Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3130383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3130383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: UhMBkTirCiW3cXKgPIdr6V9QBZp2KDlS3zTmtGRtTp4=
Subject key identifier: 02:F1:A4:A9:8E:ED:3E:A0:FF:93:D9:B1:93:14:CC:98:91:40:B6:7E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4D9D63CF5104859A65D51B0019778313CA86EA21
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3130383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:55 +0000
ROA not before: Mon 26 Sep 2022 07:56:55 +0000
ROA not after: Mon 25 Sep 2023 08:01:55 +0000
asID: 59282
IP address blocks: 2400:d680:108::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:9d:63:cf:51:04:85:9a:65:d5:1b:00:19:77:83:13:ca:86:ea:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:55 2022 GMT
Not After : Sep 25 08:01:55 2023 GMT
Subject: CN=02F1A4A98EED3EA0FF93D9B19314CC989140B67E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:34:a0:b7:27:8a:67:65:30:47:54:f2:97:fe:
2d:86:45:6d:4b:a0:10:66:b8:32:c4:12:83:04:76:
b0:a1:35:bd:6f:d3:98:53:e2:57:66:3f:6d:58:66:
b0:f5:3c:cb:b1:e7:38:5c:df:7a:6d:e1:9a:ac:ae:
dc:14:4f:6f:f5:68:4d:29:dc:24:d5:9e:cf:b6:7a:
5a:be:33:ec:5c:14:32:48:97:08:a7:53:11:43:d0:
ae:73:e5:11:dc:c5:0e:31:15:f3:3c:cb:5f:f2:13:
bd:48:dc:e3:9e:d9:24:7f:00:39:83:70:61:01:61:
4a:44:d2:e3:cd:8e:68:35:7d:82:b6:88:f2:7b:0d:
06:c2:61:62:26:00:37:38:b8:87:5a:54:17:e9:b4:
51:ad:f7:e6:2c:38:41:31:58:68:19:6a:49:4a:fa:
74:36:89:d6:4d:8a:82:9e:97:24:ae:75:aa:d8:aa:
48:7e:23:76:27:bf:e3:68:b6:10:17:8e:a6:c9:07:
28:dd:22:b0:74:3e:ff:e8:02:2f:5c:3e:68:8d:9e:
c9:d3:da:88:fc:3e:91:bf:44:84:e2:c2:bc:35:38:
34:09:bf:81:ea:e5:6a:a3:44:35:a8:fa:fb:3b:8e:
f4:b5:59:a3:ba:e7:21:3e:8c:35:58:cb:40:9c:2a:
31:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F1:A4:A9:8E:ED:3E:A0:FF:93:D9:B1:93:14:CC:98:91:40:B6:7E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3130383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:108::/48
Signature Algorithm: sha256WithRSAEncryption
b4:3d:88:64:43:59:17:c3:d2:99:0a:44:4a:48:bb:f4:cd:e6:
2c:ff:53:7f:0c:6b:a2:30:9d:ae:76:86:63:7a:a9:fa:b1:64:
ed:7f:da:f1:57:8d:39:90:2f:43:25:01:31:99:fc:08:4f:8e:
08:bf:28:da:c2:6b:52:f9:cd:5a:eb:26:e9:6b:20:02:bc:89:
23:31:b6:f9:07:8c:81:d6:a8:39:32:28:49:3f:a0:7a:67:fa:
14:0c:c2:f7:7b:1a:7c:93:0f:9e:02:a4:73:49:ab:78:0a:3d:
cc:95:d6:db:b9:f6:3d:8b:be:e6:d3:92:ea:b9:c4:83:ee:b0:
9e:b0:9e:fc:9c:f5:fb:47:4d:5b:4d:7e:8e:58:11:b7:65:a7:
66:16:11:79:f2:56:1a:74:33:71:01:c5:d8:91:f5:e9:1d:cd:
5f:fe:93:5c:1a:a7:3c:94:21:46:b2:4e:ae:af:f2:d7:77:cc:
47:97:0d:ee:85:24:3f:e9:39:52:15:39:fe:26:4c:b2:3d:47:
6b:d6:49:91:ef:52:99:6b:67:1c:55:f3:94:90:1d:c5:79:2d:
c5:66:8e:36:e9:72:f8:e6:72:b0:4a:c6:21:50:5b:cb:88:a6:
5d:7a:21:2b:8f:59:e0:13:d5:c8:1a:50:12:91:e3:42:95:59:
ab:a6:4b:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org