Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3139303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: qOo2W4UC3civK4b5bCt+NcxnVT/Jue5To1xaCn7RzBI=
Subject key identifier: B5:48:68:46:DC:B8:A9:E5:93:F3:35:2D:55:2F:53:AB:A5:D3:D8:3E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2AA66D0173CA36EF089B7089D19C91CE257EFED9
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:05 +0000
ROA not before: Mon 26 Sep 2022 07:57:05 +0000
ROA not after: Mon 25 Sep 2023 08:02:05 +0000
asID: 59282
IP address blocks: 2400:d680:190::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:a6:6d:01:73:ca:36:ef:08:9b:70:89:d1:9c:91:ce:25:7e:fe:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:05 2022 GMT
Not After : Sep 25 08:02:05 2023 GMT
Subject: CN=B5486846DCB8A9E593F3352D552F53ABA5D3D83E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:af:d8:f7:90:3f:ec:d8:1e:5e:04:ea:49:2c:
1c:a9:f5:25:6c:32:ab:8c:7d:05:8d:67:fb:be:d0:
68:62:17:21:40:92:32:77:6d:2c:01:5d:03:83:f6:
a1:3b:29:bc:e1:98:da:d6:de:c8:95:ba:7f:38:eb:
bf:26:10:04:23:4e:d5:99:5b:0e:88:f1:7b:80:9d:
67:3a:2c:4a:91:f4:4c:43:d2:cf:26:f5:7e:36:02:
78:69:8b:a9:c0:45:f4:d5:0e:c7:9e:ba:44:9c:05:
44:d3:86:dc:fe:89:47:1f:03:25:c3:c1:68:1f:95:
56:60:8b:58:f8:85:a7:93:b6:fd:be:00:e7:89:e0:
ca:6c:d5:dc:6a:5a:98:06:16:db:a1:81:4f:8e:9f:
d8:6d:38:5f:79:5e:a3:ec:fb:5f:66:18:1c:19:f1:
8a:48:c4:4b:aa:27:97:c1:88:11:6a:a9:bd:ba:d6:
d6:c3:13:2e:04:94:fa:97:8f:b6:9d:55:47:d6:3d:
7e:97:cd:39:76:9a:57:18:2e:13:25:c5:54:95:ee:
1b:c4:26:11:24:a8:23:40:8d:91:7d:2f:83:f0:1a:
01:87:d5:90:22:27:28:a2:9e:ae:66:bb:64:8c:dd:
7d:d2:66:57:be:ad:17:af:a5:3d:69:50:00:4f:74:
d6:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:48:68:46:DC:B8:A9:E5:93:F3:35:2D:55:2F:53:AB:A5:D3:D8:3E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:190::/48
Signature Algorithm: sha256WithRSAEncryption
c6:d1:28:bd:d0:24:c0:ef:bf:67:41:b8:72:d9:17:30:8c:90:
9c:3e:7f:44:da:79:ef:da:2b:03:5a:1d:ff:40:35:a2:b6:a9:
e6:4f:a5:ad:47:72:ed:7c:cc:e2:46:02:8c:83:29:69:c0:c6:
35:55:c7:5c:60:de:2e:e6:e5:47:fc:61:41:18:54:b2:91:6d:
d8:b5:2e:b1:8f:c5:07:76:d8:66:2a:ad:ea:72:cd:69:31:6b:
5c:f7:c2:c1:58:22:4d:59:2a:60:07:4e:e0:70:cd:fc:0a:7a:
78:de:d1:75:8b:e5:d4:25:f3:78:b9:8a:3c:97:5b:5b:b3:e0:
0a:cd:9b:73:6c:c1:be:a0:c6:48:7c:f3:df:5d:c3:88:cd:5f:
ac:50:8b:f5:09:6f:1f:56:ab:5e:17:18:28:8b:53:9e:1e:95:
75:79:55:cc:9c:46:bd:fc:62:d9:f1:3a:b3:7c:e3:a6:fa:e9:
5c:56:9b:bc:76:27:67:69:0b:7d:d1:a0:bb:87:e5:76:37:21:
ba:8e:6c:6f:40:4a:29:9b:3d:f8:3e:ff:43:6e:cf:3e:08:83:
f5:e5:80:d0:93:af:26:fe:8c:c4:b6:27:95:4e:1b:ab:d1:8d:
8e:e4:55:bf:c2:5b:50:20:95:87:ee:48:d6:9f:0f:a4:ca:65:
c1:46:fc:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org