Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3135333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: nV0ZTTwmtzB/Z1MO/7ezmQXJys1O94H3OSYI+jXMh/o=
Subject key identifier: B0:86:1F:0F:19:FF:DD:E0:3D:44:60:BF:5C:F0:00:01:1E:C8:DA:54
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 411930C093098DA9364223C34FE6B3EC9C325F49
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:21 +0000
ROA not before: Mon 26 Sep 2022 07:56:21 +0000
ROA not after: Mon 25 Sep 2023 08:01:21 +0000
asID: 59282
IP address blocks: 2400:d680:153::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:19:30:c0:93:09:8d:a9:36:42:23:c3:4f:e6:b3:ec:9c:32:5f:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:21 2022 GMT
Not After : Sep 25 08:01:21 2023 GMT
Subject: CN=B0861F0F19FFDDE03D4460BF5CF000011EC8DA54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:cf:59:99:dd:91:74:58:cc:80:96:dc:2e:27:
ab:34:5a:0a:d9:60:95:bc:c1:ec:e7:87:fa:83:e6:
5f:55:3c:61:eb:c1:92:30:7d:e6:0f:fa:9b:0a:bd:
ca:5a:c5:1d:dd:35:cc:1f:fd:ae:e6:5a:3e:1f:a4:
d7:f7:e3:f7:19:a6:60:29:44:00:bd:ed:3d:a7:2e:
12:10:5c:a3:0d:bd:fc:f9:91:86:79:eb:15:43:e2:
3d:80:7b:99:99:2d:41:1c:ce:fe:9d:33:5b:df:41:
9f:22:66:63:51:9d:fe:50:3b:f9:6a:93:08:da:f0:
7c:ed:e4:14:cb:ba:e7:af:d1:d8:16:b1:c8:5c:45:
3d:08:59:f2:de:ae:9f:36:29:c7:ac:2c:43:33:b4:
59:c2:61:4f:3e:ae:fe:53:ca:4a:f3:30:19:9c:37:
3d:96:ba:96:36:6c:6f:a0:e7:9f:9f:dd:cd:d2:33:
94:d9:22:34:9c:2a:ac:ea:49:29:3b:28:64:54:29:
0a:98:d6:6b:a6:74:d6:f0:54:58:95:e8:c6:74:fc:
a1:84:e0:3f:57:4f:11:8b:eb:3a:db:fa:09:91:62:
03:51:d5:e3:57:c0:9e:55:41:43:c5:ba:62:66:ba:
58:32:f8:6e:2c:97:cb:f0:05:e4:98:7d:08:f2:24:
86:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:86:1F:0F:19:FF:DD:E0:3D:44:60:BF:5C:F0:00:01:1E:C8:DA:54
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:153::/48
Signature Algorithm: sha256WithRSAEncryption
6f:df:c4:b5:1c:ac:01:0d:73:4b:6f:f6:eb:06:1b:3f:44:d6:
96:e4:77:6c:00:fa:08:e3:fc:ab:04:f3:df:a5:4b:14:08:7f:
64:ae:7a:0e:b1:f1:2b:ea:3f:54:77:75:a7:05:a0:e5:0a:b0:
c8:99:94:69:78:c7:7c:3f:f1:1c:f3:68:b5:24:ed:80:e0:b8:
13:bb:48:70:8c:1c:36:e1:ca:70:bf:d6:a7:d5:72:72:16:18:
99:3f:89:de:05:49:07:0a:a6:68:71:b6:3b:05:f5:14:55:fd:
ec:6c:dc:ea:89:11:18:6e:8f:7d:e4:c0:90:76:71:bc:69:0e:
a6:11:65:c9:37:d6:91:be:d3:4e:d6:12:f4:32:0f:d1:e3:fa:
1f:0e:d7:e4:97:65:ae:d8:d1:fe:e8:2b:5e:89:e9:c0:dc:e7:
8f:c3:dc:64:c1:a2:bc:df:98:96:5f:a8:13:22:73:21:4d:a2:
fb:45:4c:67:57:47:93:ef:5f:49:3b:a4:30:13:97:fe:a4:aa:
95:f4:5a:66:04:69:6a:2d:cb:0c:d7:e3:29:eb:58:17:c1:7e:
5f:0d:c3:7d:fd:02:a8:c0:97:91:5c:14:73:56:81:ce:79:a3:
d6:60:8c:9c:6b:7b:62:3e:a9:49:8b:be:b8:5f:63:bd:98:76:
d4:51:ff:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org