Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3165663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ZbpH7sg3nHYeVzI5RVX4GaebtoaYdiDW0VQeQbpAgRI=
Subject key identifier: 2A:46:B0:B6:2E:18:A0:D7:74:39:18:C9:5F:B2:4B:60:78:D5:09:D3
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 32990740ED61FE5F12FE88A7564D3127B32B4706
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:21 +0000
ROA not before: Mon 26 Sep 2022 09:55:21 +0000
ROA not after: Mon 25 Sep 2023 10:00:21 +0000
asID: 59282
IP address blocks: 2400:d680:1ef::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:99:07:40:ed:61:fe:5f:12:fe:88:a7:56:4d:31:27:b3:2b:47:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:21 2022 GMT
Not After : Sep 25 10:00:21 2023 GMT
Subject: CN=2A46B0B62E18A0D7743918C95FB24B6078D509D3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d2:d2:ee:bd:39:c6:32:2b:65:b6:42:80:d6:
ec:0c:31:31:22:b9:39:c3:e1:b2:99:73:1f:78:38:
16:8f:26:5e:cf:64:ae:f8:ab:da:e9:a8:a1:d0:c3:
80:5a:26:e2:fe:24:de:1c:b4:e9:4e:51:28:e8:2d:
d9:a5:5a:0e:5d:f9:b7:1f:d2:b4:59:5a:29:a8:80:
e9:77:2e:3c:7e:8b:18:37:0e:7e:a6:e9:dd:a9:af:
a4:ef:13:3e:fd:b0:25:00:00:3b:eb:e5:f4:63:11:
a1:65:cc:37:d3:e3:09:90:19:05:44:7b:7d:04:45:
f5:96:68:a4:17:b8:79:21:38:b1:aa:58:a5:4a:f1:
8c:fe:4e:6b:f2:7a:06:65:d2:56:9b:c4:52:91:e2:
ec:0b:c7:09:a5:af:ec:e4:db:5a:c2:d8:1e:a4:d6:
8b:e8:18:03:80:e4:d5:44:80:03:1b:12:39:0c:6a:
20:2c:80:e8:d4:59:32:eb:2e:33:ae:f7:ba:d5:ef:
ad:f9:2d:54:2b:7a:65:bb:d0:db:2a:3d:33:1a:63:
24:fa:2c:09:2f:f5:77:2f:bf:96:56:48:12:80:03:
8e:6c:a2:2b:e2:75:5d:3d:6b:1d:dd:cd:da:6d:a9:
26:8b:22:f4:d9:52:ef:9c:81:0b:4d:ce:f8:05:f2:
47:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:46:B0:B6:2E:18:A0:D7:74:39:18:C9:5F:B2:4B:60:78:D5:09:D3
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1ef::/48
Signature Algorithm: sha256WithRSAEncryption
3d:12:60:68:43:91:12:c7:3e:4f:e3:de:81:20:fe:ef:34:6d:
eb:16:f4:2c:e5:58:83:e1:42:98:5d:04:3e:8f:44:71:5a:8e:
b0:15:c2:da:26:f0:21:d7:d5:de:2b:d2:83:8a:a7:17:ce:bb:
70:70:f1:c7:07:d6:ef:b3:b3:80:36:50:40:78:18:df:1f:d6:
45:65:ff:97:82:eb:2d:2f:71:64:e3:84:32:8c:04:21:09:d5:
80:37:32:6c:34:9d:43:37:a7:66:f0:2c:6c:77:0e:26:f0:eb:
81:e1:31:93:61:fb:26:fa:a8:6f:db:90:c7:67:25:54:db:d6:
63:61:6a:e3:82:c0:89:86:fd:ef:2e:1d:bd:0c:f4:0d:ed:d2:
7d:c6:3d:60:89:2e:46:c3:bd:8c:89:84:0d:79:7a:d2:b5:38:
31:5f:ec:01:6d:13:d2:30:f0:9c:f6:d5:5e:d9:64:7b:8e:8e:
6a:0d:6a:0f:c7:da:04:6f:7c:d4:15:b5:9b:bb:74:30:07:e8:
d8:b7:d6:89:ca:b2:fc:bc:76:a0:07:e5:01:9a:2f:00:55:6b:
50:85:9c:aa:48:b7:4e:6b:16:e1:6d:47:aa:44:53:08:c6:6c:
fa:9b:e2:f8:7f:95:ac:a1:37:c0:b0:44:fb:2a:9f:0d:a2:85:
b9:12:00:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org