Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3237633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: cT3GY7Se6s4ssdjoGTY8T1DtIm2pDHSA7YN7Txgdv/0=
Subject key identifier: C2:B2:08:E6:81:5D:7E:83:65:2F:68:A9:24:8B:B6:F9:EE:66:69:25
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 473780BDF8BE4331C157810F29263BB3890EF7A0
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:08 +0000
ROA not before: Mon 26 Sep 2022 12:55:08 +0000
ROA not after: Mon 25 Sep 2023 13:00:08 +0000
asID: 59282
IP address blocks: 2400:d680:27c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:37:80:bd:f8:be:43:31:c1:57:81:0f:29:26:3b:b3:89:0e:f7:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:08 2022 GMT
Not After : Sep 25 13:00:08 2023 GMT
Subject: CN=C2B208E6815D7E83652F68A9248BB6F9EE666925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:23:a8:a0:79:81:5a:5f:10:76:7a:d8:a4:d0:
72:1d:ae:e6:63:0e:81:09:8f:94:ed:fa:7e:ee:a8:
f8:9a:59:28:55:de:b5:4f:b1:98:49:12:7d:3e:f0:
88:ff:76:47:f1:10:1f:58:7a:56:7d:2b:b1:b9:d4:
c3:5d:ac:b8:15:84:eb:df:09:c8:45:5e:70:fb:bd:
0e:57:2e:c2:d7:42:b7:9d:5f:b5:2a:49:db:ca:ec:
38:01:a4:af:fe:bd:76:35:89:a0:1e:9e:fd:db:6d:
8f:11:49:1f:9e:cf:68:db:ab:f0:72:20:da:c2:08:
1a:ae:c9:bc:0a:66:91:88:00:d0:85:23:b3:8e:0e:
b6:10:4e:39:f0:af:6a:fa:d8:f5:23:45:ee:74:d7:
bc:dd:10:67:02:e0:fe:84:21:d9:5c:14:67:ce:0c:
d6:33:6a:d8:a9:8c:ed:b5:f2:bc:75:5c:32:3a:88:
f4:e7:f8:ac:d0:47:68:3c:da:a6:bd:e1:60:f1:72:
49:7b:7b:66:12:22:b2:bd:9c:eb:87:2d:b7:b8:77:
a2:27:db:e2:6b:5a:14:c2:8b:97:ce:80:d6:b2:ae:
fe:b9:4a:d3:64:8d:81:73:01:f3:c0:61:d5:10:87:
2c:52:33:0c:54:9a:7c:be:ac:34:23:36:5b:a0:2c:
8f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:B2:08:E6:81:5D:7E:83:65:2F:68:A9:24:8B:B6:F9:EE:66:69:25
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:27c::/48
Signature Algorithm: sha256WithRSAEncryption
57:c6:73:e2:0d:9b:6c:7a:8e:55:51:bf:b7:06:4e:d7:c0:a6:
eb:20:a5:6e:6e:bc:1f:33:5d:83:f9:3e:86:4f:37:95:22:06:
b8:64:5c:70:06:15:e0:56:86:d4:8c:ad:a0:89:c4:76:74:00:
44:52:be:3f:b7:35:e9:3e:09:3b:7a:b6:86:a7:b4:c4:34:90:
30:09:63:c2:bb:8e:94:1b:c5:aa:b6:96:fb:a2:3d:37:96:bb:
88:e6:3c:16:9c:30:4a:a0:c5:29:9f:c3:d0:15:35:f9:0e:07:
55:7b:20:2e:2a:91:4f:f3:54:f8:45:5a:0c:19:05:8b:77:f4:
fc:67:47:9a:85:cf:b8:1c:6f:27:98:53:d0:5a:72:82:df:be:
da:b1:76:50:9c:a7:6c:71:87:60:6a:59:10:fa:d1:b5:55:05:
4e:07:2e:d7:67:e2:01:8f:24:80:b2:d5:26:e1:2b:b7:a2:8d:
a6:2b:c6:c0:db:fe:2e:df:aa:50:d0:77:78:4e:92:6a:65:48:
21:24:33:11:fc:52:ae:12:c3:4e:3f:6c:20:03:bd:1e:8f:48:
ff:34:f2:81:97:ba:fa:72:c3:a3:49:bf:79:cd:df:da:b6:75:
c8:c8:3c:a5:94:e7:11:fa:2e:fc:53:c6:08:b1:2f:83:db:61:
55:d9:b8:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org