Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3162613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: GMm3PNyw2mVYO3fUyxvfH7EIEEDaoQAaNyJO3YaivuQ=
Subject key identifier: 92:FD:82:9C:4F:2F:68:E6:16:48:12:A1:90:D2:32:B4:FB:01:F6:BB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5C643024E9F5B366354500D60B4FF3A80DD66415
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:23 +0000
ROA not before: Mon 26 Sep 2022 09:55:23 +0000
ROA not after: Mon 25 Sep 2023 10:00:23 +0000
asID: 59282
IP address blocks: 2400:d680:1ba::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:64:30:24:e9:f5:b3:66:35:45:00:d6:0b:4f:f3:a8:0d:d6:64:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:23 2022 GMT
Not After : Sep 25 10:00:23 2023 GMT
Subject: CN=92FD829C4F2F68E6164812A190D232B4FB01F6BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:36:8d:1b:c1:c1:bb:54:a6:b2:06:2c:09:10:
fc:72:4d:56:01:1f:d9:63:63:ae:90:3f:fc:f5:ee:
f3:0d:3d:e1:2c:12:7f:9b:04:44:73:46:2e:9e:92:
6e:2d:ce:ca:ec:1c:f2:0a:67:82:56:a9:35:7c:93:
cf:8b:7f:ae:46:3b:6f:6c:72:84:9a:d6:af:ed:43:
2c:d4:d5:2a:5c:81:2d:0f:f7:0e:2a:f0:f6:9f:83:
a6:f9:ac:ca:e0:da:63:4e:bd:4a:ca:c2:21:aa:58:
70:04:73:20:65:a9:5c:39:28:f3:1d:ff:70:b9:26:
9b:cf:a2:8c:cc:f3:a5:db:7a:8b:01:41:ee:b3:66:
10:6d:61:b4:fb:0d:d5:26:44:d9:3e:2f:4e:ff:c1:
dd:4c:78:76:7f:13:3a:c4:83:05:52:05:58:7d:80:
dd:57:e4:2f:b3:5f:57:69:23:d6:a5:26:37:7f:d3:
68:86:51:3d:5b:c8:58:a3:e0:32:16:68:02:c6:3b:
26:e0:d3:d7:48:22:42:2c:fb:45:2e:93:88:c1:d4:
5d:03:d9:60:63:d9:3d:00:3a:04:d5:70:1c:19:d1:
e1:6b:f5:8c:45:71:ff:7b:30:a5:25:f8:cf:83:64:
35:ce:0f:d0:f3:09:e8:6d:2c:7a:b5:35:ac:9e:f4:
6d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:FD:82:9C:4F:2F:68:E6:16:48:12:A1:90:D2:32:B4:FB:01:F6:BB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1ba::/48
Signature Algorithm: sha256WithRSAEncryption
98:68:43:6f:a6:1f:be:52:c7:2c:65:e4:e9:d1:ff:fd:d0:aa:
e6:03:dc:e3:b4:6a:af:cd:8c:c3:be:71:02:44:cd:6c:e8:d7:
f6:f0:7e:01:ef:5d:4f:fb:08:13:99:5b:65:99:f8:c0:69:fd:
8c:8c:52:ae:0f:ad:25:be:b7:0a:86:94:56:25:cf:ef:9e:80:
d2:bf:c0:c4:a0:86:8c:a7:24:bc:8f:e5:8f:da:72:16:c6:ce:
67:4c:3e:2f:28:0f:27:a3:6d:ce:7b:1e:5f:49:72:7e:44:16:
3c:8e:3b:d2:5a:78:02:83:0e:cc:ff:33:59:2a:fb:30:08:b7:
16:c9:fa:0a:d0:6a:28:c6:4b:14:b5:46:f7:cd:45:6c:73:86:
3b:a7:da:5a:6f:1e:05:53:3e:75:d6:b6:d9:07:f0:5f:43:1c:
84:e3:15:07:eb:99:59:ca:57:6e:26:f9:c4:24:ca:35:7c:75:
6e:80:3a:45:78:b6:e5:8d:cf:aa:92:38:22:64:13:1c:f9:dd:
33:fc:52:a3:3b:3b:3a:c4:cb:4c:67:09:07:aa:84:92:19:e3:
95:d4:74:f8:fd:12:60:ba:99:c3:05:02:60:7a:4b:49:c7:cd:
7c:91:20:e9:e5:c1:44:3d:a6:c6:49:52:6e:ef:9e:85:5e:de:
c1:bf:0d:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org