Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3161333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: SN+NT5Ti4StccrOw12RWhPrtBUPHj1jecxaMzL82btE=
Subject key identifier: C1:0A:89:90:83:F7:C7:9C:CF:53:BF:BC:1E:2E:D0:12:23:05:60:B1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 066C8FA48514745A8A30837A7EE88112034C2009
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:05 +0000
ROA not before: Mon 26 Sep 2022 09:55:05 +0000
ROA not after: Mon 25 Sep 2023 10:00:05 +0000
asID: 59282
IP address blocks: 2400:d680:1a3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:6c:8f:a4:85:14:74:5a:8a:30:83:7a:7e:e8:81:12:03:4c:20:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:05 2022 GMT
Not After : Sep 25 10:00:05 2023 GMT
Subject: CN=C10A899083F7C79CCF53BFBC1E2ED012230560B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:2c:a1:32:18:5b:54:43:1b:fb:9e:f7:3a:7c:
c1:df:01:28:e1:aa:a4:77:cf:3f:ae:0e:62:e7:9f:
11:7d:e0:ad:76:23:98:13:50:da:3f:98:15:6e:50:
6a:e1:ee:6b:1b:bc:3a:7b:43:89:5e:5f:e8:0d:e3:
cd:27:81:db:dc:24:42:0f:26:eb:8a:fb:1c:e3:b5:
af:53:7f:0e:d5:aa:04:ad:30:97:82:76:d5:3f:5c:
31:0b:e5:5d:c4:bf:26:98:65:c5:8a:60:55:29:12:
7c:1d:5e:48:a2:d3:4c:9e:c5:28:ab:ba:48:8d:9b:
2c:92:d6:08:3a:9f:f2:99:73:56:1a:30:f8:fa:22:
f6:4e:bf:69:56:34:c7:4c:9c:58:20:a8:6b:30:fb:
df:fe:e2:d8:ab:f8:08:b8:0c:c1:7f:27:7d:be:0f:
b5:a9:b1:7a:28:c2:38:f1:70:22:9e:83:33:bf:12:
ca:d6:f8:f1:4a:21:03:86:25:0d:21:4d:2d:d9:dc:
75:fb:82:06:6f:5c:6c:d3:85:24:95:85:c9:09:25:
27:5d:be:2d:04:64:53:e5:62:bf:e6:3d:be:8d:1b:
b8:4f:52:2a:4d:48:fb:86:a6:7c:43:bd:0c:a5:95:
1a:1a:18:2f:57:dd:4d:ec:a7:c5:26:a8:5e:f5:a7:
0a:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:0A:89:90:83:F7:C7:9C:CF:53:BF:BC:1E:2E:D0:12:23:05:60:B1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1a3::/48
Signature Algorithm: sha256WithRSAEncryption
2b:00:33:f1:35:c3:fb:9c:d2:72:aa:8c:7e:13:6b:52:90:1a:
a9:f1:7d:91:c7:35:c2:00:78:d0:12:ff:60:41:23:1b:d7:99:
73:8f:94:45:47:a6:e0:11:f4:08:c2:52:dc:5b:b1:70:01:6c:
2f:4d:dc:e5:31:90:53:d3:9c:3d:26:75:e8:85:2c:3e:df:f1:
99:be:ef:8e:82:08:28:d4:1d:7b:1f:a4:65:41:d8:7e:a1:21:
6b:60:c1:8d:90:01:96:35:66:6d:6d:8a:3e:42:3d:0f:70:f2:
c1:ff:69:3a:0a:fe:a9:d1:c4:c6:8f:4d:b5:b3:bd:b0:60:d7:
7a:1f:39:20:0d:c2:f7:01:50:57:62:2c:5b:43:85:72:dc:1b:
f4:75:64:d9:3d:e3:e7:ae:22:96:b4:c0:39:8c:f9:f4:19:a3:
c3:b3:d0:ac:e7:9f:ca:16:33:af:bd:df:46:19:11:e4:77:1d:
8a:2d:90:b5:c0:9d:ea:e9:d1:04:20:54:e7:31:c6:12:32:2e:
4d:8b:75:33:90:ae:42:e2:b5:53:d3:56:18:a8:e9:7b:41:52:
d2:5c:36:e8:d0:0d:25:b9:14:27:4d:48:9a:68:41:f2:d5:3b:
b9:5e:89:a1:94:df:d5:0f:5f:f7:32:98:9d:43:9b:7d:74:4f:
e8:d3:76:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org