Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3163353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 8gleiQ37c2NcP+LnG8buvBWoEh1VT9oWHr+ncEilGtQ=
Subject key identifier: 33:05:14:F8:AB:8E:72:B3:6A:87:7A:22:BC:22:09:4C:3F:EC:43:2F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 02CAC055B5DA66B38457A8781841D2206CF373C3
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:22 +0000
ROA not before: Mon 26 Sep 2022 09:55:22 +0000
ROA not after: Mon 25 Sep 2023 10:00:22 +0000
asID: 59282
IP address blocks: 2400:d680:1c5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:ca:c0:55:b5:da:66:b3:84:57:a8:78:18:41:d2:20:6c:f3:73:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:22 2022 GMT
Not After : Sep 25 10:00:22 2023 GMT
Subject: CN=330514F8AB8E72B36A877A22BC22094C3FEC432F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b6:9b:2b:f7:f7:89:2f:f3:1d:0c:de:76:fb:
dd:72:3c:82:9b:04:e7:23:af:a4:70:41:e6:8c:cf:
63:64:84:cb:9e:be:40:5a:c1:71:aa:9d:65:ea:4e:
d7:43:d1:83:17:a8:83:2c:75:b7:25:f6:6a:64:5e:
44:a9:2b:c6:9c:f9:5a:0c:d5:1c:71:25:6e:a0:cd:
b8:0d:23:45:97:f4:01:65:d5:05:4f:ca:c0:99:19:
ba:a4:29:1f:58:04:ae:45:81:81:5f:cb:e1:20:71:
7a:89:14:7a:81:39:b7:55:b9:2a:46:95:e2:9f:57:
67:22:90:df:08:89:59:79:22:35:79:95:18:26:79:
8f:c7:31:17:ad:3f:57:29:34:1c:f1:44:3e:ee:61:
0a:3b:01:17:01:8e:c0:4f:32:e1:5b:9f:13:55:a2:
ff:34:54:2b:be:3e:31:1d:9a:9d:62:ca:b0:39:bf:
7c:4f:8e:d0:ae:b4:34:57:d8:82:b9:f9:ca:25:2b:
d9:64:d2:7e:0c:fa:cd:79:1d:6b:c7:d0:b4:0e:cb:
53:91:2b:f0:eb:05:4f:03:2d:c8:c3:1b:d0:2d:1b:
2b:ca:0e:df:62:2a:25:af:76:b5:61:0b:e2:bb:24:
ab:d7:fb:f4:f3:b8:a5:36:85:09:0d:22:0b:2d:6f:
e0:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:05:14:F8:AB:8E:72:B3:6A:87:7A:22:BC:22:09:4C:3F:EC:43:2F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1c5::/48
Signature Algorithm: sha256WithRSAEncryption
0a:a2:61:82:fa:f4:c2:2f:e7:e4:f7:5e:ba:e2:38:82:bb:72:
6f:1e:b3:71:86:bc:2c:65:1b:f3:b4:8f:a8:cd:e7:a7:58:00:
ff:43:96:36:98:ac:eb:77:9c:01:af:d8:53:24:aa:eb:7d:e3:
a0:53:46:c6:cc:28:e1:a5:df:24:e9:a4:5b:fc:b6:54:63:fe:
c9:48:5a:82:e3:45:d3:85:16:19:d5:21:b0:28:be:57:2a:91:
72:1b:61:44:ef:10:7a:63:c9:97:ee:59:65:c6:46:75:7b:98:
ca:1e:d3:3b:29:1a:cf:c6:4e:4c:80:02:b7:01:9f:8e:67:58:
77:1f:87:c6:d8:f8:c8:48:42:2a:d5:8e:ed:11:9a:37:fd:3b:
93:c8:76:12:c5:1e:9f:d0:f5:aa:30:ff:e2:89:64:a8:bd:cd:
81:da:65:88:0c:6d:4e:f7:3f:e0:df:d0:40:8d:23:2a:c3:6f:
93:53:00:d6:f7:af:d6:8b:be:75:c6:61:2a:05:99:3a:d6:58:
46:4e:f6:bc:7f:a7:f4:c3:e0:c2:f0:0b:9d:64:97:b9:11:af:
3e:30:2e:fa:15:e7:44:ed:fb:eb:52:37:9e:3a:3e:8c:23:18:
bb:17:a0:31:33:8a:b8:1b:21:a2:00:b2:43:9b:18:06:3e:f4:
ef:ea:51:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org