ce:00:d7:ea:02:3d:ad:
82:13:50:e8:25:dc:51:a5:e5:68:6a:ab:72:99:4e:
b4:36:74:b5:c9:4f:68:3c:ca:2d:1e:10:13:32:ee:
3e:e6:7e:1e:af:6b:30:89:83:c8:c9:fe:28:81:2b:
5e:a5:3c:8c:58:7f:bb:b8:fa:11:0a:09:b3:b8:0b:
77:28:f8:c4:c2:a0:19:85:5d:f5:93:04:26:cc:2a:
d0:2d:5c:22:2a:c2:80:53:1e:72:73:bf:8b:63:9e:
8b:9f:7a:10:24:2e:09:72:64:fe:75:fd:9a:2c:07:
ab:17:87:e7:2a:af:2b:44:f6:67:54:7e:f2:23:ab:
e2:31:22:3f:a8:66:26:59:89:34:e3:82:88:73:69:
23:30:ee:03:85:42:a8:bf:14:e3:0a:52:4d:d6:9f:
30:7f:e3:d8:67:19:84:95:c1:fd:5f:3f:7e:75:0f:
0a:43:54:e0:e4:1a:7f:3b:57:2e:c0:bc:45:4c:87:
b1:f9:4c:fb:be:17:67:df:2d:0f:8d:9d:34:d4:39:
d7:b3:ef:1f:c9:8f:ed:a7:40:c1:a1:de:3c:2d:fa:
86:da:77:aa:02:12:ad:26:6f:63:f9:87:ce:c1:e2:
ea:dc:63:ed:9d:09:45:6e:dd:9f:3a:74:bf:96:69:
ce:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:A6:AC:F6:DF:AB:F9:51:7E:81:23:AD:6E:10:72:D7:7A:09:83:D2
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:289::/48
Signature Algorithm: sha256WithRSAEncryption
76:17:58:27:a0:69:1b:31:0e:f8:b9:0e:bb:42:d7:d6:3c:ee:
b6:ce:38:d2:11:81:59:45:ba:1e:e9:33:b3:dc:3d:16:4d:34:
d7:63:89:a6:d9:ef:08:4d:87:d8:38:db:bf:9f:09:1f:27:1b:
e6:14:1c:1c:b8:53:17:05:54:3a:a1:44:6c:40:1d:0b:22:66:
6e:a2:44:c2:38:dc:f4:31:f3:af:45:52:5c:4e:f4:89:87:ee:
e2:a3:42:d8:10:e0:a2:63:e9:3d:80:ae:f0:bb:62:a0:77:50:
3f:29:7a:b9:e5:ee:c9:f0:dc:3d:04:48:25:3f:dd:54:3d:b9:
f6:d1:0b:27:ab:58:92:c2:c9:d5:63:13:44:14:c0:f3:96:c0:
99:e1:c9:a9:07:38:b0:ba:c5:30:78:9b:72:38:8d:7b:a6:9c:
b8:c0:51:19:43:95:fe:6c:99:9b:95:bf:14:5b:fb:7e:e2:07:
25:12:ac:fd:0a:ed:25:34:dd:af:17:b6:16:64:5a:fc:25:31:
8e:69:75:b9:9c:2f:76:89:0e:08:6b:75:44:9a:b0:8a:c8:7d:
cf:86:ec:11:82:45:db:71:bd:3b:4d:32:82:b9:b4:4a:7e:48:
01:6e:83:4d:af:f9:87:fe:97:c8:18:32:74:ff:21:b1:ad:b6:
91:1a:d2:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org