Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3165323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: kRjbn+84R9ciqbbedLugnQHYCvjG/xzlb6NcZMQnTS0=
Subject key identifier: 5B:C9:67:FC:C0:68:C0:DE:7F:00:63:D6:92:2F:4B:8E:86:E0:65:C0
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 60BDD9D1781C4D2FFB76F34DFEA722D4CC6B8655
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:32 +0000
ROA not before: Mon 26 Sep 2022 09:55:32 +0000
ROA not after: Mon 25 Sep 2023 10:00:32 +0000
asID: 59282
IP address blocks: 2400:d680:1e2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:bd:d9:d1:78:1c:4d:2f:fb:76:f3:4d:fe:a7:22:d4:cc:6b:86:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:32 2022 GMT
Not After : Sep 25 10:00:32 2023 GMT
Subject: CN=5BC967FCC068C0DE7F0063D6922F4B8E86E065C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ef:27:4c:a8:80:04:dd:07:d1:c6:c8:38:24:
47:b8:60:51:40:90:2b:65:ff:d7:2a:24:93:6f:47:
9f:d8:59:1d:b6:05:fd:ca:c3:d7:f3:a5:c9:f1:e1:
f4:2a:10:cf:55:49:07:00:27:51:fe:9c:53:54:72:
0a:46:4a:ed:0d:8b:82:f2:14:19:f6:ed:bc:c2:10:
a1:95:39:c5:67:73:00:bf:e8:27:ae:07:69:e4:19:
9a:5a:d8:31:d4:ea:73:96:36:0a:3b:28:26:12:49:
1c:ff:aa:66:64:24:53:31:a9:61:df:5c:a2:ad:65:
dd:1b:f3:32:85:21:e8:2f:26:e2:7c:27:99:dc:c2:
32:25:de:83:7e:41:52:14:70:95:46:5b:82:dd:e6:
61:be:21:98:1c:2c:48:29:88:06:84:0d:78:24:9c:
88:ce:48:8d:55:8b:a4:41:c7:69:83:4e:f9:63:69:
de:16:d6:ac:50:ab:38:c6:b1:90:ee:ce:c6:21:e0:
f7:c5:9d:9b:c0:69:46:68:57:15:5c:59:2f:3e:8e:
50:86:c8:ae:cb:9b:1f:82:db:e5:8c:05:13:c2:30:
40:b9:ff:c4:1d:57:79:f3:f4:8f:d1:60:c4:45:24:
81:e8:94:58:99:37:43:0d:d9:b4:be:d1:91:8a:b1:
c5:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:C9:67:FC:C0:68:C0:DE:7F:00:63:D6:92:2F:4B:8E:86:E0:65:C0
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1e2::/48
Signature Algorithm: sha256WithRSAEncryption
af:a2:1a:64:80:64:42:03:a0:cb:2b:f8:cf:a0:46:ae:64:ed:
8e:32:1c:dc:0a:5d:61:1b:bd:75:7b:97:42:d5:23:07:21:3d:
18:d9:41:c5:a5:ad:c1:bf:a8:1a:33:57:0c:bd:3d:c2:4c:bc:
45:71:b3:49:f9:15:4f:86:f9:c0:08:f4:aa:90:05:bd:cd:b1:
b6:3f:ba:17:d0:ea:d9:bd:d1:e4:ed:0e:30:50:f1:f7:c7:6e:
a9:43:a3:e8:32:b0:7c:d4:b5:50:2d:b9:29:2b:2e:5b:6b:6b:
82:23:24:cb:00:e9:19:62:eb:47:71:f7:b5:65:d4:ed:f6:81:
42:45:c7:04:b5:b8:20:2c:59:f2:42:da:c9:6c:0c:dd:3e:25:
15:7e:69:6f:fb:5d:64:77:a7:66:50:a1:8e:83:61:35:0c:31:
1f:f6:89:5c:74:ae:f6:7c:02:ab:37:c6:38:eb:bd:1f:ca:5e:
93:a3:5e:2b:bd:c2:8f:dc:ac:33:08:05:75:0b:f2:c7:92:0e:
1c:25:c1:6e:b1:fd:99:37:4b:f0:69:b4:14:39:ef:22:36:8a:
23:65:7c:42:1e:2d:c3:0e:47:7d:7a:66:32:ce:7b:7c:68:bc:
18:be:ed:8d:cc:f7:09:6f:c3:52:ff:55:67:29:0c:2f:f5:de:
6b:fd:eb:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org