Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3164333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 5HpV6h2/8zmav2JM4Pm5K24uyydegAj9vpogAbfwB5M=
Subject key identifier: 04:BD:C9:C2:9E:93:F1:42:4E:3C:A1:63:83:3A:B7:D2:DC:6A:B2:2C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 60C56EC2F80E313526AE08FF1FA9FAA7010344DD
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:08 +0000
ROA not before: Mon 26 Sep 2022 09:55:08 +0000
ROA not after: Mon 25 Sep 2023 10:00:08 +0000
asID: 59282
IP address blocks: 2400:d680:1d3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:c5:6e:c2:f8:0e:31:35:26:ae:08:ff:1f:a9:fa:a7:01:03:44:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:08 2022 GMT
Not After : Sep 25 10:00:08 2023 GMT
Subject: CN=04BDC9C29E93F1424E3CA163833AB7D2DC6AB22C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ff:d0:72:37:da:10:08:08:50:08:5d:19:f7:
b1:54:d3:7d:df:3f:f2:b2:2b:67:cb:8a:d9:3d:fc:
bc:13:2b:7a:10:aa:1a:a8:ec:99:63:7e:10:fc:6b:
fc:98:70:5f:85:8b:89:44:f4:f9:c5:39:5c:9f:01:
d1:be:d8:8f:cc:cd:4d:95:0c:20:23:f9:3e:9d:99:
0b:25:05:45:31:4c:d0:44:4d:0d:c9:00:9a:e2:74:
d6:8a:c9:99:27:ef:9c:ec:69:86:27:e9:95:8f:1a:
b5:ba:51:a7:b3:f0:a2:ae:a1:10:38:c3:28:a1:12:
d3:3c:ff:5c:a7:47:43:76:2c:93:73:e3:7d:bd:e6:
13:9b:f7:58:3c:60:72:12:4b:89:fc:db:ac:c6:27:
3a:85:40:cf:09:1a:78:38:d7:05:46:77:24:7b:68:
0e:21:0a:e4:04:8e:8e:2c:ac:a9:92:e3:37:aa:c4:
94:3e:3f:03:1b:9a:86:2b:09:1e:0e:5d:88:72:33:
22:e7:5a:09:15:d3:27:3d:b4:11:0b:03:02:c4:47:
07:fe:82:71:a8:62:39:79:61:2f:2b:f6:8c:02:10:
93:65:05:1f:3c:3f:ad:2b:ef:03:62:df:07:90:02:
92:d6:62:b5:d5:86:08:6e:4a:01:54:e3:6d:90:d4:
97:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:BD:C9:C2:9E:93:F1:42:4E:3C:A1:63:83:3A:B7:D2:DC:6A:B2:2C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1d3::/48
Signature Algorithm: sha256WithRSAEncryption
06:71:1a:8a:28:18:4c:39:43:56:d3:ff:be:36:2c:c7:b3:d8:
09:49:5e:c2:7e:9e:5b:82:2e:17:8f:51:79:f8:9b:48:61:f7:
7c:a4:c6:f6:05:94:98:3e:43:51:73:e3:18:40:54:db:3c:7a:
2c:e7:c5:9c:89:23:c7:cb:7b:0b:4b:c4:bd:cc:55:1c:1b:a7:
bb:eb:47:67:3a:9e:ae:15:94:6d:51:cb:b2:3a:4d:6b:4b:be:
65:ed:78:28:1c:60:40:8a:c4:d2:09:b0:1d:35:40:9b:37:a4:
02:f7:44:36:24:8d:10:ee:7e:e7:b3:c3:5d:3f:70:89:39:74:
d5:fa:e1:70:9e:c4:8f:59:de:4c:42:38:48:1c:c6:8e:af:e6:
d1:9d:66:55:55:03:14:db:f1:07:16:c9:7e:71:45:c6:30:66:
da:50:27:d0:49:55:7b:5f:0a:9e:8b:b5:36:dd:51:4c:f1:66:
e8:10:6a:86:52:ea:a1:f1:df:60:f8:20:56:ba:16:c4:0d:1f:
a1:6a:6c:38:8c:f8:0e:48:b3:1c:c2:8d:b8:39:d0:0f:af:52:
1e:92:43:d7:fe:af:9e:6d:7c:b0:ff:17:e0:6f:78:c1:fa:d2:
6d:42:7e:f0:d4:e7:13:83:37:d2:ff:1e:dc:2b:ba:62:c9:8b:
ec:27:69:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org