Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3266623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 73XalGqDcttvjAezBKgeVwrXQfIetJDdV+TDO7L6gOs=
Subject key identifier: 2A:62:73:A9:2F:C0:82:36:55:E7:61:3D:9B:80:9C:DB:E8:AB:52:02
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2BAF22F53AFCD7E822C79D7E643EB8B5A9A318DD
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:17 +0000
ROA not before: Mon 26 Sep 2022 12:55:17 +0000
ROA not after: Mon 25 Sep 2023 13:00:17 +0000
asID: 59282
IP address blocks: 2400:d680:2fb::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:af:22:f5:3a:fc:d7:e8:22:c7:9d:7e:64:3e:b8:b5:a9:a3:18:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:17 2022 GMT
Not After : Sep 25 13:00:17 2023 GMT
Subject: CN=2A6273A92FC0823655E7613D9B809CDBE8AB5202
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:38:66:26:74:8c:03:73:8e:f9:1a:99:b9:d6:
0b:f5:f6:ca:b6:6a:f4:08:db:43:7d:aa:1c:86:1f:
0c:9e:3f:96:28:41:2f:1e:38:8e:42:88:9e:49:27:
b9:49:96:23:75:49:6d:63:64:76:64:19:28:76:eb:
0d:b0:ee:62:40:7a:70:3b:17:cd:e9:55:8e:bd:16:
0f:d5:6d:02:8f:c4:54:e7:19:cb:d4:d0:fa:62:8b:
e6:73:b9:44:ea:f9:4b:4a:a1:cd:c0:84:0f:31:dd:
1c:86:05:39:7f:fd:2f:cf:03:76:29:d5:86:2a:ef:
45:e4:2b:fe:2c:c1:b7:1e:ec:2c:62:da:48:43:70:
9a:4c:20:08:92:14:de:17:80:47:c5:01:b4:bd:78:
2e:ee:68:d0:85:1f:b5:ed:3f:a2:6d:28:a3:7c:fa:
4a:a3:db:aa:66:74:12:4c:2c:be:f1:63:f6:c4:f5:
37:93:aa:b6:39:91:04:98:ab:fe:aa:5d:0b:f6:24:
40:5a:79:fe:a8:ff:25:dc:d2:0a:5a:dd:25:a0:6e:
e4:90:d5:b6:ec:6f:e7:d8:1c:3d:05:c8:4b:60:71:
67:f2:b6:93:f3:b7:33:31:df:52:4d:84:ed:78:c5:
40:19:d9:ae:90:e7:a9:9b:7b:94:40:d8:1d:1c:d4:
8f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:62:73:A9:2F:C0:82:36:55:E7:61:3D:9B:80:9C:DB:E8:AB:52:02
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2fb::/48
Signature Algorithm: sha256WithRSAEncryption
00:72:bd:21:ef:0b:5a:15:6a:b4:17:4d:cb:32:bc:f6:fd:02:
4d:28:06:98:71:20:c4:e5:99:03:a0:00:4b:a4:a9:67:11:6c:
e0:c6:83:be:95:2a:7a:39:79:07:8c:db:77:ee:a7:96:d8:ca:
ed:4d:17:04:c0:aa:01:cc:3c:e0:2e:a4:7f:99:e9:62:b1:52:
db:5a:0e:25:36:62:5e:cf:b6:50:f1:3d:c3:27:b0:31:c0:4e:
12:da:c3:55:93:f7:80:44:31:e5:06:82:97:16:63:a0:72:be:
13:a0:3c:d9:6a:6e:fc:fa:f1:fc:81:b6:5f:e2:cf:20:6a:2b:
10:af:18:03:eb:c1:ad:af:4a:f3:1b:17:f5:48:1e:5d:c2:17:
86:07:1f:b6:4d:7e:a8:c9:ad:96:00:a4:aa:08:ef:a1:c9:89:
f1:c3:5d:66:db:b6:ce:84:fa:dd:45:a6:91:65:26:d5:20:75:
b4:dd:28:f9:2e:56:6a:75:2a:a4:9f:01:cb:cd:ac:8a:da:40:
51:ac:ea:f8:48:85:4f:1b:70:fe:b0:00:47:84:35:00:a8:2c:
56:25:d5:b8:4b:8b:1a:d3:3b:66:5c:8f:3c:2b:2b:cb:77:ad:
2d:d1:7e:59:68:60:cb:87:fc:1e:d1:bf:73:68:81:ae:da:fb:
60:6e:ec:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org