Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3134353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3134353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Cuf3woAGvR3ynbpfs3bNHihA6lPm0ZP1HMwEI+t+3hU=
Subject key identifier: 13:EF:A3:5C:AF:02:61:58:D8:BE:74:00:90:6B:20:AC:A7:A2:A4:36
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 633AD4E744F44133BCCCA2244AA91B2DCD8D1AF9
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3134353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:22 +0000
ROA not before: Mon 26 Sep 2022 07:57:22 +0000
ROA not after: Mon 25 Sep 2023 08:02:22 +0000
asID: 59282
IP address blocks: 2400:d680:145::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:3a:d4:e7:44:f4:41:33:bc:cc:a2:24:4a:a9:1b:2d:cd:8d:1a:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:22 2022 GMT
Not After : Sep 25 08:02:22 2023 GMT
Subject: CN=13EFA35CAF026158D8BE7400906B20ACA7A2A436
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2e:ca:a4:c0:ac:1c:79:98:07:92:d5:27:65:
2f:af:cb:21:36:01:25:a9:dc:bf:e6:20:81:8f:07:
e7:3b:3c:59:9e:1f:d0:fb:b8:9c:be:de:c2:15:9e:
27:a9:36:61:f4:f8:55:b1:af:26:40:e5:55:27:e0:
e0:00:4a:02:49:49:f7:10:5d:67:9f:73:7d:55:62:
0d:5c:04:ba:55:f7:b3:76:f2:95:ad:5b:a1:7f:dc:
ff:38:7d:a3:f3:98:6e:57:5c:07:40:0c:61:c9:4c:
3a:59:0b:d6:c4:73:8d:f7:d2:ae:9c:d0:a9:bd:a9:
0a:32:2c:24:3b:c8:39:0e:68:8d:82:f8:44:83:2d:
b2:76:3f:79:1a:88:81:08:6c:88:13:09:41:2e:6e:
56:42:f3:c2:2a:21:9f:d2:79:e2:32:30:8b:dd:5b:
db:22:fa:20:d1:7d:1e:93:03:6d:db:30:88:de:0a:
a1:2f:48:f1:9f:6a:40:a9:8e:7c:02:79:75:f9:53:
10:b5:95:2c:7b:de:9b:bf:e9:91:4e:fb:89:d2:9b:
be:19:8f:4e:aa:dc:e7:e1:5c:ed:06:3f:2f:e8:a6:
a8:9d:81:d0:7a:2c:f6:c5:d4:1c:10:dc:7c:8b:82:
e7:52:f0:11:68:e9:ed:e8:67:86:fd:d1:c0:d5:60:
72:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:EF:A3:5C:AF:02:61:58:D8:BE:74:00:90:6B:20:AC:A7:A2:A4:36
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3134353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:145::/48
Signature Algorithm: sha256WithRSAEncryption
57:4d:fc:bf:70:0f:59:12:6a:a4:94:a6:67:a8:e6:b3:77:42:
67:d0:56:45:e7:16:4c:94:93:b9:0d:98:e8:b2:4b:6f:2f:f1:
73:2e:f5:9e:7d:8d:60:15:a8:dd:e3:ee:07:a2:c3:2d:15:5f:
57:a7:17:2f:b2:43:ae:c0:15:72:35:db:e5:1b:51:7d:e0:96:
c6:c4:7b:96:f9:80:3a:2c:77:cc:3c:a2:94:0f:d9:cf:ab:0d:
bb:a7:77:10:fb:ad:b1:5e:46:29:35:6a:9f:1c:1a:3e:9e:56:
50:8a:c0:8d:3e:fc:37:93:f0:22:a5:15:54:fa:22:63:1e:35:
60:35:b4:55:02:01:56:f2:dd:63:f6:f7:2d:33:b9:2e:f5:a3:
6a:26:11:4a:ab:e7:2d:fd:46:33:06:3b:d7:92:6f:75:ee:e9:
e2:51:8b:12:69:50:fa:d9:41:0d:42:6e:62:52:01:89:23:44:
42:57:20:2e:e0:c4:42:ca:58:96:97:f9:58:fa:04:83:2e:f7:
6f:a7:31:0c:be:d8:36:96:8a:cb:9a:45:4b:3c:3a:ba:ab:b6:
00:03:a5:a1:72:cc:17:c3:ee:5e:5c:b5:64:47:fe:23:db:18:
1c:86:b0:97:cf:01:1e:7a:01:3c:b6:3e:77:82:5a:bc:77:c1:
42:00:52:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org