Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3137343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: dW8SXWujYK1pg/HD7fBUevDMapYyblIQ9Q3scoFMs44=
Subject key identifier: AA:E4:38:E4:43:B0:CC:34:A9:F4:4D:65:E4:62:BD:E0:9B:9A:EE:E5
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3624F4884368AC16709F59E218A37566BFB6F410
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:13 +0000
ROA not before: Mon 26 Sep 2022 07:57:13 +0000
ROA not after: Mon 25 Sep 2023 08:02:13 +0000
asID: 59282
IP address blocks: 2400:d680:174::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:24:f4:88:43:68:ac:16:70:9f:59:e2:18:a3:75:66:bf:b6:f4:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:13 2022 GMT
Not After : Sep 25 08:02:13 2023 GMT
Subject: CN=AAE438E443B0CC34A9F44D65E462BDE09B9AEEE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8a:9a:0c:b6:a2:a8:74:1b:48:0b:2b:02:6b:
63:6c:2f:74:a4:30:0d:4e:82:5d:c6:a2:c7:80:30:
70:84:dc:a0:aa:b6:53:05:28:0b:cc:71:8d:05:cb:
96:e9:2f:87:34:c7:61:0b:d7:e7:c5:d9:42:a3:a9:
e4:d6:42:fb:d7:c5:cc:59:63:0f:0c:e1:c7:cd:bb:
21:97:5a:76:53:b7:48:ea:aa:7f:f4:99:1c:27:85:
8c:b1:26:3a:e4:f0:fd:06:86:45:14:9a:f9:4a:e6:
33:f6:c7:6c:c6:22:d5:c1:ec:39:49:3b:69:17:04:
d9:20:27:3f:46:4b:b9:53:e4:e1:91:6e:55:bf:e4:
0e:46:67:29:c9:89:d8:83:0f:80:fa:67:12:2c:d8:
3a:dc:86:ac:0e:4b:7a:73:be:dd:ba:0d:e1:87:0b:
26:2a:ce:16:90:02:2f:9d:9e:f7:be:c9:af:f5:e6:
cc:22:5b:f3:54:be:49:dd:27:93:bb:d4:7e:6f:31:
3a:c6:bc:3e:e7:89:0c:95:d2:b8:0e:cc:54:1a:fd:
23:2a:2f:33:8b:f9:ee:3f:5d:70:b6:d3:a9:83:2a:
ec:bb:66:b3:73:08:30:07:f2:f5:b9:7f:42:fb:b3:
5f:05:ca:a1:69:24:bc:45:06:b4:d2:df:31:3a:3f:
cc:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E4:38:E4:43:B0:CC:34:A9:F4:4D:65:E4:62:BD:E0:9B:9A:EE:E5
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:174::/48
Signature Algorithm: sha256WithRSAEncryption
52:48:b0:6d:15:2c:26:ca:38:ad:ba:dc:ce:30:32:2a:aa:b0:
56:b6:c6:79:8b:4b:17:b3:fe:af:b7:bf:19:2b:94:f5:e3:92:
27:92:27:64:6a:cd:b0:10:73:a4:74:a9:47:11:1d:58:41:0b:
6c:a1:39:0d:11:6c:73:22:ee:cb:d2:4c:70:be:73:4f:18:6c:
43:bb:67:91:9d:7b:0c:96:71:86:3f:af:29:8e:28:20:ff:56:
0a:ad:2b:76:d6:39:56:e7:89:c8:45:25:4c:8e:0b:26:aa:22:
26:6c:bc:ae:02:21:e4:90:90:0b:8a:f5:a2:dc:a2:43:49:01:
f8:23:57:da:04:34:f9:dd:0e:a0:ed:9c:ea:17:b9:e4:1b:e3:
12:27:fe:3a:1c:16:00:67:bc:39:c3:84:b8:5a:83:7d:61:ca:
3b:5c:b5:72:21:37:16:39:06:7a:b1:ae:2e:3b:78:06:04:fa:
a2:4a:6c:90:8b:6c:ba:b8:74:2c:8d:58:04:b4:11:7f:f2:78:
fb:65:66:97:12:d7:83:0d:eb:6d:11:02:5e:33:a3:6f:6a:c4:
25:3e:06:22:a8:c2:38:bc:8f:89:10:a5:2f:90:ad:fa:c2:35:
5a:c3:ea:b2:89:40:af:d2:92:5f:15:e9:d3:f9:c3:14:11:d8:
22:64:39:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org