Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3232633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: B5fUfBfxapG9mHh5WasC1Z3P9avLIIDa8Li3pgiNOSI=
Subject key identifier: 1E:1A:87:7D:D4:17:D4:B1:12:A4:E9:AB:C3:EF:6E:30:02:63:1C:9A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 14F72187C09AC3B9277EEB8F9D860446658DA27C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:09 +0000
ROA not before: Mon 26 Sep 2022 07:57:09 +0000
ROA not after: Mon 25 Sep 2023 08:02:09 +0000
asID: 59282
IP address blocks: 2400:d680:22c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:f7:21:87:c0:9a:c3:b9:27:7e:eb:8f:9d:86:04:46:65:8d:a2:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:09 2022 GMT
Not After : Sep 25 08:02:09 2023 GMT
Subject: CN=1E1A877DD417D4B112A4E9ABC3EF6E3002631C9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:55:5e:80:16:08:79:36:2a:ab:62:3a:81:33:
6e:07:92:41:21:84:dc:85:00:07:50:60:b5:b0:e6:
f2:76:c5:17:30:cc:4b:78:66:89:22:65:f1:cb:90:
fd:0a:db:58:e7:fb:95:46:1d:49:b2:22:7a:21:56:
87:76:7a:40:4d:d3:46:09:4c:77:73:00:e3:5c:6a:
99:5f:bc:c2:ed:06:49:59:2a:a0:0c:8a:70:06:09:
68:4f:94:5c:4e:b3:e9:bd:1e:a9:ab:f3:f5:e7:ed:
45:b3:a0:cc:d6:65:d1:87:4d:fe:a4:48:e2:e7:43:
f4:d8:ad:ee:3c:b1:6a:89:cd:e0:3d:3a:85:e1:d1:
17:9a:8b:72:62:77:54:f9:1c:0a:db:dc:f9:bb:8e:
aa:f5:96:9e:dd:5d:57:30:2e:81:c6:30:6d:05:78:
f3:67:34:d7:6d:d6:85:71:af:f8:ce:d3:07:03:8a:
8e:23:de:56:d2:b3:49:6b:36:a4:68:71:b8:49:a2:
e4:41:22:19:ea:e8:ec:4f:27:9f:4a:36:b5:b1:64:
17:0b:03:d0:41:31:d6:7c:69:98:4d:76:c1:67:4a:
7f:66:8e:39:2d:c0:e7:f7:30:b7:d5:a2:ea:7d:d5:
d3:48:8c:a0:7d:a3:d5:33:10:10:12:5d:d7:6c:2f:
9f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:1A:87:7D:D4:17:D4:B1:12:A4:E9:AB:C3:EF:6E:30:02:63:1C:9A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:22c::/48
Signature Algorithm: sha256WithRSAEncryption
05:07:10:0f:8e:f1:42:36:b1:6c:c7:52:0f:7a:7d:19:f0:f5:
9e:e7:6c:e4:40:ff:31:2c:b0:5e:17:e3:f0:b1:d1:9a:3c:e0:
1d:c2:85:d3:14:36:50:b5:ad:70:fe:7c:ba:9d:60:a8:a0:37:
6f:f4:e6:23:ea:33:87:7a:fc:6c:fe:b4:ea:f6:1c:e6:ac:6c:
36:e2:d2:7d:7a:58:33:ef:d9:af:58:a5:25:ea:3d:b5:2b:ac:
5b:58:f2:ee:99:72:63:c5:3e:ab:8c:57:f5:ee:71:7f:5a:df:
53:3f:e6:a9:1d:6c:98:79:63:7f:ca:cc:e9:4e:16:10:60:a6:
78:7c:41:2c:ea:e4:53:38:d0:3c:ef:da:a2:ca:b5:d8:61:f8:
08:08:99:22:1f:7c:7d:a6:49:49:23:02:52:10:e2:4b:30:21:
67:ea:f2:12:ea:f9:f2:f1:f1:b0:7b:cd:93:7c:ad:94:c4:1d:
d4:96:4f:51:e7:cb:8b:66:08:55:95:8d:12:61:38:b7:0b:04:
d9:4f:39:1d:77:89:a0:db:a2:eb:76:45:87:22:ea:a2:87:c5:
64:54:35:49:97:da:ec:48:bd:5a:4e:41:0c:8c:ab:ec:d9:2c:
f6:fd:26:92:b6:bc:33:00:04:05:c8:ab:70:3f:3d:14:1d:71:
6e:ad:a8:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org