Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3139333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: HJJ0RJawRPPqqJVdYNhE9GaKkNLrgmReDvHi8qz/P7s=
Subject key identifier: 71:21:C8:E0:4B:13:1E:87:88:5C:BD:4F:1A:E8:76:BD:AA:48:1A:DB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4FD9B16298401AAC0BFF343E461825C465721FB4
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:03 +0000
ROA not before: Mon 26 Sep 2022 07:57:03 +0000
ROA not after: Mon 25 Sep 2023 08:02:03 +0000
asID: 59282
IP address blocks: 2400:d680:193::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:d9:b1:62:98:40:1a:ac:0b:ff:34:3e:46:18:25:c4:65:72:1f:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:03 2022 GMT
Not After : Sep 25 08:02:03 2023 GMT
Subject: CN=7121C8E04B131E87885CBD4F1AE876BDAA481ADB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ac:80:63:b5:65:39:9f:a5:38:c0:5d:9c:2f:
f7:7e:9d:38:69:7e:80:3b:c7:ac:11:9d:4d:a0:41:
fd:e2:2e:0e:76:c4:50:ad:e1:1c:e7:2c:11:df:23:
8f:cc:fe:da:56:af:49:d8:27:34:c8:cf:b9:88:2c:
4e:1e:e9:2d:2a:23:53:e9:3b:ee:b6:3f:7d:7a:bd:
5a:f7:0d:ea:6c:b5:22:29:12:b2:4b:2b:7d:14:ab:
6f:9c:b1:b5:bb:1f:11:f7:86:63:92:0f:2e:85:40:
ca:ee:ce:e8:f2:c8:42:7f:ab:8c:66:42:ab:06:f7:
d0:56:f8:55:3d:b2:6d:60:9a:e6:b6:83:20:01:7f:
52:e5:61:80:58:1b:e7:df:1e:60:24:42:ce:d2:09:
d6:94:c4:d7:ce:08:11:29:3f:04:5c:c9:44:18:9d:
3c:bc:e6:ba:ae:ae:a5:0b:9f:0d:cf:ea:2b:6a:38:
67:e5:2c:47:70:9a:b8:e2:26:28:8d:db:a8:73:25:
c8:4a:11:d9:de:5f:0e:d2:24:af:f9:06:32:a2:56:
65:6c:ff:4f:ee:39:12:e4:7a:78:c9:cd:d9:5f:36:
44:f0:68:e0:0d:48:89:05:7d:92:37:61:ab:13:8c:
b7:a5:57:66:49:d9:7b:e4:3e:3c:aa:e8:27:98:86:
42:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:21:C8:E0:4B:13:1E:87:88:5C:BD:4F:1A:E8:76:BD:AA:48:1A:DB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:193::/48
Signature Algorithm: sha256WithRSAEncryption
59:58:e0:91:a0:a1:ab:fd:62:8d:03:28:89:00:30:e8:ac:68:
4f:d7:3e:86:88:cb:77:92:d5:de:98:95:bf:f6:dd:f2:e1:87:
fa:ae:b0:ee:53:17:de:09:6d:f8:16:96:56:4e:1f:38:4f:cb:
c4:9c:dc:31:dc:4c:e5:fb:e3:20:e9:0d:22:23:05:c7:09:b4:
aa:2c:e6:6c:fb:81:50:3a:87:eb:47:d9:d0:b3:8d:bf:ef:46:
f1:26:99:be:70:9a:0a:27:50:00:b3:c0:c6:19:f9:ee:7f:68:
ef:23:19:db:77:f7:a0:39:53:25:ad:d1:93:79:ce:a3:fc:b1:
16:a7:5b:df:50:27:d7:31:6c:11:3f:f8:a2:0d:7a:8e:5b:cc:
5e:4d:29:a6:50:ce:c0:9d:5f:05:92:c3:d2:b1:29:6a:5e:64:
bc:5a:30:81:f2:09:45:26:c6:0d:bf:ea:55:ae:9e:33:86:b8:
3c:79:a0:3f:fc:06:bc:47:11:a1:b8:dc:bd:f1:cc:fd:6a:30:
43:c5:ae:29:42:2d:2c:23:47:1b:ab:46:1b:4d:19:f5:be:61:
e8:bb:0b:f4:a6:55:3f:42:a9:84:25:27:db:de:44:33:33:6a:
8f:31:71:17:62:88:1c:9e:80:55:bc:52:25:47:d6:d8:f6:d7:
43:c1:7c:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org