Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a35303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: GLVa6NTCaryIp3UYAB9tGpxefnhBu2KC9bszpEzN05g=
Subject key identifier: 21:00:1C:76:26:37:34:E6:06:B7:95:C3:E8:BA:D2:4B:EF:5E:0C:25
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2751845503B418A456C98238BDC05ADBB39E4399
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:53 +0000
ROA not before: Mon 26 Sep 2022 07:56:53 +0000
ROA not after: Mon 25 Sep 2023 08:01:53 +0000
asID: 59282
IP address blocks: 2400:d680:50::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:51:84:55:03:b4:18:a4:56:c9:82:38:bd:c0:5a:db:b3:9e:43:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:53 2022 GMT
Not After : Sep 25 08:01:53 2023 GMT
Subject: CN=21001C76263734E606B795C3E8BAD24BEF5E0C25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:f4:89:12:9a:f4:23:a8:38:19:5a:98:4f:a3:
2a:82:d3:ce:cf:ba:6a:81:3b:2d:78:94:c6:ca:77:
30:7d:9d:ec:f0:74:39:b2:88:6a:05:a1:96:64:02:
2d:89:b4:d1:62:13:71:a4:b4:a0:42:c1:28:e3:11:
0a:86:08:60:39:75:c7:3d:87:47:6e:fc:61:96:45:
41:17:6c:50:9b:e1:29:56:ca:e2:84:0a:16:12:2b:
c2:09:75:08:4d:d0:74:56:60:73:ad:cb:f1:91:da:
56:01:bf:95:b2:48:51:2f:45:67:9c:83:ae:f4:94:
7c:71:86:65:7c:e5:a7:c2:60:92:7b:41:f3:41:b4:
75:a8:63:2c:80:5b:2c:e5:8e:bb:83:d4:4d:26:b9:
8b:fe:32:31:80:61:16:1f:1c:8e:6a:8e:03:13:05:
cc:c3:9d:1f:7d:74:b7:c9:d5:dc:1c:a3:8f:d7:21:
df:d7:40:d5:d0:23:2d:96:93:c3:e2:4b:8a:c3:d5:
e8:46:27:44:12:45:d5:07:2b:b2:ec:b3:32:5d:2f:
99:d1:ca:a9:04:11:ec:ef:9a:c4:8d:67:30:86:6b:
34:38:73:5c:47:f3:65:9c:11:ca:eb:c1:f9:36:30:
7f:7f:95:94:81:f2:33:a4:fa:26:de:d7:02:c1:2e:
4d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:00:1C:76:26:37:34:E6:06:B7:95:C3:E8:BA:D2:4B:EF:5E:0C:25
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:50::/48
Signature Algorithm: sha256WithRSAEncryption
bb:e4:0b:0d:48:c0:b3:4b:1e:4a:2c:10:34:a5:27:64:da:d3:
bd:6b:40:27:fb:fd:f0:12:a4:15:47:f6:48:b9:24:b1:01:7e:
c7:39:e6:59:12:11:10:b4:f8:de:1e:11:ce:1e:a6:6e:1e:71:
cb:a2:2e:ba:d3:58:dd:10:63:ba:39:01:d5:21:04:51:32:ce:
86:21:47:74:cf:9d:e3:54:26:06:01:75:09:12:ec:bf:d0:dc:
83:19:69:81:b0:a3:c1:92:d9:4c:66:78:8a:86:ba:d2:40:97:
3a:cf:1a:db:9d:b6:e4:14:7a:54:0c:20:b4:ad:ed:f1:f6:57:
1d:f9:dd:66:7e:c5:dd:5b:47:b1:68:6d:93:3e:b9:41:87:be:
1d:31:e3:6b:59:11:09:78:20:fe:fd:50:e6:06:11:41:c0:f6:
b8:e6:21:fd:d7:17:e1:1a:cd:83:1e:cb:7a:0e:c6:ff:f5:04:
8c:bd:34:8c:f7:5f:d9:fb:34:dd:ec:71:de:d6:07:ba:15:74:
46:0a:e2:21:b0:1b:70:f4:2d:0c:9e:08:8d:29:6c:96:30:f1:
06:c0:60:81:b6:79:bd:7f:c0:32:47:c6:1e:b3:2a:9d:eb:01:
56:37:d6:ec:cc:3b:9b:4e:b5:67:b6:fd:d6:da:c9:6e:31:75:
91:27:88:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org