Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3166353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: phKud57Pg/YOy7mu937lTkAbEqwfi+CIj5lZLTKnU1c=
Subject key identifier: 6E:FA:EB:FF:A7:6C:AA:D9:64:68:32:A7:B2:83:42:6C:B4:6D:E9:DB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 242D4551CA2595215C0D5D51FEA177DBEBF8BB73
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:21 +0000
ROA not before: Mon 26 Sep 2022 09:55:21 +0000
ROA not after: Mon 25 Sep 2023 10:00:21 +0000
asID: 59282
IP address blocks: 2400:d680:1f5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:2d:45:51:ca:25:95:21:5c:0d:5d:51:fe:a1:77:db:eb:f8:bb:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:21 2022 GMT
Not After : Sep 25 10:00:21 2023 GMT
Subject: CN=6EFAEBFFA76CAAD9646832A7B283426CB46DE9DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c6:3d:56:69:23:32:0e:78:6d:8e:a2:d8:13:
21:17:cf:ad:a5:a6:9a:28:2f:25:be:7d:fb:db:5f:
da:9e:66:9c:e4:cc:51:0e:bc:3a:6e:28:2b:0c:e4:
89:ba:8a:f4:db:45:a2:f5:cd:0d:44:06:df:1b:08:
2a:2e:fa:93:db:7f:ec:5c:7a:fb:cb:27:6b:c8:4f:
a8:0e:d3:32:2b:73:12:ee:b7:dc:58:00:72:f3:40:
e7:b6:cd:f4:fd:45:78:2f:44:e8:01:74:e9:33:42:
75:a5:46:0f:ee:36:ca:66:4e:44:bc:7d:a3:f5:2b:
ef:d3:0b:7c:e5:6f:02:6c:b1:20:0f:82:63:04:f4:
5a:ce:aa:67:fd:86:96:8d:e1:85:5c:12:58:05:c7:
97:8e:7d:ca:95:2f:35:2c:65:5c:55:1d:3a:61:69:
f5:4e:c9:56:3d:91:4d:ca:15:cf:69:5b:71:c3:28:
c4:8b:03:6d:9d:dc:9b:3b:cf:6c:df:b5:33:04:93:
4e:6e:ce:a4:13:88:5d:45:29:90:49:aa:1b:49:cd:
33:57:42:78:f9:9d:ae:e0:f6:f1:8b:07:fd:88:1f:
20:7b:3a:f4:d3:95:a3:60:92:b9:ce:7e:d5:62:00:
b0:57:b6:56:3e:f0:a0:95:ac:58:62:d3:11:b9:90:
a6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:FA:EB:FF:A7:6C:AA:D9:64:68:32:A7:B2:83:42:6C:B4:6D:E9:DB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1f5::/48
Signature Algorithm: sha256WithRSAEncryption
69:65:d8:61:87:28:07:43:3c:53:3a:fa:30:cc:c5:3e:a8:23:
91:b4:c7:ef:11:cf:9c:08:17:1c:f1:82:a7:6d:ed:20:74:f0:
66:e2:3a:85:48:f2:11:04:e0:6f:02:93:b2:7f:0d:4c:a8:ce:
6f:78:6e:9d:66:24:d3:15:36:b5:30:00:ea:97:24:6d:e6:0b:
93:58:e8:23:38:ca:5c:70:29:43:09:63:91:52:7a:ea:f1:12:
8b:25:04:d6:a5:be:5e:61:ce:18:0a:07:02:2e:78:32:38:08:
bc:e9:41:7b:f0:20:52:7b:64:90:4d:c1:24:2e:f3:b2:1b:9c:
60:2b:8d:5d:14:9d:c4:2b:ed:d7:c8:56:ce:6b:4a:dc:d8:0a:
3f:6e:be:e0:ea:bc:74:e2:35:79:bc:26:4a:49:08:93:56:f1:
dd:ba:4d:ba:02:c2:f2:b3:12:9f:a7:26:5d:d9:bf:87:3c:67:
da:a0:73:e5:29:06:1b:33:e3:ac:a6:46:6b:a7:3c:91:2d:67:
61:73:eb:56:98:2e:ba:f1:7d:fd:03:47:86:40:7e:5b:59:71:
c2:a0:7c:72:9b:cc:ee:73:60:0b:ae:eb:d5:44:e6:e7:aa:ee:
46:26:29:92:b1:ce:5a:42:70:00:35:51:8b:54:13:23:f7:fd:
33:04:2b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org