Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3232323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: V8ADJ/puncvd1uNZuur9EaNTGKe9FTrL+o2lmmL09jE=
Subject key identifier: EF:44:6C:BF:B3:2C:6C:AA:AA:AA:C4:9B:8B:8C:7C:BF:4D:F9:B1:61
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5256C81128D3AF398EAC635C99CBE9729E4ED801
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:44 +0000
ROA not before: Mon 26 Sep 2022 07:56:44 +0000
ROA not after: Mon 25 Sep 2023 08:01:44 +0000
asID: 59282
IP address blocks: 2400:d680:222::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:56:c8:11:28:d3:af:39:8e:ac:63:5c:99:cb:e9:72:9e:4e:d8:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:44 2022 GMT
Not After : Sep 25 08:01:44 2023 GMT
Subject: CN=EF446CBFB32C6CAAAAAAC49B8B8C7CBF4DF9B161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9f:ea:6e:92:f0:1d:b7:67:c7:48:27:c2:51:
eb:f9:ee:d2:f1:6b:a1:4d:53:a0:26:3d:42:17:aa:
63:72:09:64:e3:70:ab:6b:e3:e8:fc:23:9a:95:62:
da:2e:5e:07:bb:e2:26:5c:38:25:65:80:06:c0:54:
d6:29:35:03:82:70:ec:b3:7d:5e:ac:d7:9a:3e:58:
dd:b6:2c:0f:8a:6e:58:3e:3e:fe:66:db:c6:49:37:
87:05:f5:19:aa:c8:45:3b:be:08:cf:5a:f1:3b:10:
d0:2b:ce:b1:7e:47:09:07:e0:20:65:77:cf:ba:51:
21:ac:10:81:42:3f:6b:00:25:24:c3:05:6e:6d:9e:
ae:12:47:e7:b0:17:79:50:64:ef:b1:b3:7c:aa:8a:
38:c2:5d:53:31:46:fa:e7:93:f6:02:14:13:c3:ef:
2e:8a:e7:43:4b:06:66:03:cb:49:65:12:69:71:2a:
c7:66:b8:e1:54:22:15:c9:fc:40:f0:d4:fb:37:f1:
4a:eb:fd:13:01:21:52:19:1d:6b:a2:19:a3:b5:bf:
7d:cb:96:8c:74:ae:bb:93:54:85:26:5a:b3:ca:e9:
7d:de:83:49:be:a6:d5:6f:4c:7c:4c:ff:e0:66:b9:
27:42:03:ee:b6:07:36:b4:02:62:94:42:b0:1d:b1:
c8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:44:6C:BF:B3:2C:6C:AA:AA:AA:C4:9B:8B:8C:7C:BF:4D:F9:B1:61
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:222::/48
Signature Algorithm: sha256WithRSAEncryption
20:80:a5:28:e7:c4:d3:b5:a7:ef:fb:6d:51:23:07:cc:df:8e:
ff:e0:b1:ed:2e:87:26:ba:bb:e2:3e:a4:71:32:3c:8d:6c:22:
60:6e:ca:d0:94:8c:02:c9:48:20:8e:9c:eb:5d:5d:1b:74:46:
72:c3:07:72:43:a3:f8:80:78:1c:58:bb:14:96:10:49:b3:6c:
62:23:4d:b1:27:15:0f:58:00:ad:61:9d:a7:bc:4b:91:2a:32:
11:bb:c1:2b:f2:e0:c5:5f:bc:06:d3:57:2c:c7:d0:d2:c0:2d:
d5:cc:5e:57:cb:a0:b5:03:e0:40:44:52:ea:f6:06:33:b9:82:
c4:be:ec:a4:f5:f6:b9:ad:88:e5:ad:80:a7:87:ba:fb:cb:af:
e3:39:5e:9e:47:76:49:59:99:6e:6c:0a:6e:05:04:ac:3a:55:
7f:2c:5a:e5:11:21:85:a2:a5:1a:7a:b8:e1:7b:31:b9:be:00:
f7:dc:40:5a:01:7c:4e:30:5e:af:5d:05:f8:c1:ed:85:eb:30:
06:ec:1c:79:67:e1:a0:48:43:3c:39:65:94:8a:3f:a9:94:2d:
f2:cb:5b:dd:81:9c:83:a6:27:16:81:75:ae:0e:f1:25:99:06:
dd:92:4c:d0:1e:99:37:8a:3b:e3:80:e9:d7:f9:41:54:a0:9a:
27:bb:f8:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org