Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3166643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 51JlCWrjClzakwrDKz6nAcViQeTEHOiTSTlXsSYcuQc=
Subject key identifier: 8D:67:EC:C2:41:20:62:86:4B:59:83:B5:98:23:A5:76:C1:23:6C:0A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4CBAFC167CA9158BD94305716E0069EABC18290A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:30 +0000
ROA not before: Mon 26 Sep 2022 09:55:30 +0000
ROA not after: Mon 25 Sep 2023 10:00:30 +0000
asID: 59282
IP address blocks: 2400:d680:1fd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:ba:fc:16:7c:a9:15:8b:d9:43:05:71:6e:00:69:ea:bc:18:29:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:30 2022 GMT
Not After : Sep 25 10:00:30 2023 GMT
Subject: CN=8D67ECC2412062864B5983B59823A576C1236C0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:56:79:9f:fd:9f:83:6a:5d:e4:63:48:87:5d:
4f:d5:42:a2:3f:04:ec:de:46:ee:ed:d2:d1:73:3a:
3b:26:1c:67:c5:00:0a:30:e5:ba:9a:29:de:b3:c0:
f4:1d:fc:57:86:17:2f:9a:0a:98:9f:fd:13:81:fb:
73:b9:98:e7:5b:c0:87:37:c9:3d:78:70:53:53:e2:
24:c9:90:7e:04:d0:71:71:c0:79:b4:a1:80:dd:58:
aa:79:90:9c:3f:78:32:22:0a:ac:35:78:98:e0:72:
0a:c0:89:23:52:fa:8f:6c:aa:ba:9e:e5:a1:bd:4d:
c9:f0:97:28:3c:15:20:38:cc:97:a1:84:b7:2a:c2:
7b:73:05:c5:3e:1f:9d:df:a7:81:94:30:72:8a:54:
57:2b:76:3a:da:80:a3:c9:1a:45:e7:b6:98:f8:c8:
21:c1:42:90:e7:54:81:62:c4:26:23:3d:e7:c1:36:
f8:74:90:4e:f5:c5:5f:4e:45:e8:0b:2f:0b:e7:9d:
42:f4:fa:40:0e:20:68:d5:c6:3e:aa:07:73:bc:c0:
db:9f:d9:3f:57:00:04:9d:b6:ca:98:f0:d8:ed:39:
ca:e9:b8:e3:6d:a9:7d:b9:5a:55:7f:54:82:4a:c6:
52:c8:62:3f:60:1c:ef:18:5b:df:fb:eb:3e:ef:07:
9b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:67:EC:C2:41:20:62:86:4B:59:83:B5:98:23:A5:76:C1:23:6C:0A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3166643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1fd::/48
Signature Algorithm: sha256WithRSAEncryption
03:4d:c1:5b:79:22:e9:7f:42:35:1a:bc:c2:39:3e:6c:e8:70:
59:8c:80:8f:0a:65:d2:a5:27:d0:42:a7:ad:b1:5b:26:bd:3e:
e0:b7:7c:9d:dd:50:9b:57:33:ee:52:ec:47:a3:27:e1:a0:83:
37:8c:22:da:1a:ee:79:73:9b:9a:a7:14:c3:06:1e:77:94:a1:
5c:16:18:df:f7:da:9b:a9:9a:87:67:29:ae:1e:86:73:fb:56:
51:39:15:e2:5e:80:93:f9:93:21:f7:e9:06:34:cc:c8:6e:52:
f6:3e:7f:35:63:73:3f:68:6c:60:35:95:4e:12:bc:80:55:33:
0e:0d:c4:6d:f6:e7:f7:b2:80:07:cd:87:59:c8:b3:89:0d:10:
33:3b:9a:9e:c1:0a:a5:75:6e:f5:ce:64:76:08:76:87:f3:09:
da:bf:52:81:c9:69:cb:9c:9f:e8:f5:79:37:a8:90:7c:df:c8:
8d:ed:c2:93:cf:ec:cf:f0:ca:8b:cb:a8:0f:e4:ea:ff:ee:37:
6e:db:c0:ed:10:68:32:eb:2f:1f:31:1c:e7:da:32:e4:8f:2d:
55:aa:7a:0f:b2:3d:55:55:77:d3:d6:8a:23:fa:3e:64:24:f9:
6f:5a:69:d5:e5:31:10:be:c0:9e:c8:f9:74:b8:21:2f:8d:3f:
4f:06:b9:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org