Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3132333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: PHmMgZ2A7Pp3yqDIJ4VBodt9O/fKtBeCh4hlU9wZay0=
Subject key identifier: 46:3E:95:59:F5:68:0B:2A:C2:9D:86:05:A0:A5:CF:F1:48:71:99:D3
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 648317560384675ABB9C70CFC642599F7478A561
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:13 +0000
ROA not before: Mon 26 Sep 2022 07:57:13 +0000
ROA not after: Mon 25 Sep 2023 08:02:13 +0000
asID: 59282
IP address blocks: 2400:d680:123::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:83:17:56:03:84:67:5a:bb:9c:70:cf:c6:42:59:9f:74:78:a5:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:13 2022 GMT
Not After : Sep 25 08:02:13 2023 GMT
Subject: CN=463E9559F5680B2AC29D8605A0A5CFF1487199D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:57:37:d7:e8:22:d4:c8:e3:01:32:54:6b:9e:
92:09:f4:49:93:52:2d:4e:5e:6d:a4:e0:76:ec:f0:
8b:c2:05:e0:39:49:2f:5e:ba:88:b6:58:df:88:0e:
e3:a4:ba:66:6f:50:88:62:17:e9:69:e0:4c:51:48:
af:a5:b2:bb:41:42:01:f0:d2:af:68:6b:8c:ab:01:
39:68:c9:fb:37:fa:ff:53:f8:8a:cd:25:70:b5:ae:
fe:75:f6:7a:bd:00:d9:72:c6:08:de:a9:d5:36:5d:
8f:35:8c:5b:03:9a:d5:76:99:33:cb:0b:e8:fd:0f:
e4:f8:df:5d:ed:19:f2:b2:4f:1c:3c:0d:f0:20:66:
f2:11:59:fb:d6:63:2f:a7:11:15:c5:4d:f2:0b:f6:
d7:aa:e6:7f:9a:0a:b0:e2:b1:73:a5:38:d8:0a:4e:
06:4a:bd:20:dd:5e:6d:05:2e:2c:60:c0:50:13:65:
6a:96:7b:a9:70:da:13:21:04:6a:c8:40:c4:84:16:
d1:a6:10:77:c4:8a:ec:da:95:69:55:86:fe:e4:24:
05:15:ad:68:2a:87:04:ad:9c:05:33:62:42:df:3b:
aa:c1:9c:9e:ef:2c:51:02:ac:65:eb:60:be:0f:62:
3c:7d:e7:21:46:ab:57:35:7f:98:0b:5b:c0:64:86:
64:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:3E:95:59:F5:68:0B:2A:C2:9D:86:05:A0:A5:CF:F1:48:71:99:D3
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:123::/48
Signature Algorithm: sha256WithRSAEncryption
69:5b:a0:2d:85:f6:e2:8c:e5:46:03:a1:cd:20:4c:c8:15:60:
a0:1f:6b:bd:a4:07:09:eb:1c:f9:00:5c:b3:9f:eb:f9:3b:57:
0f:f5:5a:15:b5:2d:7f:9d:3f:70:e7:40:9f:6f:ac:4f:ea:dc:
a9:b2:c1:d6:3a:84:dd:be:a1:63:87:27:28:5b:3d:b3:dd:d2:
43:9d:f1:6d:b7:e5:a9:cb:53:e1:3d:58:c7:44:10:e3:76:ba:
67:25:52:0f:7e:94:f2:4d:29:f7:0d:28:2b:22:f3:27:7a:95:
03:ca:6e:37:c8:70:02:2b:f5:d1:94:07:90:61:6b:33:2f:e0:
d6:6a:82:ff:b8:03:9d:aa:64:fe:1a:27:b7:7e:d0:b6:5a:f3:
82:0d:9e:a9:4e:97:2e:0e:6b:b6:2f:95:3f:46:66:b4:eb:9e:
05:fc:f5:0c:85:f4:59:17:b9:d0:12:c9:55:fe:3c:a6:62:8a:
ab:b6:5e:e3:88:02:88:50:cc:6f:fa:54:c6:0c:53:75:e3:ba:
0a:05:d3:f8:a3:a6:f8:4a:78:70:5f:94:53:3e:00:47:dc:d5:
16:e8:49:3f:e1:6e:1e:60:ef:3f:bc:be:3b:21:85:3e:9b:b5:
9f:e7:8a:82:3e:91:bd:f8:64:39:f4:8f:79:cb:47:ed:36:ee:
e8:22:cf:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org