Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3234313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: phdRKnAXFBbs+lXGHu9fMgccRKDj1LAhF1svPErusxc=
Subject key identifier: 30:2C:5F:50:E7:54:E6:24:8B:03:FF:9B:BD:61:27:9F:E3:95:1A:83
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2672ECD807CB5E3BCA65C4CA58CAEED10ECDBA05
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:33 +0000
ROA not before: Mon 26 Sep 2022 09:55:33 +0000
ROA not after: Mon 25 Sep 2023 10:00:33 +0000
asID: 59282
IP address blocks: 2400:d680:241::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:72:ec:d8:07:cb:5e:3b:ca:65:c4:ca:58:ca:ee:d1:0e:cd:ba:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:33 2022 GMT
Not After : Sep 25 10:00:33 2023 GMT
Subject: CN=302C5F50E754E6248B03FF9BBD61279FE3951A83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:4e:70:d9:26:87:57:48:90:04:8a:86:5e:bb:
d8:bd:f5:64:d5:50:cc:8d:e3:b6:00:79:b4:a4:6c:
2f:aa:a2:ac:fd:89:c3:83:21:74:2a:43:9e:9e:d3:
5e:0d:f2:d8:87:f4:f4:a5:44:f0:26:13:ae:c0:19:
67:27:2c:5f:88:32:58:19:3f:c8:4b:4d:01:10:6d:
2a:25:ec:b8:61:33:e5:a1:a1:87:cd:32:ba:5d:d4:
13:6c:f7:6f:4b:d2:13:51:9a:9f:f9:9b:c8:a7:37:
74:4c:e3:ea:23:c3:0b:af:12:ef:34:a8:c3:b0:29:
a7:75:17:5a:01:16:fe:b9:74:53:81:bb:03:13:d6:
10:04:dd:bd:c4:61:34:20:9a:76:e4:d0:ae:6f:be:
dc:50:49:88:37:03:f7:c0:45:01:d5:6f:f3:1a:77:
53:16:a1:a5:44:3a:34:95:8c:71:c7:58:b0:bf:52:
9c:b4:fe:df:e0:68:d2:60:45:04:9d:7b:73:9b:69:
fc:1c:53:c8:18:15:8c:7f:89:35:4e:1a:a0:60:2d:
d4:63:1c:2f:2b:f8:13:33:03:3a:bd:00:e1:8b:1c:
21:2f:bf:7e:76:5c:4c:9b:67:c5:11:57:05:b2:3d:
09:10:20:3d:0e:42:8d:84:77:88:03:59:b2:f4:36:
c9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:2C:5F:50:E7:54:E6:24:8B:03:FF:9B:BD:61:27:9F:E3:95:1A:83
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:241::/48
Signature Algorithm: sha256WithRSAEncryption
8f:a0:36:c3:8f:bf:aa:c2:f4:ad:29:06:79:43:7c:b3:27:3c:
fb:b1:a0:37:7c:ba:6e:95:f7:e5:5d:64:81:59:66:53:87:03:
87:d1:80:b3:13:69:76:3e:2c:29:68:43:de:a5:62:95:7a:d5:
c5:24:8f:55:3b:ed:c5:3b:dd:b5:c8:83:ad:60:59:34:bc:b8:
2e:a9:ee:47:24:c5:ee:b1:98:a9:a2:20:0d:c1:54:15:24:3b:
c3:84:e9:6e:31:d3:ff:7e:4c:f9:12:b0:e7:ac:bc:a6:15:39:
57:2a:7d:2d:a2:c4:ea:21:d7:d9:d7:78:5f:a5:37:ff:66:ae:
53:83:f0:e6:b9:39:c6:43:7f:e4:d3:8a:35:3b:6a:d8:f0:c5:
b3:1d:59:b4:61:5f:5a:6c:13:09:4b:d9:3c:5e:28:d0:09:07:
fe:8c:aa:00:09:32:3f:5a:09:72:1d:7f:b2:31:f9:b1:39:b2:
3c:5c:e7:15:bd:2c:50:75:e5:ec:40:e7:ec:80:5c:b0:ea:2b:
22:16:c3:2c:c7:39:ad:63:46:ef:0b:f8:76:c1:b8:74:72:6e:
0d:c9:d3:29:fe:52:05:d9:f3:21:4a:4d:fe:b9:a2:31:03:4b:
01:2d:19:d1:50:ef:7c:05:fd:c0:a7:2b:b1:f4:c6:c2:a8:7d:
93:78:33:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org