Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3330323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Y2/69pVhnvMsWn6ALMUYbrg4CaM53OMA1IP2rcDrZwc=
Subject key identifier: 72:F7:0F:DA:A4:55:72:4C:31:03:B5:9F:BC:C0:FF:4E:E4:A7:19:B6
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 692D899B59ED5F0E46DA96675CCBB8D8204D32C0
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:06 +0000
ROA not before: Mon 26 Sep 2022 09:55:06 +0000
ROA not after: Mon 25 Sep 2023 10:00:06 +0000
asID: 59282
IP address blocks: 2400:d680:302::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:2d:89:9b:59:ed:5f:0e:46:da:96:67:5c:cb:b8:d8:20:4d:32:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:06 2022 GMT
Not After : Sep 25 10:00:06 2023 GMT
Subject: CN=72F70FDAA455724C3103B59FBCC0FF4EE4A719B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:97:02:08:77:d4:83:39:ec:94:85:18:51:58:
01:3c:8b:4b:84:39:e2:8e:8c:32:66:ae:52:5a:0a:
2a:ba:ed:1c:a8:ef:9c:63:57:9f:cb:13:6e:ab:7e:
a3:b9:89:5b:31:36:8a:45:79:1e:78:53:ec:c3:79:
b2:91:4c:69:b2:f8:1e:b5:75:f0:dc:73:90:50:a9:
51:96:aa:34:a0:5b:9e:06:fa:2f:8c:6a:06:58:db:
e4:53:dc:80:9f:3e:5f:6c:b9:59:e4:80:d9:88:16:
96:6f:36:42:86:f3:99:78:6c:86:b5:92:be:4d:11:
15:67:b1:1f:02:b4:a3:2d:6f:f6:05:13:40:81:ed:
8e:95:16:3a:c9:b5:67:c8:e1:d6:cc:55:d0:71:00:
e0:3f:51:60:b1:2c:52:6c:ba:b4:da:e1:4e:02:d8:
96:df:c9:a5:05:ad:9b:09:6f:26:3c:1d:c1:d9:3a:
26:63:6b:aa:e0:a0:87:25:50:b1:64:98:fd:d8:c6:
b2:97:9b:84:61:5e:cd:9f:4c:d8:99:b9:fd:3b:ca:
3c:91:50:49:af:d1:db:bd:0f:07:3e:70:b8:62:90:
e9:38:f4:3f:08:80:a8:74:9a:34:ce:2a:5b:76:a3:
d6:33:cd:a0:03:a2:88:7e:52:67:4c:73:bb:98:97:
a1:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:F7:0F:DA:A4:55:72:4C:31:03:B5:9F:BC:C0:FF:4E:E4:A7:19:B6
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:302::/48
Signature Algorithm: sha256WithRSAEncryption
50:d1:5b:03:56:b9:19:0c:f6:c5:b7:bb:29:8c:6d:1c:84:13:
05:f3:9d:9f:30:c4:77:20:33:28:30:b7:ff:6c:84:4c:00:4e:
6d:61:34:6f:b7:3d:bb:a6:86:42:b8:de:f9:45:38:54:1a:c3:
b0:3f:99:a7:05:3d:f3:2e:0d:f6:9a:3c:f5:a6:97:81:91:61:
b0:39:28:68:d0:44:32:d1:a8:d9:db:9d:4e:1e:c1:c1:97:f5:
28:a5:98:5d:19:65:4e:01:8d:fc:7a:00:07:04:1b:8b:56:ed:
da:c7:75:e7:03:ce:4f:84:eb:2e:a2:98:28:a6:6d:ec:b2:70:
3d:6b:8d:87:a1:60:d4:16:52:5e:26:7f:a9:ec:b3:af:9a:34:
e7:a1:83:40:71:6c:23:5d:88:8f:b8:97:5b:4f:89:da:86:85:
f8:64:3c:63:59:ee:67:c7:bc:01:0a:f0:53:0b:80:96:aa:c4:
5a:40:70:3c:27:1b:1b:58:00:df:56:0a:d3:20:90:09:31:e3:
bc:8b:f8:78:46:07:06:18:ca:e7:56:d5:f3:89:fe:c3:8d:f9:
89:ad:d3:36:09:68:59:c3:e0:a1:c2:e1:76:d8:45:45:eb:90:
02:cb:5e:ca:55:3a:3c:99:60:22:97:cf:06:2d:c0:e0:7b:98:
37:7c:47:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org