Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3234393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: KoY5xOssiAXnTDoxZTe+LpQpb5BjMSi2y3AreYTeNEs=
Subject key identifier: 60:E0:D9:CF:28:E2:31:C0:CA:C0:A2:D0:4C:C7:70:BC:3F:E3:E8:1A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 08A48CA0A278EDC5FBA125A18BD2068102D19F18
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:25 +0000
ROA not before: Mon 26 Sep 2022 09:55:25 +0000
ROA not after: Mon 25 Sep 2023 10:00:25 +0000
asID: 59282
IP address blocks: 2400:d680:249::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:a4:8c:a0:a2:78:ed:c5:fb:a1:25:a1:8b:d2:06:81:02:d1:9f:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:25 2022 GMT
Not After : Sep 25 10:00:25 2023 GMT
Subject: CN=60E0D9CF28E231C0CAC0A2D04CC770BC3FE3E81A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5c:ad:82:84:72:a0:7b:fa:77:cd:b9:d9:5a:
27:33:f0:50:82:f2:7e:ee:be:90:1a:8b:17:9e:11:
bb:dc:7c:8e:e1:7d:90:a6:64:a3:7b:aa:38:d4:45:
4a:f4:8d:c3:e2:06:94:f1:49:ea:a2:f2:8b:00:60:
d6:e4:4d:c5:43:3e:47:14:88:c3:e3:eb:bc:5e:45:
73:ac:6f:76:97:41:8f:70:1b:8c:2b:b5:d0:70:07:
49:e7:ac:cd:6a:5f:56:3b:59:27:85:2a:17:ee:7c:
65:c6:12:72:d5:01:f2:88:51:c0:32:b6:35:3c:5d:
1a:c8:a2:bc:56:1c:cc:53:f8:21:0c:d7:95:09:43:
fa:53:59:e5:e4:c1:0d:4c:6f:a4:87:7a:ca:28:dd:
21:62:9e:7c:a0:8a:21:fa:55:87:5c:d2:c3:43:94:
1a:ab:ad:00:15:45:ce:52:5f:3e:bd:5b:2a:23:77:
c8:e3:a6:45:60:79:68:d0:78:5e:50:27:bf:d9:e2:
70:d4:8f:0f:ac:c1:3c:70:c3:be:0b:cb:91:e5:7f:
33:37:d0:4c:c8:c0:96:fd:01:20:da:38:0d:e7:91:
ae:4f:d6:79:c2:95:7e:dd:f5:f2:a8:da:26:bb:f9:
48:91:47:e6:c8:77:27:c3:e2:04:0b:d1:fc:0a:f0:
f7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:E0:D9:CF:28:E2:31:C0:CA:C0:A2:D0:4C:C7:70:BC:3F:E3:E8:1A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:249::/48
Signature Algorithm: sha256WithRSAEncryption
1a:76:de:77:4c:6a:db:69:78:09:40:f7:12:bd:83:32:9a:c3:
af:c8:32:d6:10:1f:c9:80:38:73:7e:c9:eb:30:d2:8c:de:0d:
c4:61:9c:2c:45:75:98:62:d9:82:1d:e2:2e:be:04:68:0b:3e:
41:4e:33:cd:a8:54:4f:ad:3f:0e:c3:b9:37:ea:25:44:66:7e:
58:c4:00:3a:dd:50:22:01:dd:49:eb:19:23:01:d3:43:fa:d4:
b9:8b:d8:5f:95:fc:44:c9:2d:70:c3:8e:1e:57:78:da:9d:eb:
05:c2:ad:47:e6:9b:41:f6:a3:2b:a0:c3:3d:f4:e9:9e:29:b6:
fd:1e:fc:71:1a:53:e2:3d:a6:12:66:15:62:b8:44:f9:c8:48:
66:c0:fe:a2:a9:bc:72:ea:79:7b:a2:22:56:c1:34:02:20:75:
56:a8:6c:cb:56:36:56:d1:70:10:a4:42:cd:1b:de:1d:5c:93:
85:f1:73:f2:c1:ac:57:06:9a:ee:b0:8c:36:1b:85:36:91:6a:
41:e9:ba:54:6a:75:dd:6e:2c:3f:b4:41:32:60:ff:e1:07:a0:
06:73:4e:0e:7c:9b:b0:08:b3:48:52:c9:b9:56:10:c2:4a:e3:
52:76:43:53:ab:76:7a:4f:3c:14:e2:e9:8c:02:f1:0e:f4:a1:
a9:1f:d3:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org