Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3238633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: lHYS8hf8td9dnLDvo2SwzBjQ+OpP4wfpQVpRg8gKCtE=
Subject key identifier: AF:B4:6E:AB:B8:A5:44:E4:CB:C9:28:AD:61:B9:86:64:A4:40:56:0B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 34810DFF6DF1C31AB7E41562417F5CF4F6267E2A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:05 +0000
ROA not before: Mon 26 Sep 2022 12:55:05 +0000
ROA not after: Mon 25 Sep 2023 13:00:05 +0000
asID: 59282
IP address blocks: 2400:d680:28c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:81:0d:ff:6d:f1:c3:1a:b7:e4:15:62:41:7f:5c:f4:f6:26:7e:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:05 2022 GMT
Not After : Sep 25 13:00:05 2023 GMT
Subject: CN=AFB46EABB8A544E4CBC928AD61B98664A440560B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3b:b2:85:a4:06:d9:e4:4a:22:1f:1f:0e:3a:
5d:31:59:04:ca:a0:25:7c:99:49:3e:87:66:19:15:
38:fe:c7:cb:06:5e:9a:49:47:6c:37:c0:d2:82:a1:
35:52:76:81:e8:49:98:a3:7e:67:0a:37:28:30:36:
45:f3:f9:db:ab:de:66:fa:3b:98:41:aa:8f:2b:e7:
cc:a5:d3:40:b9:d6:dc:c2:25:f2:57:2b:70:18:a6:
8f:9e:97:88:92:01:e1:47:a9:cb:1b:7b:be:b7:a0:
17:7f:bf:e9:d9:99:a4:49:1e:8e:dd:c8:56:04:89:
36:da:8d:a7:da:c3:bb:fe:93:2b:94:8a:be:67:85:
dc:b4:65:cc:60:51:43:a1:2c:30:39:53:cb:c4:4b:
d8:54:9c:a1:8c:d5:ab:cc:05:5b:ce:e3:72:94:d7:
f7:8d:62:c5:6f:60:ef:e1:0e:9e:bf:6b:07:c8:3e:
83:b4:44:57:9b:13:76:24:51:25:d3:e1:a6:08:ff:
f1:5c:0e:af:7b:a4:56:2d:22:23:2b:cb:62:28:26:
c0:0b:5c:29:90:14:cd:79:12:ff:ed:22:ab:e8:5c:
1b:d1:cd:a1:79:a4:f0:94:8f:7e:d5:a4:09:ee:30:
e0:f8:1b:90:5f:90:72:04:5e:a8:42:a4:07:85:34:
69:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:B4:6E:AB:B8:A5:44:E4:CB:C9:28:AD:61:B9:86:64:A4:40:56:0B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:28c::/48
Signature Algorithm: sha256WithRSAEncryption
d1:0d:6d:9d:9b:b3:4a:21:76:ab:02:c5:08:c0:c5:6f:1c:cb:
8c:bd:39:07:a8:09:14:df:44:e6:3a:6d:92:2f:4a:18:62:eb:
ea:0c:d3:e7:c2:2a:b0:b9:a0:3d:ff:3a:b7:0b:b1:98:a9:7c:
a1:56:ba:89:53:55:88:e0:90:fc:6d:7d:2d:07:5e:a6:26:1e:
65:fa:05:dd:bb:4f:a6:ff:c5:b2:56:73:32:4c:f5:8a:44:0f:
86:45:67:a5:bc:b3:7d:c1:e0:0d:1a:cb:10:d0:ec:f0:f4:3b:
69:99:39:82:c2:6f:8a:43:83:7a:64:81:d2:0f:bf:d9:35:a6:
78:50:b1:8a:17:f9:23:3e:86:8b:9c:9b:9b:b1:8a:7c:cf:d1:
47:b9:27:ad:39:1f:e4:7f:fd:29:b9:37:89:a0:e0:c0:a2:4f:
42:59:74:b3:7a:59:d9:f4:9a:d7:cc:25:6b:32:07:37:5d:1c:
4e:2b:9a:68:7e:f7:9a:b6:03:e8:45:90:af:54:aa:2e:bb:fa:
a5:16:fe:7f:28:5a:fe:f6:f6:a7:18:ab:96:11:2d:9b:43:d7:
fc:e6:ec:07:82:fd:48:da:0e:43:2c:25:ab:43:8e:51:6c:ea:
6a:96:53:fb:ff:08:bd:ba:32:3c:f6:d5:24:1b:6d:e3:ad:0e:
da:bf:e0:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org