Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3231313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 889El8V2UXvXGZq00jdzHDQfId7os+9tfMDQ7ZvXpx4=
Subject key identifier: 1A:36:9A:31:6A:F8:9E:3F:65:C9:03:2D:0E:17:35:03:A8:C5:78:14
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 495BA2BCDCE13DCCCD255C4BA5F436C67D331829
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:47 +0000
ROA not before: Mon 26 Sep 2022 07:56:47 +0000
ROA not after: Mon 25 Sep 2023 08:01:47 +0000
asID: 59282
IP address blocks: 2400:d680:211::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:5b:a2:bc:dc:e1:3d:cc:cd:25:5c:4b:a5:f4:36:c6:7d:33:18:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:47 2022 GMT
Not After : Sep 25 08:01:47 2023 GMT
Subject: CN=1A369A316AF89E3F65C9032D0E173503A8C57814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c5:38:6b:8a:30:18:36:61:27:b8:40:af:e3:
4e:22:a9:ab:83:df:9a:cf:f0:f7:7c:a2:45:d2:51:
9e:2a:b1:14:25:20:73:ea:6d:01:6d:c1:64:41:45:
65:dc:cf:d6:43:6d:c8:84:b4:a3:af:93:09:ee:10:
40:dc:f6:e3:2d:87:48:5e:b5:4e:63:c5:54:f9:05:
8d:44:58:01:82:d6:b3:46:7e:8f:f9:d1:85:e4:45:
9f:70:0d:63:32:09:8e:c8:f4:89:6d:4f:5e:bd:5a:
ac:93:05:94:03:54:43:16:cf:30:8c:11:4b:a3:c8:
62:42:69:bd:d2:b0:b9:d6:08:7d:07:27:ad:6d:4a:
27:47:4c:bd:6b:45:95:d2:50:86:d3:c6:63:c9:1e:
a3:07:24:03:c0:f5:83:6a:1c:5d:ef:dd:2d:c5:40:
37:e5:47:b0:ef:02:a0:78:78:f5:91:a5:4e:6a:a3:
b0:a3:84:f7:d2:b2:24:98:eb:d1:fd:6d:be:3f:9f:
06:12:bb:70:0f:91:f0:1a:54:a0:40:af:1f:46:67:
44:e0:d6:34:b2:27:25:07:73:be:8f:c2:96:3e:da:
5f:3f:45:e8:20:c8:73:4e:73:ea:bd:36:19:7b:e9:
1a:2d:20:3c:f2:d5:80:4b:f5:be:25:85:aa:ce:5b:
b9:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:36:9A:31:6A:F8:9E:3F:65:C9:03:2D:0E:17:35:03:A8:C5:78:14
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:211::/48
Signature Algorithm: sha256WithRSAEncryption
86:94:c1:d2:02:82:fe:11:6b:a2:9f:be:6c:90:90:3c:93:0f:
5b:eb:0c:91:bc:f8:d6:61:74:bf:ec:5b:86:42:42:5a:d5:a4:
68:78:c2:8d:ea:c4:bd:aa:57:24:a0:a5:e8:54:bd:64:1b:a9:
e5:14:ed:ba:93:88:bf:c4:47:96:f1:77:13:ce:c3:c5:ff:a9:
86:75:d7:12:d6:a0:53:6b:0b:f4:e2:15:fb:8c:d6:fc:63:e9:
de:a7:dd:2b:74:0f:67:c0:f8:5b:6b:cc:83:a6:21:d4:f0:40:
db:26:54:ed:2a:64:66:1b:c8:bf:2a:86:b8:0d:99:31:96:6a:
dd:5f:ae:1f:d6:e0:52:5e:f9:3a:56:b8:96:53:10:43:47:8e:
05:9a:26:2e:d8:92:4f:ba:d9:5e:d2:5d:80:e0:78:80:ee:aa:
e8:61:db:e9:a4:6e:2f:a8:f4:c2:1d:68:ce:10:7e:9c:c2:89:
10:36:f3:7c:36:97:96:8d:20:ef:26:25:f1:fa:16:be:ff:91:
da:e5:10:17:9c:17:47:65:0d:62:4f:40:13:ae:ad:d1:08:1a:
69:4e:8c:57:82:e5:ad:5a:28:40:79:be:61:0c:90:1e:bf:12:
8e:06:06:ef:b0:8f:14:b6:b5:3f:42:4a:66:a7:a4:42:a5:ae:
1a:5d:b5:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org