Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3233303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: yXA/ikrA1CutqXEJDuZaKmoBXnuvzRxcit5GZx0TKWE=
Subject key identifier: 5C:F7:E4:15:CC:B2:A9:79:A8:43:8C:88:EC:A5:A8:1A:9C:1B:E9:B3
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7008248EDA0BA8F2E893541630C667FC6C2B6E15
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:41 +0000
ROA not before: Mon 26 Sep 2022 07:56:41 +0000
ROA not after: Mon 25 Sep 2023 08:01:41 +0000
asID: 59282
IP address blocks: 2400:d680:230::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:08:24:8e:da:0b:a8:f2:e8:93:54:16:30:c6:67:fc:6c:2b:6e:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:41 2022 GMT
Not After : Sep 25 08:01:41 2023 GMT
Subject: CN=5CF7E415CCB2A979A8438C88ECA5A81A9C1BE9B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:58:9c:41:ef:1d:8f:b8:7a:88:29:82:4f:dd:
b3:96:bf:1c:9d:7b:ad:ae:d5:04:d8:b9:18:ba:30:
c2:8e:70:11:7c:f5:4d:df:47:d3:c7:6e:14:ab:56:
2c:9a:a2:2b:3d:01:66:cb:ef:b6:b9:1e:5f:20:4d:
df:41:61:33:46:77:8b:ec:ce:22:9d:58:61:62:11:
9c:5e:6b:4b:a0:8d:1a:2a:fc:63:c3:c3:65:fe:41:
6d:05:59:83:22:75:ec:54:78:7e:4c:92:b5:d4:48:
6c:8e:e1:78:25:44:70:3e:18:2b:ae:91:f6:08:6d:
f6:53:ee:e9:52:00:5e:dc:e8:1b:04:29:24:2c:91:
fd:8a:8d:02:ae:ab:e3:46:7d:04:ad:b3:46:dc:f3:
0c:dc:4e:b5:87:bd:1c:4b:b1:30:63:81:d3:97:08:
5b:a7:a0:bc:a7:48:44:2e:05:bd:5c:3a:b8:72:f7:
11:f0:20:3b:7c:55:dd:d6:b5:d7:65:62:b0:0a:14:
f0:ee:ee:87:eb:d8:42:15:67:c1:cd:27:f1:89:cb:
f4:76:fc:21:e9:18:3c:50:9f:d5:f3:a7:6f:fc:c0:
ba:cc:5a:e4:96:2b:ea:df:77:7e:4f:f0:10:9d:4b:
15:d6:6b:04:45:65:32:71:cd:fa:c2:d8:a2:95:f5:
34:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F7:E4:15:CC:B2:A9:79:A8:43:8C:88:EC:A5:A8:1A:9C:1B:E9:B3
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:230::/48
Signature Algorithm: sha256WithRSAEncryption
1c:a0:5f:de:c0:ed:c0:e8:cb:c0:ab:42:47:4b:66:f6:77:65:
06:ea:29:b6:ff:79:66:11:a3:42:c2:d6:b2:f4:8a:3f:dd:ca:
88:45:91:e4:c1:53:b7:1b:6c:10:8c:99:06:0a:1a:18:34:49:
24:95:0e:52:38:b5:c1:49:ff:d4:69:f5:f5:31:c6:8e:e0:8c:
73:aa:43:5b:04:a2:19:1b:d9:8c:09:95:79:8c:6f:c3:4d:9a:
45:cd:12:ed:dd:16:00:cc:14:c7:5a:52:8c:1b:9e:cf:05:91:
9d:ea:a1:f1:cd:64:57:b3:a7:0c:7b:99:9f:91:0c:23:a4:ea:
b6:d7:b7:2c:6a:47:64:a6:46:3c:d1:22:f6:9f:84:5d:38:2e:
6e:34:03:80:27:3d:00:d3:08:8f:4d:0f:00:7e:c8:3b:5b:f7:
31:c1:f0:c4:a7:2c:55:86:67:07:60:82:97:3a:3d:1a:ad:53:
54:00:cc:de:d7:f2:92:53:9d:e7:da:34:45:99:46:82:5d:36:
6e:d5:ef:25:ba:85:e0:e3:d9:4d:e9:d9:5c:8e:04:24:88:38:
11:b3:93:c7:ec:19:d6:1e:b5:b2:bd:07:cf:be:4c:e2:3d:ed:
b5:4a:dc:ed:3b:70:93:6f:67:de:cf:27:10:00:63:54:b5:02:
2b:1c:58:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org