Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3165373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: FwCNQmrVc/soImoQk79nxMHHpEdXddidjurd0kloXds=
Subject key identifier: 5B:43:22:AD:53:9C:EB:F7:7A:BA:BF:60:8D:7A:97:0A:8E:05:52:EE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1094C5E7841DE3235858BA0927F6186525896D5E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:17 +0000
ROA not before: Mon 26 Sep 2022 09:55:17 +0000
ROA not after: Mon 25 Sep 2023 10:00:17 +0000
asID: 59282
IP address blocks: 2400:d680:1e7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:94:c5:e7:84:1d:e3:23:58:58:ba:09:27:f6:18:65:25:89:6d:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:17 2022 GMT
Not After : Sep 25 10:00:17 2023 GMT
Subject: CN=5B4322AD539CEBF77ABABF608D7A970A8E0552EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3d:52:c0:33:62:5f:a8:69:7b:b6:23:83:91:
a8:d9:00:cd:c2:83:5b:f3:34:47:25:e4:fd:e8:84:
bb:f4:4d:f3:4e:82:4a:fa:23:cc:16:5e:63:bd:96:
71:33:e9:52:c2:7d:c9:74:8e:e3:4e:bc:d4:e6:22:
39:d0:58:df:1d:8c:16:7a:5f:af:3d:76:d5:eb:e0:
54:91:73:d6:24:ca:cb:79:78:8a:85:94:f1:d5:a4:
30:89:a8:bd:4e:0a:b5:13:59:b9:25:dc:46:e8:dd:
f1:d4:52:2a:e1:9e:e9:84:fc:c6:ad:7c:2e:b7:1c:
ad:42:ad:e4:ea:6b:b7:b8:fb:98:d1:8d:24:18:c1:
81:f2:97:d6:54:03:90:0c:7c:86:9a:b6:44:0c:08:
d2:42:79:60:67:4d:3e:cc:cc:68:9f:c7:ad:a2:38:
e1:45:25:4d:35:90:35:62:9f:1c:28:e4:5b:d6:3a:
c2:63:ec:3f:d2:3d:6b:70:58:a6:9a:72:74:e3:4a:
09:d2:8b:6f:6c:f4:15:07:2e:df:ce:9f:f4:83:d3:
1f:fc:1f:a9:dd:bd:33:98:f8:c7:2b:c7:a6:5a:d4:
1a:b6:29:43:38:d1:5d:43:d2:cd:64:69:65:73:8a:
c7:11:d5:62:d4:36:46:94:c7:5d:be:d1:22:6f:8d:
4d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:43:22:AD:53:9C:EB:F7:7A:BA:BF:60:8D:7A:97:0A:8E:05:52:EE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1e7::/48
Signature Algorithm: sha256WithRSAEncryption
5f:bb:d8:dd:5e:5f:67:5b:d4:69:23:10:b1:02:ff:24:8c:54:
ad:a6:5f:d4:64:d0:29:80:a6:01:a9:c6:cc:c8:a5:1b:36:7b:
e1:04:9e:80:95:54:fd:07:37:84:ff:d7:12:28:37:b8:68:24:
6e:43:53:75:64:d6:fd:53:50:32:9b:12:5f:f8:88:d5:54:f0:
73:32:ef:ab:72:c6:64:75:51:8f:48:17:10:62:4c:ec:16:a9:
37:1a:36:4c:9c:6c:41:b5:85:7d:db:6f:4c:03:fb:ed:29:5a:
45:b2:49:9f:19:e8:18:db:5d:61:d6:24:2c:e2:d6:2c:e5:37:
ff:c4:03:e0:2c:a6:5c:b4:25:c8:da:76:4a:8c:8f:65:c0:7e:
c2:e7:d7:08:78:bf:de:ad:87:b3:58:bb:4a:26:39:25:dd:74:
79:35:d7:12:d5:31:fe:99:a7:43:dc:69:c1:87:c7:06:bd:b6:
4f:e6:cc:99:7d:f9:32:a1:3c:3b:10:d4:25:d7:ef:37:d6:4b:
ce:18:4a:46:1a:49:96:cc:f4:06:4f:4b:22:98:07:7e:55:db:
a9:8a:7d:5a:c0:9d:30:67:b5:c7:e2:e5:db:2b:d2:2e:a2:d9:
be:67:ea:39:41:9f:fd:a0:43:e7:3a:34:2e:e4:7a:01:3d:6d:
15:00:7a:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org