Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3237353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: aJ6y0Bowk749M1NFVdqeQRiaZLZqDs5/7j40ZPD8MjQ=
Subject key identifier: 07:96:08:8A:30:93:7E:C1:FA:22:AC:CB:D8:8D:21:DD:3B:6C:97:1C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 32FF9E9E38D7FC065BF963FB57A0BF63C1D32F2C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:04 +0000
ROA not before: Mon 26 Sep 2022 12:55:04 +0000
ROA not after: Mon 25 Sep 2023 13:00:04 +0000
asID: 59282
IP address blocks: 2400:d680:275::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:ff:9e:9e:38:d7:fc:06:5b:f9:63:fb:57:a0:bf:63:c1:d3:2f:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:04 2022 GMT
Not After : Sep 25 13:00:04 2023 GMT
Subject: CN=0796088A30937EC1FA22ACCBD88D21DD3B6C971C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:fc:a7:4e:96:60:24:d1:ae:76:55:fc:4f:ea:
68:d3:c9:61:81:f7:29:b2:cc:04:95:3b:f6:1f:eb:
ab:48:9f:a8:89:5c:0a:88:56:32:07:9a:1a:70:8a:
03:bb:3e:1e:53:32:22:32:63:6d:31:ea:72:78:12:
0f:2d:e4:4b:38:08:21:a0:b5:bd:78:8c:2e:ff:0b:
c7:d0:75:a5:01:ba:a2:98:08:ce:58:db:8a:7b:64:
93:ed:f2:79:c2:02:b9:53:90:53:69:9b:af:0f:fc:
9c:bc:61:28:0e:e0:0a:a6:85:9c:41:2b:16:5d:77:
58:7c:08:49:70:fa:a0:ca:59:7e:7b:45:40:43:1a:
07:05:4c:22:5c:f0:b7:99:e4:7b:12:49:4a:bf:50:
3b:24:f3:af:38:cb:2e:ab:14:a5:f7:7d:bf:35:67:
40:ae:28:77:fe:0e:0f:2d:5a:5a:05:6a:fb:44:bb:
8b:b6:c5:60:b6:94:17:ab:3c:fd:f4:9b:90:5b:c0:
32:84:b6:93:62:55:ba:6c:09:d2:94:d4:e9:73:cd:
e1:23:86:dd:08:ad:99:d6:01:9e:36:77:09:44:a9:
b7:2b:39:ae:6c:0c:e9:52:6f:46:a4:d9:e4:8c:11:
ea:1a:18:fe:da:76:87:23:17:84:39:fb:0e:ce:d8:
68:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:96:08:8A:30:93:7E:C1:FA:22:AC:CB:D8:8D:21:DD:3B:6C:97:1C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:275::/48
Signature Algorithm: sha256WithRSAEncryption
24:8d:62:ad:9e:0e:76:0a:c2:99:e2:0a:2a:02:5b:eb:3f:af:
9f:27:c0:0d:f3:4e:4c:c0:2f:2d:73:7d:a0:40:d9:3c:73:68:
cb:c4:fb:58:9f:0d:22:a3:d3:c5:86:f1:54:8f:e2:80:a9:2c:
44:6a:90:7c:3a:69:78:af:94:11:2b:15:80:0c:bf:7c:be:32:
f7:21:7a:51:bc:77:cd:9b:25:1e:f2:94:16:d6:09:37:8f:6d:
63:2b:a0:c4:75:ce:c7:86:e8:97:53:f6:d1:39:6a:70:5a:d6:
da:de:97:93:54:47:f4:19:c0:81:9e:9f:de:6b:d2:bf:86:99:
18:2c:d6:30:62:df:5f:e7:6c:e1:22:6e:da:45:fc:ed:1c:71:
d6:a2:77:03:20:61:e5:29:ca:49:93:f3:24:8c:bf:e1:49:fa:
11:22:ac:6b:ff:57:6c:3f:b1:de:ad:5f:63:3b:66:59:f5:eb:
c8:a0:1a:b8:39:da:be:be:be:e2:16:ff:46:95:e9:35:6e:b3:
a9:36:0f:7d:a0:9e:e5:3b:dd:44:84:ec:dd:f1:34:e1:c2:15:
b2:ef:de:e3:30:e9:3f:22:90:c2:46:a6:56:20:00:16:4b:63:
82:a8:51:36:e7:98:15:eb:fa:0f:4d:df:ec:54:10:ad:50:33:
cd:ce:23:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org