Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3130323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3130323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: hVa8fA2rDoCjAsM1l5kZT7xTtydprgdPK8xziUcSeIk=
Subject key identifier: 98:95:F3:75:07:73:D5:3D:7C:25:DD:24:54:3B:5B:EC:11:18:B6:09
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 195FCB13C09B63C04A00CC7BCC44F448EDA7BBE9
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3130323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:05 +0000
ROA not before: Mon 26 Sep 2022 07:57:05 +0000
ROA not after: Mon 25 Sep 2023 08:02:05 +0000
asID: 59282
IP address blocks: 2400:d680:102::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:5f:cb:13:c0:9b:63:c0:4a:00:cc:7b:cc:44:f4:48:ed:a7:bb:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:05 2022 GMT
Not After : Sep 25 08:02:05 2023 GMT
Subject: CN=9895F3750773D53D7C25DD24543B5BEC1118B609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f6:32:db:8c:fe:e3:0e:5e:09:e6:fd:95:77:
2d:a7:a6:92:cd:00:80:46:9f:34:86:7a:96:00:70:
a5:12:ea:5a:76:43:63:39:9e:58:c1:c2:76:3b:ce:
a1:05:96:39:aa:b1:e4:1c:7e:22:85:d9:a9:51:f8:
f4:d3:90:bc:62:cd:da:70:8a:ef:5d:a0:76:c8:af:
f8:02:fe:e2:1f:6f:6d:b2:07:bc:d1:48:d9:a0:a8:
f1:d3:7e:96:05:c9:d8:06:af:93:52:4a:10:48:36:
d4:b6:09:c8:9b:07:20:60:7b:61:28:71:e0:53:26:
b9:40:07:0c:15:f6:db:0c:73:56:3e:b2:f4:09:a0:
83:ed:d4:c0:2e:9b:a2:59:4e:c8:1b:91:82:0e:5b:
2f:eb:df:1e:2f:76:db:bd:e1:a5:fa:d6:94:60:af:
d9:6b:b7:a8:0a:86:4f:1e:60:60:fa:b9:23:2a:b3:
33:c2:63:db:90:17:e3:9b:69:c2:fa:2d:7c:17:7f:
33:4d:22:de:b5:a0:49:92:70:6f:4d:bf:b7:fd:ff:
5f:ef:15:0d:95:d0:05:5a:5d:02:6b:c5:d5:d0:15:
60:5d:5c:2c:12:8a:a0:ca:e7:38:d4:d3:d0:3b:df:
15:c5:dc:e9:b6:e0:c2:90:66:d1:34:3e:35:75:70:
50:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:95:F3:75:07:73:D5:3D:7C:25:DD:24:54:3B:5B:EC:11:18:B6:09
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3130323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:102::/48
Signature Algorithm: sha256WithRSAEncryption
90:83:40:33:23:13:5e:b3:2c:06:bf:23:a4:aa:0c:1e:92:ff:
2a:2a:d1:c7:81:53:c9:96:9b:6a:44:e4:a3:a7:ea:b9:53:f1:
f1:4f:88:af:a0:c2:d2:21:a5:41:75:1b:a4:52:d9:e9:99:24:
ce:f1:0b:43:40:80:40:e3:c1:27:fc:aa:ea:e2:47:bc:e4:03:
db:d0:17:9f:4c:ab:cc:75:70:2d:0c:e9:d6:f2:b9:13:67:75:
c1:61:58:d2:17:cd:f4:99:e7:34:00:18:e2:42:44:82:17:87:
4b:6e:66:8f:c4:e5:ad:5a:5c:e7:05:f0:11:1a:d6:d4:0b:52:
41:0d:15:3e:4f:5a:58:6a:49:5d:8d:e9:c6:e5:95:ff:cd:cd:
41:8f:06:23:07:0e:85:eb:72:47:7c:37:ab:ad:98:b1:03:14:
af:73:de:66:5d:04:5f:f3:fe:59:ee:a8:29:5b:23:fa:55:21:
6d:65:0e:c5:06:68:91:ca:24:24:5c:bf:99:19:9c:af:d5:1f:
c0:a2:0f:65:46:86:8e:2e:17:f1:fc:70:e1:1d:c4:9b:08:88:
16:d9:6b:ef:c2:be:5c:d5:a5:a3:23:d7:88:27:ee:a7:7c:7c:
d1:1e:6b:43:39:05:e9:16:0c:38:2a:c0:95:81:3e:25:7c:d6:
45:ed:33:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org