Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3232333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: YRL3/PaSAUjkBy3rX4HOAyLyS4JoOW/xlvBZi50J+lA=
Subject key identifier: D8:7C:26:84:49:E8:76:E2:68:6F:11:EF:78:72:88:9F:F4:DD:08:AC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7299CA1F1AC4181BE539061641F2324B15972D46
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:02 +0000
ROA not before: Mon 26 Sep 2022 07:57:02 +0000
ROA not after: Mon 25 Sep 2023 08:02:02 +0000
asID: 59282
IP address blocks: 2400:d680:223::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:99:ca:1f:1a:c4:18:1b:e5:39:06:16:41:f2:32:4b:15:97:2d:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:02 2022 GMT
Not After : Sep 25 08:02:02 2023 GMT
Subject: CN=D87C268449E876E2686F11EF7872889FF4DD08AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:df:ab:3e:40:ca:99:5d:aa:34:5e:fa:58:bb:
0c:c5:2c:3d:ed:4c:6a:e2:9a:84:cd:4f:20:91:6a:
32:c3:82:98:ce:f8:ba:98:e3:58:05:ce:de:49:7e:
f5:75:92:81:df:ad:d2:17:6d:03:28:8d:3a:b0:98:
4a:36:06:ad:35:4e:74:22:fe:ea:12:c0:97:a7:9b:
6c:82:71:ee:8e:b6:dd:2d:3c:68:b3:9f:ce:97:44:
bc:03:a7:71:f7:7c:82:c9:a3:0d:29:c3:98:44:56:
ab:c3:08:f4:88:5a:0e:14:a8:9c:40:a1:8a:ab:91:
8a:f4:17:3b:cb:17:af:b8:10:9a:4b:98:9b:98:6e:
8b:51:f8:4e:0f:b8:b4:99:bf:31:54:8f:92:12:e7:
11:b3:af:b7:30:28:ca:a9:e0:81:fe:3b:5f:ca:f8:
48:2b:c7:99:b9:f7:7d:03:13:40:44:20:79:1a:24:
ca:94:c3:2c:e9:7d:cc:10:e6:25:46:57:26:e7:50:
6c:be:67:55:01:ae:d2:fd:dd:ac:55:68:08:5b:e7:
af:ae:8c:90:90:3d:24:13:36:99:34:50:00:0a:c0:
cb:2a:e5:07:85:24:e7:34:5f:10:ab:79:38:1c:01:
62:aa:5e:21:83:29:48:eb:8a:c2:d8:17:ea:65:ad:
e8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:7C:26:84:49:E8:76:E2:68:6F:11:EF:78:72:88:9F:F4:DD:08:AC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:223::/48
Signature Algorithm: sha256WithRSAEncryption
a5:04:1d:f3:41:c7:48:db:cc:1f:ba:68:57:77:af:33:4b:e4:
9f:b2:be:2f:41:2f:47:b0:ea:9c:26:70:a9:c3:f9:c7:1b:ff:
7e:1b:86:f4:0a:68:0d:30:44:d1:92:65:ec:3b:a2:87:59:eb:
d0:6e:98:c8:85:65:6a:bd:c1:f9:54:98:cd:d1:0e:ea:fa:90:
5d:a8:6f:c1:a9:ac:48:e7:77:b7:02:f9:9b:37:78:f7:c3:6a:
ea:79:ce:81:d8:51:9b:4d:b1:0f:96:c6:1d:5b:db:11:e5:e0:
be:59:48:a3:92:d3:c9:26:31:15:f9:8c:05:b2:15:58:a9:92:
6c:d2:e1:3a:12:5f:9d:67:c7:99:68:35:c7:82:4d:41:7f:d8:
d7:96:46:e3:40:eb:72:8a:31:a5:d4:f1:43:94:f4:50:52:61:
33:01:3e:9e:c8:5a:51:f0:de:41:c3:41:35:f5:94:9f:4d:be:
c1:34:70:6d:65:07:34:a5:f4:27:36:35:fb:de:71:c4:17:6e:
a4:69:ae:04:f9:f8:b4:7d:e9:83:7b:6e:18:84:dc:0d:20:4f:
58:e4:2f:69:35:17:a3:4f:94:c1:36:53:83:2d:25:a2:95:52:
c3:03:26:79:e6:15:51:29:2a:5a:20:ee:b4:4c:e8:72:48:a1:
6b:25:c5:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org