Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3132303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 4Ca+Pg6BeJuH1vThnQwB1FEewgN188kNVxVI6Rn1Ze0=
Subject key identifier: 3B:9C:53:9D:89:25:0F:D2:B6:3E:36:7F:69:FD:99:87:C7:E9:B7:9E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 45824FD06057817DBB20551418478F45C1BCF328
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:30 +0000
ROA not before: Mon 26 Sep 2022 07:56:30 +0000
ROA not after: Mon 25 Sep 2023 08:01:30 +0000
asID: 59282
IP address blocks: 2400:d680:120::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:82:4f:d0:60:57:81:7d:bb:20:55:14:18:47:8f:45:c1:bc:f3:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:30 2022 GMT
Not After : Sep 25 08:01:30 2023 GMT
Subject: CN=3B9C539D89250FD2B63E367F69FD9987C7E9B79E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:8b:43:6b:e8:72:69:a5:9b:bc:1a:07:75:38:
d3:d5:de:09:5a:19:1c:24:03:3e:91:ad:de:9f:9d:
81:09:2f:1a:98:c3:54:1f:c4:40:48:65:35:f0:b3:
5b:11:6f:48:d8:2a:0e:7e:37:d2:3f:5d:44:9d:c2:
30:40:d9:2b:3b:35:dc:7b:6f:fa:82:7d:f3:85:a1:
5e:88:d2:bc:99:61:47:b7:ee:10:e3:ab:69:3f:c2:
03:5e:93:2f:49:e8:d3:51:a2:a8:a7:a0:8a:84:3c:
13:4a:a6:96:2d:fe:37:1d:99:c1:68:34:71:c6:cb:
f8:61:a7:f4:8b:cb:a7:df:ee:75:a2:39:99:b1:04:
02:d1:08:ff:51:0c:ee:4d:f3:22:94:f7:f0:ac:d8:
5a:1d:27:62:25:b6:ec:c1:2e:f5:9d:d6:0f:20:45:
cd:73:50:3d:36:38:81:64:16:02:05:ff:67:5f:e6:
7c:55:08:cb:fe:53:d2:19:a3:19:93:b0:e4:30:59:
9c:c9:eb:33:72:d5:67:0a:bb:bb:a2:c7:2a:35:1f:
01:28:66:27:5d:4f:aa:cc:50:e5:a8:a8:24:ee:57:
cb:c5:5e:55:6c:a3:4b:78:ef:cd:d5:1e:a5:1e:4f:
11:90:f2:51:92:3b:39:94:5d:a8:62:aa:49:b1:f1:
42:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:9C:53:9D:89:25:0F:D2:B6:3E:36:7F:69:FD:99:87:C7:E9:B7:9E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:120::/48
Signature Algorithm: sha256WithRSAEncryption
42:67:c8:30:e1:73:9e:d7:35:41:7e:10:e7:38:64:d0:8e:68:
04:20:1e:d6:e6:69:eb:60:f0:65:84:da:bf:87:6f:9a:61:b3:
00:72:00:0a:98:6d:50:74:1e:b2:96:c1:a2:40:d1:8b:84:01:
73:e3:f8:c0:5a:68:aa:48:ed:cf:0c:85:ed:a2:e1:d1:5a:2c:
ad:d8:6c:f7:11:02:c0:16:dc:35:50:c6:f2:ac:87:19:5e:c4:
e0:9c:2d:e6:46:ab:39:a5:1e:12:de:65:7d:6f:40:73:85:b2:
1b:0b:b9:6a:3b:bd:12:c3:0e:2e:9e:44:7b:3c:a2:1d:1d:2e:
73:52:ba:94:d7:85:1e:09:24:de:ce:d2:21:b9:8a:f2:1c:34:
2e:a6:f2:6f:d0:a1:db:e9:ad:3b:ec:ea:e2:24:ed:ce:82:b0:
46:de:97:04:dd:87:96:10:ab:9b:77:ae:ab:08:d8:d3:3f:ab:
5b:f8:62:44:73:a8:51:89:d7:14:12:60:79:d3:0d:02:57:88:
0f:75:56:dd:c9:f7:c2:f4:1e:69:b7:f7:7e:8b:53:c1:15:f7:
9f:ae:b0:d4:23:cf:37:22:53:0d:ce:24:07:93:fd:b9:f3:2f:
af:4e:a1:ba:f9:b7:de:ff:ef:b7:4a:c0:44:62:c4:12:08:f5:
26:8f:96:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org