Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a63303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: EXzEQeIpJS07pwHZrI+IAHUH15i3LETctDMIebXiDbs=
Subject key identifier: F3:D7:6B:F1:43:E8:0A:CF:4A:1B:CB:6D:7F:36:25:B3:01:F1:EC:E6
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4006DC313CCA28EAD743D3F68F589C36D060471B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:38 +0000
ROA not before: Mon 26 Sep 2022 07:56:38 +0000
ROA not after: Mon 25 Sep 2023 08:01:38 +0000
asID: 59282
IP address blocks: 2400:d680:c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:06:dc:31:3c:ca:28:ea:d7:43:d3:f6:8f:58:9c:36:d0:60:47:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:38 2022 GMT
Not After : Sep 25 08:01:38 2023 GMT
Subject: CN=F3D76BF143E80ACF4A1BCB6D7F3625B301F1ECE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ae:6a:44:42:d2:34:af:75:b0:a1:f4:29:d5:
f9:af:a4:40:43:b8:7a:bb:f6:07:67:c0:6b:ad:1f:
e4:a1:0b:b2:f6:93:2a:8f:4b:4f:50:83:7b:a6:68:
1e:b7:d1:6a:42:f0:6a:e3:4f:17:a3:c5:a2:37:a0:
fa:4f:cb:72:ad:be:5e:2d:4e:97:f5:10:1a:1c:b5:
05:8c:bb:e5:01:c0:5b:ad:08:66:53:5b:15:03:33:
8a:5a:a0:29:31:6f:1f:4e:d9:5f:ba:c1:5b:ab:5f:
a8:f7:75:ba:da:fd:de:d3:c7:1f:80:f2:cf:f6:84:
ae:24:15:1f:bc:c3:d8:ac:67:14:9f:f8:5e:e6:6e:
88:77:b9:8a:79:c5:5f:9a:91:0c:5e:40:18:a2:ba:
4f:6c:48:3f:82:81:98:0c:09:a3:1a:c3:b9:55:51:
fc:cb:bf:e9:7a:2b:74:88:6c:02:cb:39:02:f9:20:
d1:63:35:0c:e3:7a:a8:d3:26:7d:f4:48:cf:ab:4d:
cd:7c:f6:60:32:5f:2e:89:62:5f:34:2b:69:6c:c6:
4f:a1:d1:51:0e:15:76:7f:25:a2:1a:2a:b0:e4:0d:
9f:3c:50:d1:85:d6:63:97:39:b3:e9:38:4a:7e:bb:
d2:a0:5e:7a:f8:f4:21:cd:dc:b7:a5:0a:ca:e2:23:
b2:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:D7:6B:F1:43:E8:0A:CF:4A:1B:CB:6D:7F:36:25:B3:01:F1:EC:E6
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:c0::/48
Signature Algorithm: sha256WithRSAEncryption
a9:16:c3:ea:e5:d9:5b:45:25:cc:ad:6c:e3:6e:ff:ce:85:9d:
40:cc:67:41:f6:83:20:4b:ac:76:c2:d9:46:ba:3f:c3:d0:7f:
5e:a5:64:12:df:06:4f:52:2f:04:40:2f:f9:d0:43:d1:34:34:
22:cd:82:54:4d:d6:a9:26:dc:8e:05:9b:90:6a:7a:1e:e8:3d:
a7:eb:21:bc:f0:d8:05:2e:e9:f1:90:6f:5a:6e:a8:20:41:a0:
9b:01:96:82:1e:ac:40:54:94:37:3f:f6:40:52:f0:f5:4a:f5:
7b:98:f2:34:b6:0a:bc:34:07:05:12:af:03:c1:f8:aa:ad:1f:
ca:ca:54:a6:82:8b:e5:42:e9:84:29:29:0f:4a:b0:4d:b6:ea:
f2:cd:77:6e:00:5a:27:65:20:a2:ab:59:d2:d3:e3:ef:7f:27:
02:17:77:a4:70:b7:57:18:8b:48:92:95:4c:4d:30:d2:85:3a:
62:f7:62:c8:f5:5e:3b:22:31:77:65:f2:c2:9d:85:d0:c6:aa:
79:e6:0f:66:a2:e1:4b:ce:90:10:ca:04:cf:63:c6:f7:59:d4:
4d:64:c5:18:6f:cc:cb:ce:02:a2:3b:96:42:46:c1:b3:cd:15:
61:65:10:4b:1d:0f:16:b1:c7:af:4e:5e:ff:29:7e:74:17:87:
d5:88:77:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org