Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3161303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: b3CTwq9y0/GGI2Qp477lPr2w798LlmZ1zMF0Bt1VdhA=
Subject key identifier: B6:35:20:6F:3E:5B:8D:CB:2B:A5:66:25:F8:F1:0E:32:91:0E:B8:C6
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3D29FD3155015B7C2ADC6795BF57683135DC46FF
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:18 +0000
ROA not before: Mon 26 Sep 2022 07:57:18 +0000
ROA not after: Mon 25 Sep 2023 08:02:18 +0000
asID: 59282
IP address blocks: 2400:d680:1a0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:29:fd:31:55:01:5b:7c:2a:dc:67:95:bf:57:68:31:35:dc:46:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:18 2022 GMT
Not After : Sep 25 08:02:18 2023 GMT
Subject: CN=B635206F3E5B8DCB2BA56625F8F10E32910EB8C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:47:bf:71:1e:d0:26:f6:55:59:8c:01:f4:2d:
a4:42:11:f3:89:c2:da:f5:dc:57:39:bf:43:c5:b7:
5b:54:5c:95:ad:7d:8b:be:4e:80:ae:f9:7b:b9:d5:
10:dc:ad:fa:5c:04:68:82:47:04:f4:c2:04:87:45:
9e:a0:ad:37:03:17:a8:3c:06:a6:e6:21:cc:98:fe:
dc:b0:a3:49:35:72:99:5d:d1:70:08:07:6b:e9:9e:
69:7f:97:f7:4c:94:7a:54:a3:ee:3c:43:59:7a:d6:
14:b8:46:4c:9a:9d:8d:2b:41:65:e6:ed:c3:4f:5f:
4f:93:94:9f:9f:28:c5:67:26:32:ca:ec:0d:ae:dd:
9e:db:c1:87:e5:c4:bc:99:93:5f:86:db:2b:ad:3f:
b3:ab:1a:6e:df:58:71:b2:c5:5f:24:28:91:68:61:
c0:57:4d:74:11:d1:35:dd:4b:99:97:99:be:ea:ae:
37:c0:78:db:cf:5b:f4:ab:39:1c:5d:bd:5c:3a:6f:
44:4c:b3:da:e6:e3:cb:8a:11:0b:94:63:77:a2:12:
33:54:04:5b:13:1a:0d:e7:a3:b2:5b:2e:2b:de:4e:
a3:84:0c:69:ba:0b:55:79:31:03:95:ff:55:ce:a9:
2a:4c:36:b3:30:a0:c9:ba:0e:41:80:0d:4f:85:5d:
c7:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:35:20:6F:3E:5B:8D:CB:2B:A5:66:25:F8:F1:0E:32:91:0E:B8:C6
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1a0::/48
Signature Algorithm: sha256WithRSAEncryption
2a:63:b0:a1:4e:fc:93:a0:b1:ab:1c:4d:34:40:ed:b7:01:26:
15:38:64:a6:1c:42:dc:ac:fe:cf:ab:f0:35:ca:09:7a:f9:5f:
a8:8f:f5:65:cd:e3:16:d7:15:cd:2a:3c:ec:a4:33:f9:c9:f3:
f2:38:83:26:9a:06:e7:41:0c:16:13:89:e7:a9:de:04:3b:c8:
7b:fc:cd:18:a2:c2:a6:65:fa:a4:19:66:3d:1d:92:fb:e6:85:
20:50:f8:5d:dd:b1:79:5c:b4:e7:31:7f:5f:c5:39:08:65:78:
8c:9e:c2:0a:9a:00:79:a6:bd:63:73:e7:a0:e6:d9:f8:4e:7b:
26:4a:f1:e9:31:f9:2b:55:ed:f3:fd:c9:17:a9:63:bc:43:28:
cb:23:69:de:6f:b2:49:b3:a6:f0:c1:99:2b:90:50:71:60:50:
7f:58:e6:d8:ad:7a:03:f9:d0:d8:9c:a2:5d:50:e8:62:2e:cc:
a4:d6:9b:97:0d:e7:6e:38:a0:8b:8f:d6:7f:39:b0:05:b6:a0:
c9:f7:d8:82:2c:30:c1:13:7a:5f:f2:1f:ff:c6:3f:ae:21:35:
df:59:66:a9:f8:a9:ff:51:8c:7e:bf:aa:4e:75:8e:e2:76:61:
14:ba:90:4f:4e:5e:3f:24:26:11:30:5f:80:b6:e9:3c:c8:11:
41:29:97:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org