Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3263313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 4AfIn4WebVLOeretyEve5NONkJ5kettbb5mCeZFyq0A=
Subject key identifier: 73:83:BD:E6:5E:F4:50:20:D9:17:F5:BC:4D:FF:50:D8:56:31:76:1B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 51958B57BB60925D708C8B2F04DCDE7137A7DBB1
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:21 +0000
ROA not before: Mon 26 Sep 2022 12:55:21 +0000
ROA not after: Mon 25 Sep 2023 13:00:21 +0000
asID: 59282
IP address blocks: 2400:d680:2c1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:95:8b:57:bb:60:92:5d:70:8c:8b:2f:04:dc:de:71:37:a7:db:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:21 2022 GMT
Not After : Sep 25 13:00:21 2023 GMT
Subject: CN=7383BDE65EF45020D917F5BC4DFF50D85631761B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9d:cb:87:45:32:6a:d7:6b:9a:34:a7:a2:b3:
58:7a:6e:7f:6f:c8:47:b0:96:82:89:26:3d:6a:53:
1c:ca:59:c9:98:0f:00:e3:09:df:84:3e:73:b1:93:
1d:e2:3d:90:c9:f8:7a:f4:f5:cc:fe:56:65:f7:30:
98:c4:fb:39:af:13:c6:d7:46:f0:23:17:9a:c7:df:
a9:d1:98:16:7a:fa:da:78:c8:da:1a:89:a6:0b:91:
f8:f3:ee:65:e0:aa:86:fa:0a:3a:32:9d:f9:a9:fa:
d5:f7:e1:15:93:e2:e4:20:23:7e:69:4e:e1:fd:38:
e9:88:d6:e4:0e:90:3c:11:be:c3:a8:a4:0e:5e:39:
c0:6b:1e:15:e0:a3:a0:bb:21:72:85:68:40:c9:e6:
12:6b:fb:14:a4:25:13:2c:4a:82:36:af:a3:31:fe:
52:9c:1a:f1:86:b0:ac:91:5a:f2:58:48:4b:16:90:
36:a9:2d:ee:42:d8:9a:04:e2:6c:7a:8a:13:f2:cc:
32:b8:ed:bc:e6:c5:fb:fb:39:a6:d0:7e:34:78:9b:
1b:66:a7:2d:1e:57:b3:fb:45:88:90:75:b1:7a:cb:
d9:c5:3b:dd:52:3e:e0:b9:2c:8e:1c:d1:05:a2:07:
91:95:8f:66:bc:3d:8e:35:f3:f5:56:7e:7c:36:c7:
a9:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:83:BD:E6:5E:F4:50:20:D9:17:F5:BC:4D:FF:50:D8:56:31:76:1B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2c1::/48
Signature Algorithm: sha256WithRSAEncryption
6a:cf:36:20:5f:67:ff:ef:9f:65:2e:9b:e3:a6:c3:b5:5b:06:
1c:1f:f1:2f:81:98:84:11:de:d1:7a:ae:1e:d3:e2:cb:0b:c2:
73:d7:e9:c6:4e:f7:3b:a8:22:e2:b0:40:36:0f:08:05:f4:77:
c5:75:13:3d:73:57:b1:7a:c6:0a:44:0c:1d:a4:c9:a9:ab:62:
1d:f7:bf:48:33:5a:4b:73:da:7b:64:7d:be:9d:00:b4:d3:a8:
44:31:6f:89:20:30:38:4c:b3:6e:84:81:50:a8:93:de:37:02:
d0:5b:01:87:01:90:55:7f:f6:83:11:50:0a:a4:74:6f:ac:ca:
43:d8:bf:2e:d0:c7:93:f5:a5:ac:b5:b9:fb:23:19:aa:0b:33:
c2:60:90:b0:6e:8e:c1:22:4b:4f:ed:67:9a:62:b7:89:27:cb:
c6:c0:d4:12:ce:7f:fe:69:c8:53:85:11:f7:98:77:9c:39:19:
1f:f6:9b:b5:25:eb:2a:df:4e:da:e7:7e:56:94:5f:9f:b7:f7:
57:6f:04:52:18:a1:5f:d1:8a:24:36:b4:11:cb:3a:3f:01:ba:
36:94:9a:e3:f8:ed:02:8b:8c:db:fa:73:65:c8:e0:cf:f7:f2:
ba:5f:c4:ec:6a:b2:31:9e:9d:fe:75:a5:d5:38:fe:69:48:f6:
13:17:72:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org