Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3236393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: kGpQjKV18erN509dRvNdeDKNe7jOwnYPyM37Ij1+ESc=
Subject key identifier: 65:2A:8D:66:0F:B4:60:D8:5F:3B:F1:3B:C2:41:E7:6C:CD:BF:8F:63
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3F54D01CCDAF794E1F9CB4D1B0F2F53AD7E4261F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:32 +0000
ROA not before: Mon 26 Sep 2022 09:55:32 +0000
ROA not after: Mon 25 Sep 2023 10:00:32 +0000
asID: 59282
IP address blocks: 2400:d680:269::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:54:d0:1c:cd:af:79:4e:1f:9c:b4:d1:b0:f2:f5:3a:d7:e4:26:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:32 2022 GMT
Not After : Sep 25 10:00:32 2023 GMT
Subject: CN=652A8D660FB460D85F3BF13BC241E76CCDBF8F63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:90:62:f6:d5:9d:47:e3:04:c1:ff:e1:92:7f:
b3:e0:0e:a7:86:41:df:15:0b:96:90:5d:3e:b1:89:
a3:2c:e8:df:e2:7a:35:c3:ec:cc:e2:e4:34:20:6b:
0f:2b:9f:72:01:7f:4a:b4:37:65:6a:f5:af:5d:75:
83:5d:7d:d8:0f:cb:e6:20:71:55:2a:8a:56:41:82:
b9:5f:b9:1a:28:04:4b:1b:27:9e:01:f8:7a:b2:e7:
92:80:a7:d8:37:06:0b:e7:28:36:ac:f4:b0:b7:63:
d6:11:af:ad:f5:5f:42:e2:c6:8a:4d:65:d1:d8:54:
3c:08:3a:03:ad:53:70:37:4e:8f:97:81:83:10:80:
5a:1c:e9:49:5c:4b:78:90:38:51:29:b1:51:51:c3:
df:c6:7b:ba:67:f2:09:bd:64:c1:47:28:eb:eb:6b:
a1:15:de:bd:01:16:3a:e4:79:4d:a3:13:e3:b1:b5:
6b:e8:be:e6:73:d5:71:d7:95:73:bb:c2:ea:84:f5:
e6:c7:15:e4:99:b0:aa:8b:2e:1d:f0:c6:fe:ca:19:
7c:06:f0:b6:9c:47:c5:44:78:ec:b7:c7:73:1e:01:
34:a5:a2:69:c0:28:07:13:e5:f4:50:c2:ad:d3:cd:
7b:dd:7b:f5:0d:b6:03:97:8d:2b:6f:db:46:c2:81:
e2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:2A:8D:66:0F:B4:60:D8:5F:3B:F1:3B:C2:41:E7:6C:CD:BF:8F:63
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:269::/48
Signature Algorithm: sha256WithRSAEncryption
5a:0b:c5:29:92:0b:36:80:00:2d:92:0a:f3:31:9a:1a:da:2f:
ea:79:73:1f:0a:dc:ca:f5:92:4b:2a:b3:c1:5e:c8:03:c1:59:
cd:ca:5e:8a:21:e2:29:7d:d9:a4:61:8d:2f:36:0b:68:7d:3e:
7c:a6:4f:f7:e3:0c:ee:8c:d2:b7:23:18:e6:d2:90:4b:52:a7:
74:b4:0e:32:81:04:9b:0f:2d:40:4e:f5:e3:5b:e2:3f:d7:fd:
3c:77:31:34:1d:4f:03:02:34:6a:a9:b6:84:b9:19:c7:55:da:
5d:c8:cb:31:c9:7f:37:29:6a:e0:8a:8f:c5:81:c3:31:dd:0b:
dd:da:77:0a:05:ef:8d:33:a5:00:62:eb:74:54:37:5b:19:b9:
96:3e:0b:22:96:1b:18:3a:33:68:37:45:e2:1f:81:9f:85:d5:
d3:67:04:de:29:7f:20:1f:64:9b:d9:9b:75:0b:1f:b0:87:21:
70:8e:83:ac:5d:4b:fb:5b:fd:4b:ac:88:fa:b0:93:1e:0b:c1:
c6:62:37:cc:de:f9:ac:38:d7:a0:83:44:51:d5:c5:83:40:2a:
f5:f9:2c:c4:bb:1a:07:e1:15:f8:a7:67:b1:10:b5:20:2b:38:
a6:5c:c7:ad:bb:13:73:16:d4:9e:82:2b:cf:6b:6f:a8:09:31:
eb:4e:b4:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org