Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3137663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: sJ5lxHOl/L6TnrCPPP/eunycM6E08nCGTZnvMH4dfYA=
Subject key identifier: C2:A3:FB:6D:65:3F:B2:CB:EF:48:B0:75:CA:7F:83:73:01:E2:E0:24
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5F985AF06FC3CEE02586C22215169BE4EACF48C1
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:57 +0000
ROA not before: Mon 26 Sep 2022 07:56:57 +0000
ROA not after: Mon 25 Sep 2023 08:01:57 +0000
asID: 59282
IP address blocks: 2400:d680:17f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:98:5a:f0:6f:c3:ce:e0:25:86:c2:22:15:16:9b:e4:ea:cf:48:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:57 2022 GMT
Not After : Sep 25 08:01:57 2023 GMT
Subject: CN=C2A3FB6D653FB2CBEF48B075CA7F837301E2E024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:48:7b:df:fd:f1:92:97:6b:5d:3c:8a:b5:54:
b5:e1:e3:a4:c8:71:15:2e:be:df:62:27:a6:61:3a:
39:b2:8e:63:9a:56:0b:a9:ec:8c:0f:99:cf:9f:b9:
4c:4c:39:db:4f:b8:61:cd:11:5d:c8:97:2f:ec:e3:
99:4f:fe:ba:75:06:f2:ce:8d:b1:38:c4:16:02:47:
62:46:44:7f:10:56:57:86:e0:53:2a:24:1c:3a:f0:
cf:b1:86:6e:46:10:8a:36:6d:e4:5f:0a:63:53:b3:
ed:3b:05:68:1c:bc:d4:d9:2d:49:1d:18:dc:9b:5c:
c3:36:92:83:5a:4b:f8:a6:57:d7:47:aa:60:0b:53:
24:e8:8b:38:69:3d:77:6f:45:5e:67:cd:b1:26:30:
ea:0f:5c:27:5e:ed:3f:a7:ca:26:f7:59:24:7f:da:
04:22:cf:0d:b3:26:6d:38:42:a1:83:14:95:dc:1c:
3c:6a:b6:e3:e1:1c:a3:fc:16:40:df:d5:a5:d9:5d:
db:ff:17:56:a3:1f:bb:35:9f:83:0c:b0:f9:af:e3:
d9:85:d4:af:f8:eb:02:7a:31:b5:96:d0:34:0f:46:
d0:69:52:7a:92:3a:4e:a3:23:fc:53:15:0a:13:7c:
76:6d:27:27:08:b6:a6:3b:c0:7d:ac:8d:70:4f:cd:
cb:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:A3:FB:6D:65:3F:B2:CB:EF:48:B0:75:CA:7F:83:73:01:E2:E0:24
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:17f::/48
Signature Algorithm: sha256WithRSAEncryption
3f:ed:73:ef:f2:c5:2e:54:16:9a:c3:a3:28:40:ff:10:c8:59:
cc:37:9b:da:d9:cd:84:42:a1:54:ea:2d:03:0e:ef:e9:5e:e6:
c5:be:69:84:ab:c2:b0:1b:37:21:63:3d:9c:bc:65:a7:14:1b:
6f:ef:aa:10:06:31:ce:b9:36:16:b3:e3:1a:f8:bf:0a:9b:a9:
cb:e1:dd:01:33:58:a4:67:22:8b:e3:cf:ba:1a:4c:94:96:9d:
b9:6f:ba:e3:0c:fa:77:77:22:29:45:6f:cb:f3:e3:c8:c9:fb:
a4:33:eb:40:b4:b7:ce:50:fe:4b:38:5d:30:88:9b:5e:0d:dd:
4b:b0:b4:83:ea:44:10:fc:dd:5a:b8:37:cc:b2:bc:db:be:df:
17:f2:04:8e:4a:98:94:8e:98:d8:d4:7a:67:b9:e5:76:5b:0a:
31:c4:25:8b:40:12:46:84:6c:7e:95:ba:3a:f1:99:72:6e:93:
9d:64:d1:1d:04:cc:87:ca:26:91:3d:29:59:e8:c0:69:0a:46:
83:67:c4:d4:2e:88:00:79:4e:ee:dc:c2:26:e2:a6:e1:ef:34:
7e:e6:b8:36:e3:8d:b4:cb:e1:a0:40:f5:ae:79:22:4a:4e:58:
5b:98:2a:e3:30:23:e8:26:f9:b9:01:ff:66:14:80:a6:47:88:
e9:1c:be:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org