Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3236353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: dWrTUA2fN8iHqH3AtQ8NVX0rW6ApXVqDNmJ+UIZ5F48=
Subject key identifier: 15:69:2C:7F:A2:59:3C:70:5C:09:CF:34:37:4C:ED:33:B5:47:FD:05
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5D088AFBB4FFEA19FF95A58BA1D065B37239BB12
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:14 +0000
ROA not before: Mon 26 Sep 2022 09:55:14 +0000
ROA not after: Mon 25 Sep 2023 10:00:14 +0000
asID: 59282
IP address blocks: 2400:d680:265::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:08:8a:fb:b4:ff:ea:19:ff:95:a5:8b:a1:d0:65:b3:72:39:bb:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:14 2022 GMT
Not After : Sep 25 10:00:14 2023 GMT
Subject: CN=15692C7FA2593C705C09CF34374CED33B547FD05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:8b:66:9d:b0:a6:fd:12:93:a8:b2:10:a5:7f:
a2:11:df:a9:48:01:c3:ea:e0:9f:51:aa:a7:4b:2a:
85:5a:6a:fc:53:c5:60:08:ef:3a:04:39:7b:53:51:
fa:e6:63:b4:bc:92:15:fd:a0:7c:42:7b:30:ac:62:
84:0f:96:e3:94:ff:10:5c:11:8e:51:e5:e4:f1:80:
00:44:da:e1:65:41:0f:2a:1e:56:03:be:87:ca:62:
bf:99:04:63:c2:74:16:b0:c0:e7:80:9a:42:5a:a9:
ff:d9:a7:d6:1c:9b:80:ee:2d:5a:5f:01:96:24:a0:
ca:99:58:e1:83:1a:56:7c:11:7c:dc:4c:d6:df:9d:
fb:cd:db:29:9c:5e:0d:ff:26:86:ed:da:20:0e:be:
1e:be:76:b3:52:29:d3:27:a8:76:b7:29:03:e7:9f:
2c:07:93:71:a8:5d:28:e5:2b:9b:c6:0c:a5:b2:5b:
72:64:26:af:f1:82:fb:4e:93:c3:b0:bb:11:e1:12:
b1:32:83:27:31:1a:73:50:63:fe:4a:42:fe:b2:52:
ed:e9:bc:93:1d:79:8d:7f:2f:99:a4:b2:f1:14:c8:
91:56:80:4f:12:0a:59:10:79:8e:f9:94:18:c3:5f:
e2:6f:5a:99:eb:02:05:4a:a1:56:3a:ee:fc:8b:04:
71:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:69:2C:7F:A2:59:3C:70:5C:09:CF:34:37:4C:ED:33:B5:47:FD:05
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:265::/48
Signature Algorithm: sha256WithRSAEncryption
15:2b:40:78:a6:01:fc:ea:4f:b7:8f:8b:36:15:82:ed:58:0a:
b8:17:82:5a:7d:1c:f5:4e:27:d7:ad:c6:32:e8:f0:c2:a2:81:
c4:6a:cf:1f:08:d7:84:d0:c0:e7:cd:63:4f:5d:2b:1f:7f:3e:
19:5b:88:03:69:5c:b6:bc:c1:e3:4e:18:5d:e2:7b:95:c9:54:
ba:6c:75:47:db:fb:a3:88:21:36:80:ed:4d:8e:87:9a:dc:6c:
1f:72:c2:85:52:a5:a5:fd:d8:d4:a1:de:52:a7:2e:32:15:bf:
f5:fb:10:66:c8:ce:4c:79:a4:42:05:27:f6:cf:8c:a4:f1:df:
87:b2:d8:83:4a:f5:7b:9d:6e:31:ba:d3:7b:c0:5b:09:a7:77:
06:a8:90:9f:61:34:cf:72:09:98:29:94:9e:f3:f4:3b:d0:b0:
41:ba:cd:47:73:be:f7:46:05:cc:d1:39:d0:cf:a1:df:25:31:
f4:46:51:1a:7f:b1:0c:33:d5:d5:25:60:ca:47:0c:ec:72:32:
fb:27:10:c4:6b:24:32:43:2c:cb:6e:af:32:d2:3b:56:29:98:
1b:c8:b3:76:4b:a5:d3:f1:50:19:41:68:48:33:0f:09:6e:7f:
b9:10:f2:21:c1:1e:e6:83:fe:c1:94:b1:1f:cf:51:e2:a3:30:
4c:5c:87:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org