Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3132643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: LIq8tdTOAYV6TpzlCvET7vi5yLTLJaX90MAFBRJF4q0=
Subject key identifier: 61:9C:BE:02:30:F5:56:EB:69:A3:80:B1:A7:95:61:6C:7C:5C:A8:F3
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 374601D687DA20BCC9BC5BAE85505496197E89D9
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:22 +0000
ROA not before: Mon 26 Sep 2022 07:57:22 +0000
ROA not after: Mon 25 Sep 2023 08:02:22 +0000
asID: 59282
IP address blocks: 2400:d680:12d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:46:01:d6:87:da:20:bc:c9:bc:5b:ae:85:50:54:96:19:7e:89:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:22 2022 GMT
Not After : Sep 25 08:02:22 2023 GMT
Subject: CN=619CBE0230F556EB69A380B1A795616C7C5CA8F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:15:c7:23:fd:57:1b:90:0b:1e:8e:7c:7d:78:
cd:09:a0:e8:38:3a:70:2d:89:6e:9e:a4:de:b1:b9:
03:ba:52:31:3f:29:2f:25:9d:2a:5a:db:87:36:ba:
30:18:ec:8f:b9:97:ed:2b:6f:6d:4b:1a:70:ab:c9:
1a:0f:07:5d:36:6a:7b:c8:ae:92:83:a2:7d:fc:3d:
0c:6d:3e:38:9c:cd:98:a2:33:62:8e:52:cb:6e:b9:
ef:cb:a7:37:a6:55:92:fd:86:b6:b3:60:bb:84:00:
dc:e3:62:ac:70:5a:87:bc:35:fc:0b:39:af:4d:1b:
1d:dc:61:fd:ee:25:1b:6d:d6:fc:51:06:74:c8:f6:
b3:ed:87:f6:b2:cc:22:ca:4e:35:a1:56:fc:14:82:
27:bf:5f:ab:4a:7f:7e:c4:7e:cc:59:66:7f:04:f8:
74:8b:f1:4d:f8:8b:06:07:08:1f:37:77:40:55:9d:
7f:9d:8c:fe:2e:c1:7b:b9:b1:6e:e9:62:b7:b8:08:
df:3c:34:0b:14:c3:1b:75:ee:93:0e:c8:0b:81:24:
70:42:21:67:23:0f:d2:26:e3:7e:7b:f0:47:8d:97:
1a:a5:1b:0d:a5:a9:de:b4:55:5f:3e:49:3d:09:6b:
b6:d9:83:03:44:47:f7:73:33:b7:02:87:6f:5f:95:
6e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:9C:BE:02:30:F5:56:EB:69:A3:80:B1:A7:95:61:6C:7C:5C:A8:F3
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:12d::/48
Signature Algorithm: sha256WithRSAEncryption
6c:f6:f1:bb:de:9e:a5:8e:ff:a8:51:6f:ba:3d:4c:90:f5:5b:
e9:be:48:b4:51:6d:2b:22:20:42:e2:72:f7:a9:ba:49:9b:9d:
9e:9f:b5:e2:70:9d:f6:a0:86:90:15:87:9f:02:5a:2a:4a:da:
53:f6:47:21:a0:c7:61:27:33:6a:97:85:5a:ab:32:5d:8f:30:
1d:12:c9:98:34:fd:92:03:02:07:1c:f0:b0:38:36:62:fe:0e:
ac:ac:df:d4:8b:a7:d3:0e:00:05:e1:df:d3:8a:de:f8:68:d4:
0f:ec:d2:6f:21:1b:2f:32:37:c5:8c:99:d8:a0:e1:7c:30:be:
cf:6b:7f:45:11:0a:9d:43:c9:27:b7:19:13:ad:f0:68:d0:eb:
e7:a0:20:a7:8f:7d:46:91:26:29:8b:31:85:5d:8f:65:27:4b:
25:16:64:ba:5c:76:55:dd:06:3c:bd:ec:fb:88:20:23:21:2a:
77:1d:51:d7:d7:ef:0a:ba:ed:a6:70:14:0d:75:77:9b:12:95:
9f:69:1f:74:8b:e4:94:4c:5a:08:2e:11:7c:f0:1d:10:3d:6c:
29:d8:af:f4:1f:a2:bc:ec:85:58:ad:6a:76:04:0d:be:36:b8:
2c:47:ad:5d:7d:76:e1:58:94:37:7c:cc:41:b5:90:06:80:94:
72:ea:5b:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org