Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3165383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: X246HHQ++nK4XK+aY0rXAoiOqGImW3T884ujtJBz8EA=
Subject key identifier: CB:96:7F:76:32:1D:11:3B:39:AD:44:50:DD:11:C6:27:67:C7:91:73
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2DC7C0CCD9BAC26BE012FAD47BE316871D126E30
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:26 +0000
ROA not before: Mon 26 Sep 2022 09:55:26 +0000
ROA not after: Mon 25 Sep 2023 10:00:26 +0000
asID: 59282
IP address blocks: 2400:d680:1e8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:c7:c0:cc:d9:ba:c2:6b:e0:12:fa:d4:7b:e3:16:87:1d:12:6e:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:26 2022 GMT
Not After : Sep 25 10:00:26 2023 GMT
Subject: CN=CB967F76321D113B39AD4450DD11C62767C79173
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c9:fc:d7:0d:66:53:e2:de:52:38:53:a8:00:
a6:66:80:e0:79:5d:36:9a:f3:f2:21:7d:c2:06:9b:
8c:99:1e:26:4c:ac:24:ca:36:51:db:24:51:32:7d:
98:79:b5:a6:23:ef:73:68:76:e7:fa:55:46:af:ae:
35:3e:d7:e6:02:47:75:48:d6:a6:13:d6:3f:4d:72:
da:77:35:b3:d3:50:b8:50:21:42:75:02:e3:f8:11:
d5:bc:39:20:e2:3b:a4:e8:0d:20:14:a4:c4:de:8a:
d7:be:95:08:85:0e:a1:93:58:aa:3a:e8:87:20:35:
5b:4c:f0:9d:a5:4c:57:b9:e4:86:d0:36:61:b7:43:
ea:4b:d0:0d:c2:7a:f4:e7:7c:1c:97:ce:ae:42:84:
6a:82:c2:fe:4f:7b:7d:2b:80:49:14:ef:c5:0e:3b:
c5:2d:90:ec:f8:d2:83:d9:ba:bc:cf:86:57:9e:dc:
0d:9a:75:b6:55:3e:6d:30:77:2f:1f:25:54:92:bc:
0b:62:63:3b:62:a2:76:ca:26:10:5f:4e:54:a4:d9:
0e:c0:c7:8e:59:19:04:14:9e:20:6d:74:3b:b2:88:
5b:03:b4:e1:f4:d6:79:8f:de:6a:8b:96:70:63:56:
51:4b:cd:f5:da:bd:b9:51:2d:07:89:69:1c:d5:b2:
6c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:96:7F:76:32:1D:11:3B:39:AD:44:50:DD:11:C6:27:67:C7:91:73
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1e8::/48
Signature Algorithm: sha256WithRSAEncryption
b2:e6:1d:47:b0:47:9d:c5:06:7d:e4:99:2a:ee:1e:3a:d9:14:
25:ab:ea:6d:14:f4:78:58:26:a6:fa:5b:6d:dd:77:af:24:5c:
22:07:65:16:ef:fa:c4:fe:9e:72:7a:ea:7a:b9:27:5f:69:50:
fa:51:49:f4:a6:5f:51:22:4a:37:cd:d1:9d:62:a4:fa:2a:92:
4e:97:2a:c0:41:77:fd:95:29:85:d5:12:0e:eb:a6:e6:c0:66:
e7:b0:cb:07:67:1d:5e:3b:53:f3:15:ed:43:a8:f0:cd:53:e5:
ec:b5:4c:23:e2:91:fe:84:87:fa:93:33:a5:11:70:16:77:dd:
e7:b2:9b:5f:02:cc:32:2a:44:1e:c3:6b:8a:cb:52:9d:c5:cb:
d8:fd:78:07:ef:04:ad:10:f6:e1:ed:0b:aa:88:91:fc:ff:0c:
55:1d:2a:d7:96:39:93:10:a5:81:f2:af:b1:51:bb:39:31:ce:
d3:43:e2:25:fd:37:ad:67:6d:e1:82:72:f4:78:35:fe:9b:2d:
bc:8a:2d:d5:44:66:97:f8:57:ed:34:98:95:96:0d:45:c7:a2:
e8:2c:08:93:dd:3f:27:c4:61:aa:13:c3:c0:fd:77:80:72:97:
95:3e:05:b2:50:7a:d6:32:90:7e:c5:96:cf:00:85:74:4d:93:
5f:f5:59:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org