Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3334333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: YDk8kfMz3XFT+qbwKERR4dUgsjX/1AUUr7jfdHuxRYs=
Subject key identifier: 2B:6E:13:9E:87:E3:3E:58:E1:C3:01:71:05:57:00:6E:46:26:D2:80
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0C8BDB2A54541AC0CC4158C56DB083FEC00CCB72
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:46 +0000
ROA not before: Mon 26 Sep 2022 10:55:46 +0000
ROA not after: Mon 25 Sep 2023 11:00:46 +0000
asID: 59282
IP address blocks: 2400:d680:343::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:8b:db:2a:54:54:1a:c0:cc:41:58:c5:6d:b0:83:fe:c0:0c:cb:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:46 2022 GMT
Not After : Sep 25 11:00:46 2023 GMT
Subject: CN=2B6E139E87E33E58E1C301710557006E4626D280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a4:3e:65:61:c6:16:77:c8:06:90:10:2f:ac:
5e:39:aa:57:e3:ef:10:97:ff:da:ba:79:e2:24:55:
28:7e:d0:b9:4c:49:33:c0:6e:b3:ca:b3:9b:7b:c2:
47:c6:cc:fb:1a:a6:52:a0:db:6d:e5:38:34:a1:4c:
9b:6d:50:11:c7:c6:a5:73:b6:75:cc:0b:ab:96:aa:
e2:39:ad:41:8e:3b:a0:68:e0:72:b0:b5:0d:74:39:
47:f2:01:d5:68:40:39:fd:93:4d:ea:c5:ce:39:3c:
39:d9:7d:e6:34:53:73:89:b2:f2:ae:be:8a:7d:dc:
bd:ff:92:9c:ef:f5:65:88:3f:32:b3:02:f4:6e:82:
c3:1e:45:86:14:92:aa:07:63:48:97:38:8b:d6:ce:
80:64:ef:c0:8c:59:24:45:79:27:40:db:6c:c9:3a:
a8:c7:87:fe:21:00:8c:f0:12:28:ae:df:ea:66:4b:
63:0c:9a:64:c2:41:e1:b3:56:6e:c7:68:51:87:ce:
94:ac:2d:d9:47:f1:43:e8:99:98:c0:1a:86:51:d4:
41:bc:0d:32:3c:4d:ab:d8:30:82:f1:ac:0e:66:cc:
58:03:81:87:80:84:23:73:74:fa:2d:ba:69:6d:e0:
bf:9c:27:be:1a:e9:06:c0:f6:8d:48:9e:21:6b:dc:
70:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:6E:13:9E:87:E3:3E:58:E1:C3:01:71:05:57:00:6E:46:26:D2:80
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:343::/48
Signature Algorithm: sha256WithRSAEncryption
ac:f4:50:d0:fe:9d:a7:25:cd:df:b0:c4:6c:a2:64:00:8a:f0:
96:ab:bb:eb:3d:99:14:f6:3f:4e:e1:e9:65:fa:32:27:a7:a8:
df:de:fb:b7:65:c9:fc:13:69:94:a5:1b:63:d9:a2:93:ed:ac:
54:fc:13:dd:42:6f:32:43:35:a7:1a:62:b5:14:00:7f:17:a5:
57:be:92:2a:de:09:9c:df:11:d4:3f:26:26:a2:12:2e:43:e6:
22:72:28:43:cf:11:91:eb:70:92:3d:a6:ed:4c:f3:8f:95:38:
bf:98:3e:b2:2e:37:c1:10:f3:18:78:23:0c:71:21:e3:c7:cf:
3b:57:5e:a9:99:71:a5:ce:da:8f:61:50:8b:b3:59:ec:72:a1:
81:60:33:5e:25:9f:07:ed:10:00:3e:51:d9:e1:9a:5a:89:3b:
0a:4b:fb:d9:af:bc:f0:70:b9:62:94:16:b5:11:02:94:e5:18:
87:91:3f:90:93:74:df:fb:85:99:da:fe:61:7b:78:79:f2:ed:
90:e0:72:7c:ae:71:6c:d4:c5:c3:e2:10:2e:8b:18:41:ec:fd:
23:c1:b7:4c:a5:1a:70:61:33:c1:68:17:42:c1:b7:2f:5f:57:
0f:27:0e:59:b3:5e:37:af:17:79:d3:cb:27:7a:c9:71:8e:aa:
70:4b:05:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org