Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3264323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: t0O+XvGxHvBe8N5hHY1CjHcQdAF8lcT27cChxYxdW70=
Subject key identifier: 13:4B:EE:46:6C:9A:9C:06:0D:42:A7:1A:37:6E:D7:FB:25:E8:30:A4
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 28B41CD69ED42EEBD9A268A988224EC6FE84CFCA
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:11 +0000
ROA not before: Mon 26 Sep 2022 12:55:11 +0000
ROA not after: Mon 25 Sep 2023 13:00:11 +0000
asID: 59282
IP address blocks: 2400:d680:2d2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:b4:1c:d6:9e:d4:2e:eb:d9:a2:68:a9:88:22:4e:c6:fe:84:cf:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:11 2022 GMT
Not After : Sep 25 13:00:11 2023 GMT
Subject: CN=134BEE466C9A9C060D42A71A376ED7FB25E830A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9c:70:bf:af:f5:e7:d4:b1:2f:8b:f2:02:f4:
28:04:7f:ab:26:04:4f:ba:0b:af:2d:85:a0:1e:53:
29:51:41:6f:2f:15:3f:47:1d:e5:c3:97:f6:67:5a:
e8:e1:f0:23:b2:b3:24:11:5e:32:02:87:6c:da:4a:
60:6c:d2:22:2c:a0:aa:57:c1:8c:f7:a5:fa:57:5f:
27:d7:17:c3:df:98:cc:5a:59:0d:e9:90:5c:12:2b:
f3:9a:4d:01:54:1f:f1:08:a7:92:0c:7d:69:d1:67:
88:5a:bf:c1:24:f3:b8:d9:5d:08:01:2e:4b:ea:7d:
28:d5:29:99:fe:9b:3d:eb:9b:16:43:26:1e:8f:ef:
e0:13:dd:a1:28:74:7a:85:c4:3e:a1:87:9e:5c:fd:
d9:3c:c8:4d:66:17:a9:d3:3d:90:77:55:6d:e6:54:
a0:bd:c6:75:74:7a:8f:2c:70:5e:31:f2:1e:5b:84:
0e:a7:e4:26:b7:5e:3d:5a:ed:7a:5e:86:9b:9a:b1:
d2:e5:f9:b4:42:c4:6f:44:e5:88:27:ef:3d:48:bd:
81:21:5a:ca:7b:37:f4:a5:9d:7d:11:4f:cd:31:99:
34:e6:d3:a4:2d:b6:b4:e4:8c:59:c9:99:6e:00:d3:
12:9e:54:6d:74:74:ee:0b:cf:9c:23:d1:9b:7b:f2:
09:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:4B:EE:46:6C:9A:9C:06:0D:42:A7:1A:37:6E:D7:FB:25:E8:30:A4
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2d2::/48
Signature Algorithm: sha256WithRSAEncryption
8e:68:a4:9f:b6:73:91:e1:5f:a7:70:5a:de:03:bc:52:0b:80:
3c:45:c0:d3:81:56:14:c2:8e:35:60:33:ac:86:fc:57:fb:f5:
f9:d8:67:ce:ba:bb:19:44:81:61:7f:44:66:91:ca:43:6a:58:
33:35:a7:a3:56:a6:70:5e:61:db:9a:9f:d4:81:05:62:68:c7:
5e:83:f9:b2:f0:0f:72:3b:ac:81:8d:99:59:bd:da:e9:10:22:
13:f4:db:a8:21:51:b4:69:b1:a4:ad:ff:4a:4d:3d:83:5b:d7:
7e:e0:9f:28:69:93:05:36:d0:7e:e0:e4:29:e8:e8:b8:a0:14:
38:b4:f6:e4:eb:bd:a2:a8:76:fb:7d:40:38:de:26:26:c9:2f:
fc:b0:7a:04:12:54:4d:ed:3a:e8:8f:ef:03:57:d4:ba:98:c1:
b8:f5:10:90:b3:f9:fe:1b:b8:56:25:48:a1:04:54:86:ef:5c:
e9:70:ac:2b:8e:39:01:b9:a6:92:50:99:f7:88:37:af:22:05:
87:5f:f3:26:f2:1e:93:ad:3e:91:a3:c6:10:5c:e8:44:3e:bc:
a7:5c:e2:48:8e:de:c2:39:45:0f:6b:66:6b:fd:3e:91:5f:f7:
90:84:f5:66:35:26:20:57:c4:a1:f2:75:8c:c7:f8:70:61:ba:
a3:83:ed:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org