Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3136323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: OvbX+KadZ8VPsCqyz67t02rmEa44Z+w35AziBCNFp9k=
Subject key identifier: E5:A9:05:69:6E:1D:99:C2:CE:CD:79:3C:1A:61:24:2C:21:FF:DF:73
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7085A5B94297018319E3540BC0E76469F66FE9C4
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:08 +0000
ROA not before: Mon 26 Sep 2022 07:57:08 +0000
ROA not after: Mon 25 Sep 2023 08:02:08 +0000
asID: 59282
IP address blocks: 2400:d680:162::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:85:a5:b9:42:97:01:83:19:e3:54:0b:c0:e7:64:69:f6:6f:e9:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:08 2022 GMT
Not After : Sep 25 08:02:08 2023 GMT
Subject: CN=E5A905696E1D99C2CECD793C1A61242C21FFDF73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:78:47:9b:9b:46:65:4b:33:b8:ec:8e:5f:f9:
6e:5e:2e:84:64:4c:ca:33:c9:0a:9a:f8:b8:8b:45:
fe:ed:f9:52:19:3e:6f:1d:a3:93:42:1a:0b:a1:cb:
97:5c:a5:bf:e4:9f:b4:83:b1:3f:61:73:a3:bc:5b:
bb:7e:ce:95:b1:59:4d:fd:d8:44:7d:26:83:68:1d:
a6:61:49:ac:d8:f8:98:6b:aa:9d:a6:ff:89:4e:63:
17:05:8c:83:12:f6:41:56:cf:b4:4f:2e:1b:85:c2:
ac:c1:e0:2a:f8:5a:64:4b:05:c7:09:be:c2:87:f7:
6b:3e:6c:6f:87:71:bf:c8:04:e0:fd:a6:96:dc:72:
6f:38:56:81:2e:a2:a9:d1:0b:5c:85:2e:0a:89:29:
37:70:ca:8e:d2:38:a5:d3:27:62:b0:2a:42:c6:22:
a7:af:a8:c4:ed:91:4a:6f:d4:9e:33:5a:79:8d:cb:
c5:a1:a9:45:f2:86:44:13:cb:4b:ef:f2:b3:83:a2:
6c:5e:02:8f:6b:5e:5a:c0:89:68:62:44:52:26:d9:
2a:36:34:6b:c8:d4:ff:a0:75:f1:29:f2:be:80:fd:
f8:2f:8d:7a:45:83:62:7f:99:d1:1b:31:39:1e:a1:
7b:70:b3:77:5a:9f:b9:79:80:a0:94:9d:c9:67:bd:
f9:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:A9:05:69:6E:1D:99:C2:CE:CD:79:3C:1A:61:24:2C:21:FF:DF:73
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:162::/48
Signature Algorithm: sha256WithRSAEncryption
d4:4a:b0:57:98:49:8b:fc:8d:dc:26:29:fc:f1:82:4f:ec:fa:
dd:05:07:29:43:f1:77:de:27:14:93:39:2d:19:e1:ff:89:b3:
af:aa:b7:1e:27:69:8c:67:3b:b4:16:33:b3:3f:59:69:87:75:
29:4d:10:a7:80:8d:e2:df:54:c4:c0:84:2d:af:f7:78:19:99:
91:61:e2:62:ba:d9:b5:8c:1d:e2:30:f1:cf:86:ab:82:f2:25:
55:60:74:b5:bf:77:e5:41:02:75:5e:72:98:b1:ec:28:ea:8b:
de:07:15:62:4a:b9:28:de:3b:18:49:0e:d4:16:47:5f:d7:cc:
71:ab:9a:79:96:63:21:25:23:40:2e:fa:ee:58:6b:b8:0a:d9:
38:15:e4:e6:fb:40:0e:72:91:85:7e:3c:17:76:37:af:c0:a9:
e3:55:d3:37:af:56:14:bd:b6:0b:96:3d:51:12:ff:8b:db:15:
c0:10:2c:b1:57:72:20:48:e5:06:4d:6c:65:a6:8c:d5:b5:6f:
79:08:8c:8a:4d:5a:1f:62:c2:21:17:87:94:8c:18:3b:3c:0a:
52:e0:bf:eb:7b:5c:73:a6:52:2e:2c:1f:f5:b9:3f:52:02:a6:
9f:db:8b:bb:94:0d:28:2e:f6:d4:f5:e2:55:42:69:18:4f:ec:
ba:b9:72:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org