Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f34382d3438203d3e20313430343233.roa
File: 323430363a323063303a653030303a3a2f34382d3438203d3e20313430343233.roa (raw, json)
Hash identifier: sFamKmYqcHybtGy6niX3waOigAdjoESuE8n/DiwdC4E=
Subject key identifier: F4:BF:24:0E:20:52:D4:38:87:C3:62:80:15:9A:DE:99:7E:E0:B3:51
Certificate issuer: /CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874
Certificate serial: 29F4B2D00854DAE055F53E177947A1D757DD1D42
Authority key identifier: 7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f34382d3438203d3e20313430343233.roa
Signing time: Mon 10 Oct 2022 21:23:05 +0000
ROA not before: Mon 10 Oct 2022 21:18:05 +0000
ROA not after: Mon 09 Oct 2023 21:23:05 +0000
asID: 140423
IP address blocks: 2406:20c0:e000::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:f4:b2:d0:08:54:da:e0:55:f5:3e:17:79:47:a1:d7:57:dd:1d:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7CFD0F39FE2E90EA8B1F5D32D476E387352CB874
Validity
Not Before: Oct 10 21:18:05 2022 GMT
Not After : Oct 9 21:23:05 2023 GMT
Subject: CN=F4BF240E2052D43887C36280159ADE997EE0B351
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:2f:41:cb:8a:86:e9:b3:2b:a3:b1:4e:fe:27:
a7:f7:f3:a5:dd:9d:ed:17:d7:32:a3:96:21:8f:cc:
d9:93:08:89:5f:cb:18:47:9c:57:94:45:69:43:b8:
5d:dc:49:36:d9:43:7c:1d:ff:20:44:c6:c5:73:2a:
a8:45:ae:c6:da:dd:40:89:2d:d0:a7:c1:70:8f:31:
6a:75:7b:f2:8b:fd:3c:41:8a:bf:1f:bc:37:2a:96:
ae:0f:8e:65:bc:58:c3:e5:44:7d:3f:4b:ca:27:f4:
8c:0c:40:b4:1e:41:04:57:09:e6:40:31:c9:47:9a:
fe:48:37:46:67:87:7c:9d:9d:b5:06:b4:2f:32:e9:
11:22:99:ee:bc:c3:01:62:be:08:46:5c:a2:e7:b7:
14:27:87:4e:5e:fa:5a:08:cd:67:ea:4a:63:84:da:
dc:1e:a1:e8:df:b0:00:7b:d5:dd:b1:14:3a:0e:bd:
48:14:22:e5:e6:35:09:b6:f1:98:9f:34:91:74:fa:
a6:7e:bc:3a:0b:e2:49:f9:56:3b:68:22:40:2e:87:
5a:a5:44:dc:ed:08:78:3b:53:ee:c7:ff:ad:f6:16:
c3:2d:77:c5:1a:da:6b:d7:74:fa:8f:a9:cd:9d:08:
39:48:b8:c8:c5:78:6f:ba:52:8f:e4:7e:06:59:e5:
2d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:BF:24:0E:20:52:D4:38:87:C3:62:80:15:9A:DE:99:7E:E0:B3:51
X509v3 Authority Key Identifier:
keyid:7C:FD:0F:39:FE:2E:90:EA:8B:1F:5D:32:D4:76:E3:87:35:2C:B8:74
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7CFD0F39FE2E90EA8B1F5D32D476E387352CB874.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19a00369-6840-4a95-89b1-a48518f98dc7/0/323430363a323063303a653030303a3a2f34382d3438203d3e20313430343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:20c0:e000::/48
Signature Algorithm: sha256WithRSAEncryption
6c:c6:9d:97:21:0a:8d:68:7d:91:77:9e:24:8f:30:9e:2e:9a:
57:9e:af:45:d9:80:2e:da:94:ac:b6:fb:72:4c:b0:f3:00:6e:
6d:cc:ef:20:a8:77:f9:9f:48:aa:b3:00:9e:e5:88:a2:e5:7c:
f8:64:ba:ea:f5:c4:4e:d6:c3:61:ba:55:46:6c:ae:bf:c6:1a:
48:87:77:7f:e1:43:c2:5a:20:cc:d9:ba:0b:f1:1b:c9:33:ec:
d6:43:13:d9:af:a5:39:62:e4:a8:86:17:a6:74:10:a8:65:2c:
81:3d:09:64:1a:62:5f:31:ec:1c:6c:a7:2e:1c:5f:62:77:f9:
43:1f:1f:1a:69:ad:3b:1b:53:26:09:df:9d:08:d6:30:f4:d1:
2f:49:c5:b0:9a:f4:73:de:a5:4b:f6:2e:56:3e:e4:d1:f7:6d:
dd:0c:7f:42:2c:2e:a5:9e:fe:3f:08:df:ae:aa:35:6e:81:fb:
c2:de:eb:e3:94:70:f9:3f:0c:8c:df:a7:c0:88:e9:a3:19:08:
2b:e3:60:a8:f4:c2:a8:46:2f:ac:af:f6:68:c8:db:61:c7:c9:
bf:14:27:e7:5c:09:a6:06:e1:81:f7:6a:b1:5d:3d:62:b4:78:
3f:e3:3f:47:d1:72:bb:4a:30:7d:45:4b:15:a6:bb:93:be:e8:
d2:1c:6f:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:01 2024 by rpki-client on console-fra.rpki-client.org