Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3237623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: SEMUcRsPXF6/GWXzfYQmBnOBr6w2R0L31eVmYeVRk6M=
Subject key identifier: CB:97:84:4A:B0:29:40:E1:95:EF:FA:37:7D:14:53:34:9B:E9:84:56
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 755A27A59B154331E96AD7537076BFA908EB560B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:06 +0000
ROA not before: Mon 26 Sep 2022 12:55:06 +0000
ROA not after: Mon 25 Sep 2023 13:00:06 +0000
asID: 59282
IP address blocks: 2400:d680:27b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:5a:27:a5:9b:15:43:31:e9:6a:d7:53:70:76:bf:a9:08:eb:56:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:06 2022 GMT
Not After : Sep 25 13:00:06 2023 GMT
Subject: CN=CB97844AB02940E195EFFA377D1453349BE98456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:21:17:74:0a:03:b3:92:02:9f:b2:2c:70:e9:
b5:b4:0c:bc:24:cc:4a:b8:e5:63:06:c0:ae:f9:47:
0f:6b:e5:55:5c:aa:56:b5:e9:e7:02:52:72:cf:72:
72:14:e4:78:08:bb:e9:44:82:cf:86:34:a4:c2:7e:
a0:fc:e0:f5:bb:a7:03:14:47:ae:0c:26:0c:85:90:
ac:60:98:33:06:81:dd:5d:c4:e7:d5:41:04:37:a8:
9d:08:9e:37:57:c0:3e:e9:21:3b:db:4f:8e:b4:0a:
60:1e:1a:24:2b:04:15:63:c8:01:ec:37:b9:db:e6:
4e:d3:0b:b4:9b:37:27:97:65:68:14:35:65:a1:a6:
a9:5f:cf:ff:df:68:61:73:b9:7c:61:e2:8a:d4:d9:
57:9c:2a:4a:73:7d:95:37:09:60:31:f3:59:2e:be:
58:24:1e:dc:57:cd:ee:5a:f5:7f:73:f9:51:e1:db:
ce:3b:3d:da:b8:f0:70:33:c1:b3:a3:2f:eb:ab:9b:
81:3e:91:07:ab:ac:e7:f5:7b:88:24:d2:45:da:5a:
81:41:d4:49:46:91:a3:0d:88:33:1d:2b:cc:21:ae:
91:6a:0e:1d:d9:9a:e8:cb:a0:b5:bd:d8:0d:27:14:
ca:80:0a:9e:51:90:3a:5b:5d:33:b6:96:84:4f:99:
18:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:97:84:4A:B0:29:40:E1:95:EF:FA:37:7D:14:53:34:9B:E9:84:56
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:27b::/48
Signature Algorithm: sha256WithRSAEncryption
b1:c1:1a:a5:ec:60:05:b5:07:ff:a3:ab:bb:03:2d:f1:f0:21:
bf:13:ae:51:be:cc:37:0b:19:50:33:88:06:dc:fa:a2:67:93:
d3:6d:94:a6:fc:3d:db:61:5f:9b:a2:70:90:3d:b8:ba:61:ef:
fa:8f:dc:f8:ff:bb:c1:59:66:96:84:7c:ca:7f:58:2c:59:0b:
6f:ee:8e:1c:a2:8c:b8:32:58:31:2b:0a:46:ae:10:ce:6f:f1:
11:a4:59:b5:d1:c3:f4:73:f2:8c:ed:f3:f1:85:80:6b:25:25:
e6:e7:d7:00:12:15:53:2d:09:95:32:bb:bd:4b:74:59:f7:b6:
5c:48:25:ff:91:46:8f:cc:9e:c7:c8:c4:86:a6:8a:03:19:c1:
6a:27:f6:2e:5f:94:32:9e:22:04:1a:28:98:83:82:14:fb:a8:
1a:4e:50:fa:c5:cb:ca:9d:a0:46:ff:41:41:a8:69:50:7b:87:
4a:f5:a8:9e:47:fc:00:27:59:13:f0:21:95:68:81:25:97:fe:
d3:fd:93:0e:27:6f:2e:85:63:1c:dd:a3:b9:4a:d7:dc:97:cc:
5a:63:3e:52:77:88:09:e2:3f:69:3a:60:fe:50:4d:45:3f:37:
fe:57:b2:5f:3e:76:94:a7:cc:fd:67:56:8e:ba:74:a3:20:43:
c1:84:e3:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org