Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3137393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 8uSqu7clVcEJz/3KqBJDrzM+2WdjUetYdbJQ6ujCngU=
Subject key identifier: E1:74:20:BC:4F:D9:AC:AC:10:E1:89:9D:9A:0A:BB:26:C3:58:29:A9
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7CFE3D4851D1352E425874B53458A4C1B1040D63
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:37 +0000
ROA not before: Mon 26 Sep 2022 07:56:37 +0000
ROA not after: Mon 25 Sep 2023 08:01:37 +0000
asID: 59282
IP address blocks: 2400:d680:179::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:fe:3d:48:51:d1:35:2e:42:58:74:b5:34:58:a4:c1:b1:04:0d:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:37 2022 GMT
Not After : Sep 25 08:01:37 2023 GMT
Subject: CN=E17420BC4FD9ACAC10E1899D9A0ABB26C35829A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ee:83:95:32:ea:62:31:91:97:42:69:50:d8:
86:5b:50:c3:26:c5:72:d1:24:17:99:7d:37:f6:d9:
51:7d:59:fa:3d:00:ad:be:01:73:eb:f7:77:07:54:
2a:b4:d8:83:85:46:d4:d4:5a:75:19:b4:44:6e:c4:
1c:15:4f:e2:c3:89:ab:fd:be:41:c5:43:51:25:55:
be:11:f8:60:f0:35:d6:cf:da:e9:e7:db:f8:44:07:
45:8e:b3:79:a7:49:f3:cc:23:d6:5c:33:51:c0:99:
a6:c9:0a:c8:69:7d:38:bd:7b:75:64:ce:72:17:16:
7f:b5:3b:ee:19:cd:27:b7:19:e1:2f:61:33:20:81:
12:d5:37:14:25:4b:3b:fc:1e:d9:cb:26:8a:d4:75:
38:41:e8:df:66:09:f1:26:a6:78:0f:5c:7a:95:5d:
0b:6a:d9:8e:3b:d4:ba:97:23:f1:53:10:42:bd:2b:
25:d5:5c:8f:4c:58:d9:42:cc:58:85:e4:85:3e:90:
d2:3e:46:db:9c:4c:e3:13:5a:74:98:df:fb:b6:a9:
fa:f1:81:f4:74:71:81:a9:55:09:7a:62:32:41:fc:
6f:e2:22:38:ca:34:c8:a0:10:23:d6:84:4c:8f:e0:
f5:a2:14:27:f7:00:5d:46:dc:7a:dc:29:99:37:b4:
61:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:74:20:BC:4F:D9:AC:AC:10:E1:89:9D:9A:0A:BB:26:C3:58:29:A9
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:179::/48
Signature Algorithm: sha256WithRSAEncryption
ac:5f:6b:c9:2f:50:b8:15:18:35:a9:b7:5c:c0:9b:1e:37:eb:
41:96:c7:b7:5e:40:e6:5c:a7:d0:ca:75:b0:85:94:95:b3:7f:
e3:73:29:a8:5e:3c:df:18:90:12:f0:16:4e:d8:b6:3d:51:90:
14:66:7f:cd:52:60:14:35:2b:3c:92:fa:e9:9b:fd:84:95:c3:
a0:9b:8c:d0:d7:36:b9:ba:3d:69:2d:1c:9b:f7:7e:dc:e6:6f:
54:e0:ac:3f:a7:a5:dd:d3:f0:1c:f6:33:a9:03:1c:48:b8:b0:
67:c4:c1:43:8d:79:29:53:50:83:f0:17:4a:03:33:9f:a0:5b:
4e:67:94:99:ba:78:36:28:02:a1:03:90:45:66:33:71:b0:1f:
e9:76:83:e9:80:ed:cf:82:7d:96:f0:ea:84:c1:d3:61:24:d2:
b2:27:50:5b:99:13:62:6d:fa:ac:55:ba:5b:a1:9b:17:c2:da:
be:25:76:8b:d3:5d:7a:da:14:c9:46:86:a7:41:63:08:76:fb:
82:16:ff:6e:b5:cd:e2:5f:d6:c6:6c:1e:fa:d5:ad:3f:41:4a:
ad:d0:70:a4:b5:e6:e9:bc:6e:b1:da:83:11:cb:f1:f4:66:8c:
3b:5b:12:cb:3e:f5:e6:75:fc:7f:40:99:e3:d6:a3:51:37:d6:
85:ec:cc:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org