Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3236653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ZP5D6ZmlG9WJIadUzhm6eRoMec5wQN7ipDHiykmyy90=
Subject key identifier: 78:71:CD:3F:7E:CD:0F:BA:B2:E4:86:0E:CB:E6:98:6D:18:50:18:57
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3C4A53DF03E8FEAC7F8BEE3D004B6B54713DFD59
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:20 +0000
ROA not before: Mon 26 Sep 2022 09:55:20 +0000
ROA not after: Mon 25 Sep 2023 10:00:20 +0000
asID: 59282
IP address blocks: 2400:d680:26e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:4a:53:df:03:e8:fe:ac:7f:8b:ee:3d:00:4b:6b:54:71:3d:fd:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:20 2022 GMT
Not After : Sep 25 10:00:20 2023 GMT
Subject: CN=7871CD3F7ECD0FBAB2E4860ECBE6986D18501857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:95:e0:e9:dd:9c:50:b1:25:2f:57:2c:be:f0:
cd:6a:97:3c:b9:ce:80:81:32:89:42:11:af:0a:0f:
23:6b:19:2b:6c:77:ac:57:e8:a4:7a:74:7e:ee:14:
60:a7:e6:63:67:a7:d0:8a:5a:71:a4:58:01:33:b5:
a3:76:42:1f:31:52:86:cb:a0:dc:22:56:eb:54:71:
d4:9d:4b:e1:52:96:75:06:28:7d:b3:12:2e:25:57:
29:26:b9:23:49:e9:43:4a:7c:5e:63:48:f1:b3:09:
d0:17:49:93:7d:1d:17:5d:12:33:3e:e2:92:d3:35:
22:19:14:d8:6b:27:e8:19:04:23:63:4a:2d:9c:f8:
e5:eb:3a:c6:34:b7:a8:de:1d:e7:9d:57:30:3c:67:
b3:ee:98:74:83:36:18:1c:52:f3:d8:49:cf:e7:1f:
26:72:f9:2c:82:65:cb:c6:5e:7e:5e:f9:0d:09:ae:
a9:32:71:36:4c:96:74:c8:bf:c1:91:52:33:6d:47:
12:ed:d9:ee:fb:61:fd:45:5b:36:ed:51:df:e7:f6:
89:87:f5:e8:e8:e4:2f:e0:7e:6e:0e:14:79:50:8b:
e9:b4:dd:05:4f:3d:74:8d:b4:32:cf:f5:5b:2c:90:
de:fe:66:bf:a8:d3:1f:b4:aa:80:d5:d1:8e:13:9f:
34:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:71:CD:3F:7E:CD:0F:BA:B2:E4:86:0E:CB:E6:98:6D:18:50:18:57
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:26e::/48
Signature Algorithm: sha256WithRSAEncryption
2e:0f:a3:cd:98:5f:51:d3:87:95:6d:03:af:df:b6:e4:89:dd:
9c:0f:0f:37:51:8c:47:a7:65:ca:76:fb:ab:80:8f:d9:66:0f:
42:7d:2c:25:f0:02:c6:28:b5:6c:59:cf:b6:52:cb:3b:03:42:
ef:19:e2:de:70:dd:31:4e:f3:ff:08:da:81:c8:6a:2c:bb:7d:
1b:9b:94:33:7a:f5:c3:1d:89:43:dd:c9:e3:12:25:61:56:47:
f4:48:04:7d:00:2e:1e:f8:80:86:23:fc:fa:0e:1b:a8:e6:17:
4a:51:a6:03:ee:66:81:d2:cd:1d:01:11:4a:31:47:4a:de:3d:
17:52:de:c8:6b:f0:9c:50:b3:58:66:ad:ad:1f:00:b4:53:8d:
4c:f0:d9:94:41:b2:48:fd:d9:89:70:48:1b:54:e9:83:89:82:
ca:d7:fe:4f:43:70:8b:96:c3:1c:4b:f6:ff:fa:c1:99:6c:92:
27:bd:dc:07:7f:55:f5:23:71:f0:1d:ad:6b:97:59:ba:d8:10:
f0:fe:47:3d:c3:57:07:34:6b:fe:ef:f3:30:9e:f0:5e:1a:db:
92:73:6c:15:8b:75:5b:eb:de:2f:6d:50:d1:65:84:3d:da:ed:
bb:07:d6:08:9c:8e:73:9d:0c:8d:e3:90:c1:ae:12:19:24:c7:
8a:1a:11:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org