Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3132363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: bzwbAPsrhytYOV3rEuUR/vMNEQqoHg/J91rdRg8B89k=
Subject key identifier: 50:F7:1F:85:C6:3C:F9:72:B6:29:FF:7E:53:BE:93:B7:91:17:CE:FB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6B017647C4FA573D69539D38D37DAEABAA34136A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:05 +0000
ROA not before: Mon 26 Sep 2022 07:57:05 +0000
ROA not after: Mon 25 Sep 2023 08:02:05 +0000
asID: 59282
IP address blocks: 2400:d680:126::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:01:76:47:c4:fa:57:3d:69:53:9d:38:d3:7d:ae:ab:aa:34:13:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:05 2022 GMT
Not After : Sep 25 08:02:05 2023 GMT
Subject: CN=50F71F85C63CF972B629FF7E53BE93B79117CEFB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:95:aa:9d:7a:4f:3e:3f:cb:0b:38:6c:62:77:
be:61:b6:b5:72:9e:cd:70:30:0f:0e:de:30:6e:14:
de:f1:d8:9e:07:7c:5b:47:41:4e:43:e0:c5:a0:a6:
7f:a1:ce:8c:f9:60:ac:3d:fb:d3:5a:63:36:15:68:
77:ba:d6:d6:54:22:35:c0:7e:b8:12:ce:75:aa:87:
5d:aa:47:a2:2a:9f:0d:3f:e6:15:5e:8f:23:fd:a1:
d5:e8:33:9c:b7:08:15:0f:67:1d:43:33:9d:7f:ac:
20:b5:2d:6d:b5:f3:5f:1d:6a:09:b0:64:71:b1:6b:
79:0e:fa:84:43:a4:3e:c1:5d:84:70:75:b7:90:83:
40:0e:94:03:8f:8d:28:39:6a:1f:e6:47:13:03:cc:
09:bb:cb:b3:7e:63:a0:49:84:9a:69:83:85:d2:ff:
b9:97:e2:ee:23:7b:d7:06:94:f8:a0:4d:89:bc:68:
fa:1b:44:7b:fc:61:16:c6:f8:3e:97:81:30:a9:8a:
a2:6b:7d:00:02:7a:40:e3:9e:ab:3c:4c:44:15:c9:
c9:3f:26:3d:f4:4c:8b:f6:47:5c:51:ca:07:7c:fb:
4d:c5:59:32:53:1a:b7:69:72:37:e9:79:8a:b2:68:
00:d2:70:90:e8:1e:19:4b:f7:af:51:95:af:66:43:
18:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F7:1F:85:C6:3C:F9:72:B6:29:FF:7E:53:BE:93:B7:91:17:CE:FB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:126::/48
Signature Algorithm: sha256WithRSAEncryption
93:d9:a2:00:f0:d5:0d:9e:01:2e:63:fc:bb:bd:53:95:a4:7e:
d7:af:52:87:61:28:10:64:92:b1:d5:c7:1f:62:46:ff:e0:24:
76:2f:10:e5:0b:72:b2:1e:ee:0d:d4:f9:2a:f6:3a:bd:fa:ce:
00:f4:ab:ed:da:11:3b:a9:7b:fb:ef:5e:50:b0:a6:6c:09:45:
1d:2a:4c:65:f9:e5:ed:b5:55:da:63:83:62:43:29:6a:32:13:
52:40:be:c0:5b:18:12:ec:0a:52:5c:7b:6f:79:6c:81:0b:78:
c7:d8:06:51:88:c3:1b:de:c0:04:d4:a0:58:4e:36:bf:32:d7:
60:df:1a:fc:92:57:18:72:5e:c0:fd:84:a2:a3:8e:0e:c8:19:
04:32:f5:a0:f2:27:02:23:18:4a:d1:ce:4d:17:da:fe:0c:41:
3e:53:6f:14:67:fd:62:63:24:cc:c9:99:e9:ca:f8:65:a6:d0:
23:a2:9f:8b:8c:36:24:0b:6b:76:67:50:8e:86:4f:ac:0e:0d:
01:42:4d:a8:61:19:51:98:25:2c:10:9b:01:39:81:c0:f8:90:
be:52:85:3d:c5:c8:e4:c3:cd:e0:27:ed:86:00:7f:45:d9:ed:
ab:2f:2d:02:85:ad:d2:47:e4:92:a2:34:e0:4d:4d:9f:a2:02:
ab:6b:fd:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org