Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3137633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: DbsJVMc7xFuVN1igZFWkFH9nolM4WrekqEmQkNoVHjs=
Subject key identifier: 6D:F5:EB:64:43:14:5E:57:99:FA:A0:ED:9B:D1:52:8C:FB:59:6F:54
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 593C0515EA76489D5F2F106BAE3D38477E227ACA
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:17 +0000
ROA not before: Mon 26 Sep 2022 07:57:17 +0000
ROA not after: Mon 25 Sep 2023 08:02:17 +0000
asID: 59282
IP address blocks: 2400:d680:17c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:3c:05:15:ea:76:48:9d:5f:2f:10:6b:ae:3d:38:47:7e:22:7a:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:17 2022 GMT
Not After : Sep 25 08:02:17 2023 GMT
Subject: CN=6DF5EB6443145E5799FAA0ED9BD1528CFB596F54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:31:3a:77:a1:3a:56:ec:bc:f7:b4:b9:65:59:
97:e5:4d:75:35:ef:ac:fe:20:68:6b:47:a8:0d:4b:
42:94:07:a8:06:15:e7:1f:51:9c:53:a8:a3:8e:fc:
ef:c7:20:61:97:87:9c:f9:1d:c5:26:0b:cb:f3:d3:
db:c2:eb:cc:c9:16:e2:4b:c0:29:f9:65:f4:05:7c:
a4:b3:7d:ae:9b:59:61:19:37:ed:36:be:38:27:89:
29:ed:21:4d:78:2d:05:35:d8:ba:54:55:b4:5d:2d:
2f:31:c3:b4:d6:d8:41:3f:94:ff:92:95:7e:f1:26:
04:ee:b9:80:54:0b:b5:2d:0b:00:55:4a:b0:a9:2f:
6a:49:11:b0:d9:0d:ff:1c:a3:e1:5d:94:d5:cf:c9:
71:07:66:7b:c9:1d:a6:28:d9:cb:c8:76:bb:b4:06:
02:07:fb:36:ad:bb:9e:86:c2:0f:61:00:ec:9d:53:
fd:48:82:3f:ea:3a:c1:57:57:a8:ab:6f:4b:13:39:
94:d0:14:f6:d9:1b:7f:fd:0b:e6:82:70:9e:84:4c:
12:c4:e4:dd:fc:87:b7:09:de:32:4f:02:40:97:95:
69:6d:0c:25:72:40:c9:03:85:ba:05:dd:e6:8f:f4:
90:c5:7c:b3:1f:50:88:81:e1:dd:ff:80:c2:a4:58:
e5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:F5:EB:64:43:14:5E:57:99:FA:A0:ED:9B:D1:52:8C:FB:59:6F:54
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:17c::/48
Signature Algorithm: sha256WithRSAEncryption
23:62:64:9d:eb:4f:d6:0c:3e:67:6b:74:f0:b1:b2:92:10:b0:
3c:ed:6d:1a:18:af:0a:de:c6:6d:b4:79:c7:89:5f:69:2e:29:
6c:ce:d5:2f:8d:bc:20:84:d4:f7:5a:46:b7:5f:39:1d:b8:8a:
94:2d:28:39:be:8a:a6:34:83:e4:fc:1a:fc:ab:5c:cb:43:f2:
98:d4:9a:95:43:d9:8c:e3:a7:4a:9a:8e:0e:32:33:a6:37:be:
b0:da:45:8c:97:dc:44:30:19:62:13:7e:ef:c0:ac:06:b0:91:
17:13:48:5c:7f:25:e5:ea:5a:64:0d:49:1d:67:46:9e:36:86:
08:4f:b7:5a:e3:c3:0d:60:72:c5:c2:5c:f9:06:9a:ee:e5:75:
30:19:c5:a0:9e:b3:7d:09:3b:e6:a1:4b:12:58:fc:74:b9:f5:
8a:9c:80:af:42:c5:ca:1c:8a:d0:5e:46:2b:84:f0:37:69:da:
ea:59:19:8e:80:23:5c:d1:0b:81:0d:66:b2:9e:6d:15:55:b8:
5c:3b:6a:cd:16:a7:6f:d1:d7:87:87:43:44:98:6a:c3:31:16:
a1:b3:23:0b:b8:9d:d3:e5:b7:27:43:dc:a0:76:ba:6b:64:88:
8d:8d:46:f7:e4:f9:73:f1:28:c2:7d:11:68:a4:e9:1d:cf:14:
13:70:07:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org