Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3235383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: X/mf6luPSZsblv53Ineu3xKODxZdstm4mOyF8Bum79o=
Subject key identifier: AF:76:D6:49:EB:81:20:6A:AC:8C:10:1D:C2:E7:D6:6D:BE:3C:92:9F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 59CB644708DDBFEB6DD9D4AC2251CD4B70CBCE9C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:02 +0000
ROA not before: Mon 26 Sep 2022 09:55:02 +0000
ROA not after: Mon 25 Sep 2023 10:00:02 +0000
asID: 59282
IP address blocks: 2400:d680:258::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:cb:64:47:08:dd:bf:eb:6d:d9:d4:ac:22:51:cd:4b:70:cb:ce:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:02 2022 GMT
Not After : Sep 25 10:00:02 2023 GMT
Subject: CN=AF76D649EB81206AAC8C101DC2E7D66DBE3C929F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4f:33:b5:c4:b7:10:47:56:7d:a6:fd:4d:2d:
55:eb:fd:d9:8f:f4:14:f5:de:3f:4e:86:6f:cb:b8:
2f:1a:67:71:49:69:2a:b5:65:3d:93:c1:a5:be:18:
80:ec:9c:80:ce:43:19:5a:b9:b8:32:3a:6e:a1:bf:
7d:62:af:11:30:19:6f:14:35:09:c7:b8:7b:29:2c:
38:05:09:bf:80:29:1c:f7:ec:7a:19:40:83:dc:15:
eb:8a:4d:72:4e:bd:00:41:5d:39:cb:07:c8:3d:d9:
fb:51:ed:0d:c9:16:3f:84:c1:f3:8c:49:58:28:6e:
a8:cf:51:cb:30:7a:47:5b:e2:c9:51:a7:07:13:5f:
28:00:63:6f:be:c5:a3:ef:88:eb:68:c1:f7:c7:b1:
f7:65:83:cf:a7:ae:fd:0a:91:e8:b7:25:86:0b:4a:
ab:67:a9:65:3d:45:5d:f6:78:24:d0:17:97:36:a2:
06:07:f9:08:aa:5b:33:77:5c:97:23:33:50:a1:c1:
f5:af:d2:d1:8b:2e:07:5e:c9:ec:2e:62:f5:b0:d4:
5a:41:ce:a5:96:fd:db:e3:c2:c0:b4:3a:80:e2:ff:
81:fb:a1:15:0a:f2:85:d7:76:26:f5:1d:6a:88:07:
3a:4f:ec:67:49:63:be:87:f3:01:96:39:8c:e4:cc:
71:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:76:D6:49:EB:81:20:6A:AC:8C:10:1D:C2:E7:D6:6D:BE:3C:92:9F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:258::/48
Signature Algorithm: sha256WithRSAEncryption
74:b4:df:be:7b:cb:4f:3c:6d:c9:10:ef:73:01:77:7c:79:f3:
fd:06:a3:5b:6d:05:29:83:e8:7f:46:ae:b6:e9:68:1b:2f:7f:
bc:40:98:1b:c9:85:2e:81:13:8b:c8:85:9d:40:f2:0a:49:f0:
cf:50:bd:53:86:52:24:76:9a:b7:72:59:72:4a:92:90:55:2c:
4e:60:56:3e:c4:66:fa:5e:ed:0e:c3:95:8b:c1:01:4e:ac:bd:
9f:ea:b3:5a:03:7f:a2:12:e1:70:e7:64:47:ec:9a:1e:c5:eb:
29:83:5a:6d:3e:13:45:a3:94:4f:7b:b8:51:c9:67:86:ff:79:
61:b8:53:af:c8:99:09:4a:8a:0b:bc:bb:34:a2:76:fe:ff:f3:
33:eb:ee:81:79:82:b1:cd:ef:71:6e:dc:b6:1f:bf:8f:c3:a5:
f1:57:a1:10:55:5b:be:b5:7f:5d:15:92:e9:82:ba:0a:be:91:
55:a0:70:6a:dc:c3:95:30:d8:1f:a6:bd:01:22:b6:9c:34:29:
b5:cd:23:59:10:f6:f4:f6:82:db:14:62:44:b8:4a:26:0a:ce:
2b:66:ad:3b:21:24:1b:48:58:e2:f7:fd:56:4e:f3:99:39:f8:
65:0b:b9:e0:ec:1a:08:8c:b4:63:ad:2d:5a:07:1f:fc:ed:b7:
22:93:22:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org