Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3165393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: JOxZ5xC/4dvpQDXETfhq6lYdJ8uaMJuuwVXMZi1SgOE=
Subject key identifier: 81:29:20:F5:08:CD:0E:81:75:CD:BE:B3:96:F6:52:34:55:4E:A7:49
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5D030FA086CB9AB22FF24F25775E1EDC31FBCB7C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:05 +0000
ROA not before: Mon 26 Sep 2022 09:55:05 +0000
ROA not after: Mon 25 Sep 2023 10:00:05 +0000
asID: 59282
IP address blocks: 2400:d680:1e9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:03:0f:a0:86:cb:9a:b2:2f:f2:4f:25:77:5e:1e:dc:31:fb:cb:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:05 2022 GMT
Not After : Sep 25 10:00:05 2023 GMT
Subject: CN=812920F508CD0E8175CDBEB396F65234554EA749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:37:5a:02:20:29:fc:36:62:c2:a3:33:d7:80:
0f:07:96:ef:ea:e6:e3:07:21:15:11:0c:0d:5f:83:
6a:cb:5f:78:15:4a:bb:f8:1d:aa:b2:59:fe:9b:50:
14:56:0e:88:89:b9:d2:90:0b:ac:88:a3:e5:ff:06:
56:98:9a:e8:f8:87:30:ed:48:b3:0a:41:c6:50:66:
f8:0f:98:29:9b:c4:9d:14:dc:4e:26:88:ea:45:cd:
27:8c:20:05:34:35:2d:c3:16:fd:6a:bc:a1:20:83:
06:8e:64:cd:5c:b7:31:d4:0f:dc:bc:ac:a9:3d:55:
e7:4a:cc:a8:ea:e7:9e:8c:39:82:9c:3d:a7:6d:c2:
5c:95:b6:bb:91:86:f2:2c:77:5b:99:ff:89:df:e5:
a6:21:24:7d:47:78:07:db:ad:5a:1b:eb:f3:6d:2f:
a6:ec:90:49:63:47:82:b2:87:6b:91:bd:e1:9c:71:
1a:d0:7e:9b:4e:2c:3f:a8:c7:a9:ec:54:e6:ef:4c:
32:aa:fb:13:80:10:df:55:91:00:73:46:0a:ae:08:
f3:63:01:38:fd:16:27:bd:09:3e:b8:f6:46:2e:ef:
7e:0e:40:39:26:8a:49:4a:44:e5:0e:80:d1:a4:15:
aa:85:b8:fa:cc:21:5d:3b:db:f0:da:4e:4e:39:7d:
eb:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:29:20:F5:08:CD:0E:81:75:CD:BE:B3:96:F6:52:34:55:4E:A7:49
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1e9::/48
Signature Algorithm: sha256WithRSAEncryption
8e:9f:42:99:1d:0f:29:15:9e:a4:4e:0b:98:4e:b1:f5:d2:f2:
80:fd:d3:a8:f3:00:02:b4:c3:53:c9:77:fb:94:35:45:8f:4d:
eb:fc:b7:77:c7:52:52:9f:18:b2:45:12:ce:54:b5:9e:30:1d:
f8:59:43:7b:31:d3:18:7e:d3:d1:19:30:31:e9:80:2c:fb:e4:
51:99:10:f7:49:bd:64:8c:34:af:80:01:c9:23:24:2c:d2:0d:
16:1d:3b:58:ba:da:a4:6c:8d:93:43:c2:2c:8d:06:60:23:39:
fb:43:f9:fe:0d:01:21:9d:3e:6e:b1:8e:eb:d8:1a:75:53:0c:
e3:4c:0b:8d:96:2f:bc:72:3e:15:51:e2:47:8f:7d:4c:1e:98:
e5:dc:f1:21:98:52:95:61:cc:90:8e:ff:58:b4:9c:36:29:93:
f6:a3:7c:31:dd:67:96:c0:ad:11:f5:25:77:9c:95:39:fa:23:
6e:1a:73:fa:ef:e2:c1:80:1e:72:c7:1c:c0:46:b7:d0:99:26:
d8:16:ff:af:a9:c1:77:af:95:83:6f:20:8e:b8:01:8c:05:15:
a8:94:b5:a0:4b:e8:44:c5:d3:4d:17:af:c9:c5:71:ea:fa:4f:
6e:9d:be:fc:f3:bf:bb:ee:b8:db:28:3c:97:17:b9:bc:fb:0f:
4f:f1:e5:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org