Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3233613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: EOAO39Qjwo5SgJ2YVJF2o0GgfC9xE9GMG938TdDk3Cs=
Subject key identifier: B5:3D:7C:1D:94:3E:3B:97:49:A2:A3:F6:1F:31:02:40:C6:30:4D:53
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5C850B01524EE2F3906F522A3989F06A8BAF12CD
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:18 +0000
ROA not before: Mon 26 Sep 2022 09:55:18 +0000
ROA not after: Mon 25 Sep 2023 10:00:18 +0000
asID: 59282
IP address blocks: 2400:d680:23a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:85:0b:01:52:4e:e2:f3:90:6f:52:2a:39:89:f0:6a:8b:af:12:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:18 2022 GMT
Not After : Sep 25 10:00:18 2023 GMT
Subject: CN=B53D7C1D943E3B9749A2A3F61F310240C6304D53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:7e:bb:39:f9:84:5a:b4:cb:f6:1d:15:df:57:
58:26:3c:8c:1b:83:f3:c6:8e:44:d4:fb:bc:c5:e1:
ce:9b:6d:7c:05:61:24:76:38:91:65:ff:f8:40:20:
a1:f7:cf:ff:b1:12:31:61:73:9b:bf:cb:f9:5e:6c:
ac:52:04:3b:2c:c9:bf:87:a9:f8:d0:82:0b:ac:09:
1c:f2:2e:00:75:3c:d5:7b:f9:2f:76:ee:c0:53:90:
66:c5:71:e3:f1:98:24:41:ec:e0:0c:1b:f5:1e:f4:
4d:bb:e8:eb:8d:83:d1:ed:b2:09:b6:de:45:36:c5:
99:c4:d8:6d:6b:41:71:5f:d4:17:64:04:46:2b:87:
e4:3d:7a:fd:de:82:c9:3d:bb:ea:50:8e:23:2e:d9:
1b:ec:62:5a:59:b3:b9:64:f6:74:b6:a6:57:a4:86:
2d:c8:96:8a:f9:d5:55:bb:44:d0:14:d5:8e:11:02:
43:b9:21:f0:a0:e7:36:a7:c1:c0:b4:94:3b:9b:91:
02:4a:27:5f:24:8e:a5:b1:10:f4:28:2d:27:15:ea:
27:75:1f:09:85:24:44:40:47:b2:69:f7:eb:d0:bb:
ad:dd:27:90:d4:11:8f:ec:f9:98:4f:19:39:e6:e3:
2e:86:09:c0:eb:9e:ab:a5:e3:29:1e:1c:c5:f9:30:
f0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:3D:7C:1D:94:3E:3B:97:49:A2:A3:F6:1F:31:02:40:C6:30:4D:53
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:23a::/48
Signature Algorithm: sha256WithRSAEncryption
8f:b6:ae:7c:64:7f:50:0c:32:e3:52:38:d7:8b:14:4c:4a:74:
80:ac:f8:48:e6:29:49:e5:42:84:46:2c:5e:8a:64:1d:e5:a4:
e6:b6:ff:e8:e5:63:34:cf:d4:f7:6b:72:57:41:76:55:7d:5a:
df:c0:65:ed:bc:d5:5b:71:ad:41:06:10:32:2b:37:f7:62:3f:
0a:cb:80:08:bb:1d:18:ce:a7:6e:50:45:cf:58:13:08:6f:d6:
6d:f0:c0:5a:b6:b1:4e:0c:24:85:2e:59:54:7f:a5:63:d0:56:
99:bd:0f:f0:25:6c:aa:d6:0b:ea:4b:7b:f2:6a:48:b9:11:b9:
50:36:c3:07:05:23:ab:3f:37:04:18:72:b5:a6:fa:ba:f6:00:
db:83:ef:6c:90:ad:cb:4e:22:53:81:41:42:5b:26:5d:a8:3c:
48:57:65:1f:0f:f7:b7:d6:f0:be:79:a9:62:ef:9c:ec:fa:39:
04:71:2a:64:d1:48:d1:ce:ca:2a:f1:8f:25:28:d2:2b:ea:ad:
ff:83:c0:87:5e:f3:2b:48:bc:58:5f:2f:b2:45:2c:1d:62:4d:
af:56:3a:7c:88:e3:2d:34:8e:1d:fd:5a:ce:48:99:4e:c6:2b:
f2:81:0c:2b:5c:31:6c:d7:8a:40:5c:80:6b:c1:dd:5e:89:77:
b8:58:e9:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org