Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a36343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: fcWd1IdDJWix8Ul/bNWuKX15bxUPxOxmgIXrwN3kpyY=
Subject key identifier: 73:12:7B:3D:D2:4E:2E:91:61:66:12:15:20:AB:3B:F2:93:2C:6F:E2
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 767434EAF0DC4BD812AA2E3B14873348F6C02042
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:48 +0000
ROA not before: Mon 26 Sep 2022 07:56:48 +0000
ROA not after: Mon 25 Sep 2023 08:01:48 +0000
asID: 59282
IP address blocks: 2400:d680:64::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:74:34:ea:f0:dc:4b:d8:12:aa:2e:3b:14:87:33:48:f6:c0:20:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:48 2022 GMT
Not After : Sep 25 08:01:48 2023 GMT
Subject: CN=73127B3DD24E2E916166121520AB3BF2932C6FE2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:49:4e:54:ae:8b:3a:2d:bc:c2:c8:bc:38:69:
21:c2:98:5c:77:c2:94:2e:ed:d3:56:dd:97:b4:8b:
88:56:84:c5:e1:51:07:55:b9:af:94:8b:c1:8d:c3:
0b:83:12:b1:a1:e4:09:23:be:b8:71:af:2a:4d:6d:
29:41:61:43:b7:e7:6a:54:9a:9f:0c:df:ae:33:82:
99:05:d5:58:7b:c9:3a:bb:35:38:25:ad:2a:80:ec:
73:53:5f:a5:64:a2:a5:f6:dc:af:66:78:04:a1:63:
1c:0b:bb:bd:16:8a:05:9a:f3:82:6c:61:0d:e3:52:
b5:19:00:68:b8:0d:a6:4d:74:64:34:6a:9b:79:0f:
fb:ee:b6:e2:2d:2e:88:6c:73:fb:86:00:87:5b:5b:
59:31:27:bd:78:6a:ae:89:a4:89:09:4f:f9:40:f3:
f8:59:05:84:8a:b4:1e:31:b5:aa:ac:0b:b7:b2:c6:
84:d3:8f:c2:ba:d4:44:f4:4a:7e:31:af:bd:4b:e4:
d1:36:c9:df:8d:06:c5:c0:c1:7a:4a:c1:da:5a:16:
28:80:aa:16:9c:6e:8a:08:77:09:1a:3b:da:bd:dd:
fe:da:28:44:12:92:bc:8b:25:14:ed:3a:0d:74:ee:
57:c2:75:e0:8b:a8:d7:71:77:e8:ab:a0:1a:e1:7a:
49:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:12:7B:3D:D2:4E:2E:91:61:66:12:15:20:AB:3B:F2:93:2C:6F:E2
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:64::/48
Signature Algorithm: sha256WithRSAEncryption
81:7a:f8:09:f8:ab:01:a5:2c:d2:59:c9:be:e0:ea:eb:5a:de:
b7:50:2c:a8:44:2c:9d:6b:d0:84:d5:af:45:a2:57:9e:f4:e2:
0c:8a:ac:21:e1:b0:e0:7a:40:70:5f:27:6a:e4:6c:b0:79:8d:
42:21:0b:6a:1b:96:ee:4c:06:75:54:71:13:bd:3c:96:97:19:
e3:c0:4a:3c:f3:bb:c4:37:c0:9d:1f:35:30:d2:1a:bd:f8:ef:
ea:fa:4e:2a:ac:2a:2f:c4:e8:10:23:1e:f5:4d:8c:85:da:79:
62:cc:7c:8f:72:ce:7c:8b:bc:ae:a5:4f:9f:74:f3:02:06:eb:
9b:14:27:a7:16:4d:02:e8:6c:50:cc:19:0a:3d:74:88:37:0f:
2b:6b:5d:4d:69:aa:df:59:44:59:be:53:c0:d4:83:d4:ef:00:
db:b2:e4:e3:6b:24:77:34:38:82:b0:cc:af:29:92:d4:a4:a5:
a0:5f:1f:cf:2d:6d:a8:43:bb:d2:45:d1:bc:1d:a5:76:be:64:
b1:1e:6c:17:96:f3:da:95:e1:d8:24:43:5c:6a:19:ef:7a:d0:
bd:88:ff:c6:50:f4:a4:c6:e3:7f:67:36:bc:8a:e7:5f:e4:fd:
10:46:91:4d:23:43:c2:5f:02:6a:f3:b8:bd:8a:16:36:b1:4f:
ca:54:56:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org