Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3334653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: t3RU86CvFNjNyOTdIqUZ9V2bdMjHXMrKCV6psa/zRe0=
Subject key identifier: 67:C6:7C:16:C9:17:F2:55:B7:E6:34:79:09:D8:E2:3E:0A:CE:55:DC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4F5D3621A10EEB94D0105092340028045D787CA2
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:51 +0000
ROA not before: Mon 26 Sep 2022 10:55:51 +0000
ROA not after: Mon 25 Sep 2023 11:00:51 +0000
asID: 59282
IP address blocks: 2400:d680:34e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:5d:36:21:a1:0e:eb:94:d0:10:50:92:34:00:28:04:5d:78:7c:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:51 2022 GMT
Not After : Sep 25 11:00:51 2023 GMT
Subject: CN=67C67C16C917F255B7E6347909D8E23E0ACE55DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:99:02:da:0b:cf:6d:18:99:8d:79:a3:54:d7:
55:fc:f8:a0:2f:f3:97:43:ba:b2:fe:a6:0a:03:4a:
f4:65:7d:92:a9:d5:3e:7c:29:69:ee:46:23:02:40:
68:42:90:00:85:72:c9:cc:70:86:0d:4e:ac:b2:72:
66:9c:c5:d4:43:23:ff:6f:ae:a1:3d:db:a5:5a:35:
1e:98:09:3a:50:75:f3:0a:45:b5:10:db:e5:81:e0:
e1:db:b7:bf:da:a3:41:63:fc:65:64:57:32:2d:00:
57:e1:4a:15:ea:48:e7:ea:3e:47:12:a6:ce:ef:af:
5c:2b:43:46:6d:01:0c:6d:33:51:33:f3:2c:18:d2:
70:48:66:db:ce:bc:48:ae:0a:83:9c:15:25:60:03:
ad:55:6c:da:a8:8e:62:3c:87:45:01:f4:a5:8d:68:
b9:6c:e2:db:12:08:e9:ab:0a:f2:57:33:86:5a:76:
99:88:cc:d3:49:36:2f:2b:bc:45:cc:75:30:5d:02:
36:05:12:49:07:c4:be:7d:c3:d1:13:2b:e5:9d:29:
08:91:6d:64:83:48:db:2b:7c:28:94:ed:00:2c:a6:
be:dc:cd:ba:33:c2:30:04:8f:ea:8f:6e:f9:b2:33:
a0:5e:64:f2:eb:a5:33:03:1d:90:b9:7c:3e:7a:ce:
f5:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:C6:7C:16:C9:17:F2:55:B7:E6:34:79:09:D8:E2:3E:0A:CE:55:DC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:34e::/48
Signature Algorithm: sha256WithRSAEncryption
3d:47:b0:bb:64:96:89:5c:6b:3e:b3:c4:e0:59:c3:d0:0c:1b:
9e:41:4c:19:a0:6d:b4:c2:f0:d2:04:94:ff:d1:1b:b0:a1:fe:
06:9c:34:25:6c:70:17:89:79:20:73:0d:ba:d8:e7:75:be:aa:
ca:4b:cb:2d:eb:c7:46:61:1a:0e:15:d2:e1:b0:a4:62:81:30:
35:ca:f8:9c:56:70:d9:6e:26:5c:9f:60:b8:83:00:30:cd:b4:
d3:da:34:bb:8e:fb:0f:59:01:aa:f3:58:a1:bf:02:66:e3:7d:
40:03:f9:ee:f8:40:07:5e:ef:bf:04:12:86:bf:61:75:cc:ec:
bd:c8:4d:f5:a3:a8:85:fa:32:ce:f3:36:30:2a:f7:0f:27:08:
cb:ba:31:1b:4a:a0:07:c6:99:0f:86:11:cd:68:ab:de:4a:87:
74:94:f3:c3:90:a1:c1:b2:14:01:75:71:c5:e2:b2:9c:95:42:
9e:bb:07:3d:37:bd:22:83:4c:14:76:2e:bd:d7:5b:3b:dc:50:
b2:38:af:37:78:42:b5:56:cb:ab:54:15:ae:ba:b1:f0:4e:d6:
5e:30:57:5a:8b:62:e2:ae:2b:41:57:cd:52:18:53:1f:12:67:
a9:cc:53:58:c4:9d:dc:5f:6b:38:aa:62:ab:3e:52:54:d5:87:
b2:7f:94:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org