Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3a2f33322d3332203d3e20313432333634.roa
File: 323430373a633663303a3a2f33322d3332203d3e20313432333634.roa (raw, json)
Hash identifier: imxsmcqIBbmS4I7f1sXftn3qnSUqnYL8qgToOEZmWVg=
Subject key identifier: 32:86:A4:E2:69:80:AA:0A:7E:88:65:9D:8A:15:20:67:D5:9C:E8:3C
Certificate issuer: /CN=CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F
Certificate serial: 0ECC74B032CCA74BD0C5191E0FDAF985EB896D59
Authority key identifier: CE:C5:FE:18:3A:39:10:5C:9E:27:02:CC:2B:F0:89:1F:C3:5E:1E:4F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3a2f33322d3332203d3e20313432333634.roa
Signing time: Tue 21 Mar 2023 13:25:35 +0000
ROA not before: Tue 21 Mar 2023 13:20:35 +0000
ROA not after: Tue 19 Mar 2024 13:25:35 +0000
asID: 142364
IP address blocks: 2407:c6c0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:cc:74:b0:32:cc:a7:4b:d0:c5:19:1e:0f:da:f9:85:eb:89:6d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F
Validity
Not Before: Mar 21 13:20:35 2023 GMT
Not After : Mar 19 13:25:35 2024 GMT
Subject: CN=3286A4E26980AA0A7E88659D8A152067D59CE83C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8d:b4:6c:21:db:a6:33:7e:0a:62:1a:c1:27:
e2:f1:46:f5:e1:a3:88:53:0f:9a:ed:8d:dd:e5:90:
ca:b6:3a:c4:30:69:71:af:a8:4a:dc:9f:2a:f5:98:
ef:91:21:25:7c:45:b9:8a:d3:53:3a:79:49:75:ef:
e3:05:db:62:17:ba:40:e2:37:95:c0:4e:a1:43:da:
87:9b:a1:cd:28:20:7e:21:66:30:23:f4:25:7e:38:
9d:74:39:96:11:a5:df:2f:e6:85:dd:e9:3e:48:b9:
95:7b:d1:e5:8b:71:21:23:98:ab:51:6a:63:9d:9c:
e2:b1:c4:e7:8f:39:9f:80:c4:e3:5f:ac:fa:d0:3f:
9b:95:3e:3b:13:ce:c7:d4:67:1b:c0:80:89:f0:2c:
ff:aa:4e:cf:b7:f3:18:e7:1b:53:eb:90:f1:bb:54:
1c:ce:f9:7f:17:90:64:65:1c:17:d6:56:64:a9:4c:
f1:e5:a1:e7:2d:04:8c:c0:fd:44:f6:a3:a1:52:8c:
16:b0:b0:8f:b4:12:35:6f:e5:ab:c8:87:8a:77:99:
4a:6e:b4:fb:5e:73:f8:1d:99:04:68:8d:6a:29:70:
64:30:5b:ae:5f:ee:1a:e2:f8:48:01:ad:bb:65:1e:
2e:e0:d3:8c:12:9f:9d:d0:e6:3e:db:5b:e3:34:6e:
8b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:86:A4:E2:69:80:AA:0A:7E:88:65:9D:8A:15:20:67:D5:9C:E8:3C
X509v3 Authority Key Identifier:
keyid:CE:C5:FE:18:3A:39:10:5C:9E:27:02:CC:2B:F0:89:1F:C3:5E:1E:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEC5FE183A39105C9E2702CC2BF0891FC35E1E4F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/561cf777-8adf-4ef1-8d6f-9862c55620ea/0/323430373a633663303a3a2f33322d3332203d3e20313432333634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2407:c6c0::/32
Signature Algorithm: sha256WithRSAEncryption
83:40:31:fc:a3:25:a3:14:ed:06:c1:7a:2c:17:94:9d:b5:5e:
e5:e1:76:5a:29:22:5f:60:4d:6f:f0:7f:9a:8b:18:52:dc:b8:
1e:0c:3f:da:05:99:09:49:60:07:68:db:d0:eb:43:d8:5b:a9:
82:06:bd:17:07:97:b3:8d:58:2d:dd:2d:2d:e2:31:f5:bb:2e:
a2:60:52:66:b6:51:c3:ad:62:1a:74:e1:58:72:ac:47:b2:9d:
ed:a4:79:0d:a0:79:c8:50:70:14:db:34:96:7f:d4:24:f6:e2:
d1:18:c6:72:0e:48:fd:05:ac:9d:cb:56:85:54:d7:be:a0:5f:
80:e8:73:5d:a7:75:d3:03:09:c8:bb:5b:8c:d7:97:47:17:d4:
e7:64:12:0b:9a:2a:d3:4e:79:b1:85:8f:7c:43:e1:b7:30:42:
4e:0c:31:a3:b6:5f:b4:45:97:c6:2d:ef:16:b2:36:b4:97:3d:
1c:57:d3:30:bc:ac:ed:bb:7f:0d:96:dc:71:0f:03:f6:72:69:
e1:bd:e3:95:73:c8:e3:ea:3a:b8:83:aa:62:29:18:da:c4:4a:
31:e5:75:b5:eb:37:99:26:94:69:8e:b7:cd:e2:79:50:4d:53:
69:c1:a6:39:25:cd:36:f3:9a:cd:16:eb:46:3f:93:61:63:59:
98:48:e6:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org