Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3135663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Y9xTG/VFQIQRBVlHaYGLdAZeEQtr3+KRLC6cMYakcnc=
Subject key identifier: 6C:8C:A6:61:6B:07:1F:6E:02:06:67:1D:E9:D1:BD:61:18:2E:B8:39
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 37C105752B3DF6BA02FEDD874D08607F36D1B31B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:14 +0000
ROA not before: Mon 26 Sep 2022 07:57:14 +0000
ROA not after: Mon 25 Sep 2023 08:02:14 +0000
asID: 59282
IP address blocks: 2400:d680:15f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:c1:05:75:2b:3d:f6:ba:02:fe:dd:87:4d:08:60:7f:36:d1:b3:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:14 2022 GMT
Not After : Sep 25 08:02:14 2023 GMT
Subject: CN=6C8CA6616B071F6E0206671DE9D1BD61182EB839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:75:fc:00:bd:cf:1c:66:b4:c9:5f:75:c6:0c:
7c:e6:e6:72:7a:76:c5:9e:52:93:cc:98:98:8b:0d:
57:0b:31:98:f2:c4:ce:23:c7:88:19:cd:89:1b:4d:
24:76:3a:34:08:80:0f:17:ca:66:e9:96:8d:7b:50:
41:9c:95:21:98:dd:aa:db:c8:56:1a:59:f6:c1:a7:
f5:12:83:fd:f5:95:22:5d:70:6e:85:75:94:18:71:
2e:9a:33:cd:56:9d:8e:c6:bd:50:bc:82:59:d3:3f:
f4:23:c7:94:02:d9:8b:20:fd:84:26:40:ad:22:c6:
f7:1a:43:fc:a6:0a:2f:9e:f6:2d:16:26:f2:26:57:
ee:31:30:27:40:9a:fd:87:c2:a4:e0:61:e6:f3:fb:
fa:fe:2a:83:50:c9:1b:a3:1c:42:74:6f:f9:82:70:
d9:ee:47:72:55:43:57:a3:e0:46:60:61:a8:17:8b:
cc:b3:b8:7e:d5:ef:06:28:af:9a:1e:fc:13:d9:30:
23:3b:4f:c3:00:00:e6:84:ad:06:27:6c:a0:14:dc:
b6:19:d7:60:52:6e:06:e1:22:aa:6c:4f:80:69:59:
25:a6:3d:48:b0:b5:f0:da:e6:d4:a0:53:ee:a3:ad:
24:f6:2d:d6:64:28:02:95:ee:40:c7:d9:19:f3:07:
b1:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:8C:A6:61:6B:07:1F:6E:02:06:67:1D:E9:D1:BD:61:18:2E:B8:39
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:15f::/48
Signature Algorithm: sha256WithRSAEncryption
94:59:2b:6e:15:cd:93:d6:c0:29:4a:08:67:11:a6:85:a2:fb:
7b:2b:1e:6e:d4:de:d6:1e:ca:f1:7e:24:16:4c:79:60:02:a8:
53:5d:d6:39:a3:f3:57:07:28:21:92:2f:99:a7:cd:34:8b:15:
b3:28:31:31:4c:1c:d1:b2:66:77:29:df:fa:fe:f4:af:b5:ca:
e5:5c:2b:cd:d1:43:53:01:1b:b4:98:d9:a3:e7:9a:27:77:9c:
50:2a:ad:01:91:dc:e3:d8:db:08:66:82:db:46:3f:0f:95:b3:
c7:82:31:43:9b:81:cc:78:54:7b:e9:0a:ba:cb:ca:56:1a:06:
1e:68:5a:2e:ba:a8:91:68:2c:41:3f:a6:df:7f:be:2b:ea:af:
2a:ff:42:26:ef:35:55:33:1f:e9:b3:6e:80:01:c7:63:dc:50:
74:8c:37:e3:88:d5:e3:20:0a:e4:66:a1:83:d1:0c:94:fe:4a:
6f:b8:86:24:ce:73:27:70:58:e2:d0:e0:af:f5:2e:24:b6:1c:
a7:4b:4e:f0:b1:1e:42:1d:65:3e:1c:ec:f9:db:19:f7:dc:5e:
ac:43:38:a8:44:c6:96:6e:a5:ff:39:8d:ef:1f:8d:e4:19:26:
83:6f:23:1e:55:a9:37:a7:74:22:d8:6d:c6:48:fe:d0:95:80:
4d:f4:71:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org