Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3162353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: laFxhG4y2FBSbo5mLKUxWP0acQQ9Cm78KPcPvXtOAKc=
Subject key identifier: 1F:EB:79:1F:B4:12:A3:A9:1D:F4:99:58:F8:9F:C7:2D:31:DC:A0:19
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 32136F6B4D35E809CC8A56AEA712583581B8BC89
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:31 +0000
ROA not before: Mon 26 Sep 2022 09:55:31 +0000
ROA not after: Mon 25 Sep 2023 10:00:31 +0000
asID: 59282
IP address blocks: 2400:d680:1b5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:13:6f:6b:4d:35:e8:09:cc:8a:56:ae:a7:12:58:35:81:b8:bc:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:31 2022 GMT
Not After : Sep 25 10:00:31 2023 GMT
Subject: CN=1FEB791FB412A3A91DF49958F89FC72D31DCA019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:4b:f1:6f:d9:af:68:58:49:5f:69:ba:1f:53:
b2:23:db:26:d4:12:a4:d1:df:db:4d:7f:37:7e:05:
48:ca:e0:98:13:bc:66:45:63:98:77:75:11:48:9e:
5d:8c:15:86:3d:bd:0f:7c:9a:93:16:df:a4:46:84:
b9:4b:32:72:00:dc:f2:0c:3a:69:dd:b4:67:9d:bd:
2b:a1:be:0f:ae:d9:a2:1d:2b:44:bd:e6:fe:a6:15:
c7:6c:3e:4e:a8:92:f1:cc:5c:55:3d:48:4f:94:dd:
02:3e:4b:69:19:cc:06:36:da:9a:ae:41:e4:24:f2:
24:ab:28:fb:9a:dd:f2:e2:a9:47:6a:56:20:49:56:
31:f2:60:3c:f9:04:4e:ce:e1:5d:6d:77:e5:f5:1c:
18:15:1e:73:3e:39:51:c2:7d:e4:33:c6:22:2f:e2:
9a:91:03:ba:4d:4a:c3:9b:7a:27:43:0e:44:1e:57:
b5:3a:81:44:db:b5:87:1e:34:a0:1b:a7:09:91:07:
36:ad:48:d7:92:ae:68:cc:3e:cc:e5:72:2e:23:0b:
cd:02:be:bf:a3:41:e1:0b:98:ca:c0:de:6c:73:b5:
9b:f2:ad:b2:c8:e1:28:2b:f3:3e:57:e0:33:d3:7b:
e1:57:1a:b8:cc:22:78:33:56:25:4d:c1:aa:c7:bf:
00:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:EB:79:1F:B4:12:A3:A9:1D:F4:99:58:F8:9F:C7:2D:31:DC:A0:19
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1b5::/48
Signature Algorithm: sha256WithRSAEncryption
b5:63:50:91:5c:dd:03:e0:8b:63:a8:76:6a:2e:d0:a0:76:1e:
19:c5:6d:68:f3:9f:44:5d:f4:f9:19:65:28:64:1b:6d:89:75:
ab:02:d7:48:68:2e:2c:24:ce:05:47:f6:1e:85:b6:ff:d5:bc:
f6:2e:99:99:cd:cc:d9:27:fe:cd:9a:36:c1:63:62:8c:0e:05:
e3:8f:46:fd:7f:4d:f1:59:f3:2d:45:fd:74:6c:e5:85:0b:6f:
63:08:e1:cd:41:bb:69:ba:eb:f1:ce:64:be:d7:63:06:67:25:
42:24:7e:9f:ca:a9:b8:14:c5:62:8d:d6:5b:61:71:59:15:a6:
2d:b1:b1:00:37:46:a3:9b:20:1e:ca:8c:53:3c:b5:e7:ac:7e:
75:ed:31:e2:85:5d:fe:1f:6e:ce:07:29:80:3f:4d:65:f4:f0:
63:1c:2d:e0:f8:e5:1c:5a:98:c1:c6:32:5a:3f:d8:10:7b:43:
26:58:99:f1:e1:7e:92:69:62:f8:cc:8e:2c:21:05:b2:7f:84:
16:8a:6f:22:94:1f:13:bf:aa:94:26:58:f4:25:ed:a5:3a:88:
38:68:38:6d:a2:44:4a:74:9c:40:d4:88:93:0e:c3:0f:6b:17:
b2:5a:04:09:bb:de:1a:af:09:df:3f:70:75:02:c6:6d:24:73:
74:da:fa:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org