Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3232643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: TXEVuVxdfcnFmJXTJJiqssBODpPVmqFf84hd0n7Nazs=
Subject key identifier: AE:A6:BB:0A:E9:F9:CD:7B:32:B0:F9:10:07:93:6B:D6:A0:46:08:59
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 16E4647FF41D8CA8E46B804619B7EE85CACFBCEB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:55 +0000
ROA not before: Mon 26 Sep 2022 07:56:55 +0000
ROA not after: Mon 25 Sep 2023 08:01:55 +0000
asID: 59282
IP address blocks: 2400:d680:22d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:e4:64:7f:f4:1d:8c:a8:e4:6b:80:46:19:b7:ee:85:ca:cf:bc:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:55 2022 GMT
Not After : Sep 25 08:01:55 2023 GMT
Subject: CN=AEA6BB0AE9F9CD7B32B0F91007936BD6A0460859
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:39:f0:e7:98:2f:e4:b8:ed:ec:5d:35:ca:fd:
0e:71:ea:ff:62:88:6c:66:32:d1:79:bd:9a:b6:f1:
12:e9:49:95:c3:a8:2b:58:fc:c6:94:34:ca:9c:71:
33:5b:98:95:96:a8:05:21:5d:5f:a3:02:1f:0c:96:
a5:f5:77:4a:4c:b9:70:b8:71:99:40:96:8e:fb:61:
e4:1e:47:a8:b2:01:0b:84:d7:8d:ac:10:85:98:c4:
20:ee:cf:f7:fc:09:98:54:5d:02:e9:48:4e:d9:24:
c6:ee:fa:fa:ef:33:f2:be:cc:9b:ce:80:75:1a:32:
3b:f5:a1:6a:89:eb:6a:e7:a9:5b:c4:80:ae:ff:40:
2e:86:2b:3f:89:b8:67:38:b4:d9:a0:fe:c9:2c:db:
09:6a:17:90:a9:70:07:0c:30:5c:3f:04:5b:9a:c0:
ef:17:a6:c5:82:a8:29:66:81:16:4d:50:94:0f:97:
56:ac:be:e2:e3:17:18:44:ee:48:36:1f:99:03:4d:
b6:64:06:f7:05:e3:31:0d:5b:90:c4:0a:f8:e6:5e:
dc:9e:e6:ba:f6:f7:08:8a:8f:a4:f4:c5:c4:33:68:
14:03:c8:9e:0b:5a:ef:59:c5:f6:d7:d3:c6:14:82:
ff:b5:d5:6b:0f:d3:ed:07:c1:e6:94:f0:d6:0c:b9:
b6:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A6:BB:0A:E9:F9:CD:7B:32:B0:F9:10:07:93:6B:D6:A0:46:08:59
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:22d::/48
Signature Algorithm: sha256WithRSAEncryption
0a:d0:26:03:ec:55:87:7e:15:d3:82:3b:3f:de:3c:51:3f:56:
42:98:be:c1:8e:e3:b3:fe:a0:fd:5b:89:6c:d4:80:f1:31:58:
3e:bb:2c:57:17:6e:8a:58:7b:e2:8e:a5:3a:cc:d0:0b:a1:70:
34:70:dc:3d:e7:7b:d6:f1:92:e6:0c:26:dc:7c:8f:27:a3:96:
b0:c7:05:5a:e7:77:ae:b2:37:38:44:ff:dc:4e:95:dd:b4:70:
cf:6e:04:88:cd:fb:6f:44:df:eb:95:ae:f8:fc:27:d4:18:ab:
d4:c0:59:ae:d4:94:16:30:81:18:a3:1d:66:8d:d0:fd:87:13:
37:4d:e0:0d:57:68:c9:e9:97:1d:10:11:41:de:9c:0d:6b:c3:
c9:5a:14:44:ee:cf:34:13:b7:64:88:67:84:d1:0c:85:9b:4e:
c9:42:74:a1:a1:84:cc:07:5c:bc:cc:18:e6:1c:32:30:9d:c3:
89:45:98:06:09:a0:89:8a:49:63:2c:52:43:04:86:c2:6f:b9:
a7:4e:bd:58:1a:93:ee:f6:a4:16:e3:a4:06:05:0a:ef:65:f1:
a0:8e:a4:21:1e:59:f9:9b:20:07:8e:44:0e:e2:95:be:57:47:
77:4e:37:3f:7b:f7:9d:8e:03:f9:d7:16:a6:10:0b:72:38:f1:
5e:c7:3e:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org