Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3233653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: SLvF4maF3XoQNS59phPihiXhu47KeusmHFf6r5ye42w=
Subject key identifier: FD:09:CE:5E:FB:F6:04:F5:30:89:56:C3:32:0F:B0:DC:29:55:62:73
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7BF2694E79451DDB5AF682F8457A9A8E45A546C2
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:13 +0000
ROA not before: Mon 26 Sep 2022 09:55:13 +0000
ROA not after: Mon 25 Sep 2023 10:00:13 +0000
asID: 59282
IP address blocks: 2400:d680:23e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:f2:69:4e:79:45:1d:db:5a:f6:82:f8:45:7a:9a:8e:45:a5:46:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:13 2022 GMT
Not After : Sep 25 10:00:13 2023 GMT
Subject: CN=FD09CE5EFBF604F5308956C3320FB0DC29556273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a9:2d:ab:1e:bd:2b:6a:dc:39:48:8b:8e:6c:
a4:6a:d1:b6:4f:d2:ec:db:48:6a:8e:a0:fe:b6:72:
a3:16:e3:ab:7b:ed:e4:75:dd:f1:9e:2d:9e:2e:0c:
41:9c:0e:4a:06:0a:5d:f7:05:1f:54:64:ad:36:b5:
b3:66:fe:52:d3:d2:88:cb:56:3a:a9:b6:5a:51:1d:
6d:77:5f:f9:55:8f:28:24:b7:ab:12:97:6b:9d:49:
33:61:14:34:d9:e9:7f:2e:c5:e9:b2:e7:00:60:da:
9e:47:46:b9:0c:fa:17:b7:9b:24:c8:51:9e:3d:50:
80:fd:f8:14:ac:f5:f8:47:99:1a:c8:83:1b:9d:f5:
2b:86:c7:6d:97:d5:fd:58:64:d6:49:fb:c2:68:c8:
c0:53:61:69:1c:b7:65:14:08:cd:ab:5a:b9:0b:fd:
a1:d2:0a:f0:da:d3:d1:fc:7a:17:f6:2d:84:67:3f:
a5:c9:60:8e:a4:ea:81:d7:89:04:66:f5:97:1f:e5:
cf:cb:9a:da:fc:95:f5:4b:a7:98:0e:02:e6:79:a1:
89:f3:d7:8a:f1:cc:92:66:05:83:37:93:aa:f4:18:
c9:d3:1b:d4:2b:7d:60:8f:4c:ab:d2:f0:d6:b3:d0:
a0:f4:62:06:2c:35:d8:96:41:b4:85:52:71:60:97:
e5:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:09:CE:5E:FB:F6:04:F5:30:89:56:C3:32:0F:B0:DC:29:55:62:73
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:23e::/48
Signature Algorithm: sha256WithRSAEncryption
65:de:1a:85:bf:6f:9a:e5:ad:5d:31:96:09:76:1c:eb:bc:4c:
c4:40:9d:a6:e8:76:87:cc:46:7d:10:ee:94:ab:13:35:5e:b2:
e7:5a:e6:b3:2c:48:78:ce:01:c4:1a:cd:d2:67:63:b7:72:9e:
e1:60:4f:fc:ec:54:35:1f:3b:7e:16:23:0b:69:b1:30:74:cf:
de:67:a3:74:4f:4b:cd:3e:73:fd:d1:1c:ad:ce:8b:75:af:21:
49:47:6f:2a:d9:49:2d:d9:24:6e:39:10:f8:ee:19:64:8e:fc:
d2:6a:34:7d:e9:3b:cc:08:4b:0f:87:ba:ea:78:8c:62:70:61:
8c:ea:c5:04:1e:a9:23:5e:ad:56:18:a5:bf:6a:71:5d:44:c0:
cb:c5:58:f1:4a:78:d4:e5:78:44:49:8d:4d:e6:37:47:7c:76:
0e:2a:bf:5d:28:f8:33:cf:71:51:f9:34:8a:6b:00:13:c3:e4:
d7:18:79:0f:6f:06:03:7f:c4:43:ff:1a:f8:19:30:59:39:30:
01:64:cb:61:79:68:21:3e:81:45:08:2e:a0:16:cc:46:c7:02:
cd:24:a1:50:cb:f7:ac:4e:1f:58:24:eb:12:d3:1b:5a:cf:43:
a3:45:ef:78:65:3a:3f:78:be:89:02:ea:ac:f1:e1:3d:91:a1:
2b:1a:98:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org