Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3238643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: FmCYWw0tUrpBgqlz0fm7Z9o8/RB/wL3CRPqAncPFx48=
Subject key identifier: 96:F2:44:D7:C7:00:90:89:D6:78:BD:4D:6C:56:44:74:CE:0E:F0:3A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0BA1ABC76C4AB3DED47815ED38E2CE2D35ABC508
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:15 +0000
ROA not before: Mon 26 Sep 2022 12:55:15 +0000
ROA not after: Mon 25 Sep 2023 13:00:15 +0000
asID: 59282
IP address blocks: 2400:d680:28d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:a1:ab:c7:6c:4a:b3:de:d4:78:15:ed:38:e2:ce:2d:35:ab:c5:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:15 2022 GMT
Not After : Sep 25 13:00:15 2023 GMT
Subject: CN=96F244D7C7009089D678BD4D6C564474CE0EF03A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e0:20:61:f2:dd:71:80:2c:27:e9:60:94:0c:
11:e6:00:cc:77:72:6c:f9:58:5b:f3:1c:76:00:be:
78:9b:75:6d:a2:04:ff:b4:35:6b:7b:f3:91:b2:df:
32:05:34:a7:6f:58:c5:ca:85:8a:ce:cd:7a:53:62:
e9:ee:34:fc:54:54:48:1c:6c:0f:32:d5:1d:fd:ec:
17:4b:bc:00:be:b4:a7:6f:72:ac:c0:8a:8a:32:5d:
f5:8a:fa:18:67:66:87:70:cd:aa:9d:64:36:11:a9:
25:51:0a:fe:f3:61:e2:8d:44:c2:b2:43:fc:2d:1c:
c0:4b:f3:70:c8:63:ca:01:c0:dd:87:bb:d1:bc:a4:
7d:0f:e0:f4:30:48:39:80:b9:bb:9d:65:87:d2:ed:
cf:0b:1f:e3:03:2e:c3:a5:b6:bd:76:e0:d7:76:06:
f0:24:5b:a8:c0:e8:d2:fb:ec:21:73:93:d2:68:65:
5a:f4:41:7c:8f:8e:11:6b:55:d3:09:c6:e3:ba:3c:
48:8f:29:67:99:57:f1:65:f3:f0:17:d4:ef:81:4a:
f0:a0:f0:64:9a:3c:56:91:05:33:2e:74:6a:4e:3c:
ee:54:47:85:6f:16:81:78:46:7b:1a:fd:f8:51:c8:
08:d0:93:a7:c2:1d:74:0a:64:92:05:ef:71:99:30:
98:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:F2:44:D7:C7:00:90:89:D6:78:BD:4D:6C:56:44:74:CE:0E:F0:3A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:28d::/48
Signature Algorithm: sha256WithRSAEncryption
5e:f8:05:8b:62:eb:ed:40:d6:f0:70:25:e6:7b:85:2d:d0:cf:
39:7b:69:60:e0:ec:4b:8f:4d:9c:0f:d3:6e:17:88:a4:fa:1d:
0f:8e:47:bc:3c:b1:fa:02:91:ab:87:d8:9f:7a:f9:f1:d5:4f:
29:41:d0:d1:6f:2a:a1:72:a6:2d:0d:18:5f:d5:40:32:cf:b3:
f1:8d:38:54:f9:e1:01:3f:c0:b2:d5:73:86:3b:40:aa:a2:65:
11:06:6e:35:d2:85:f5:9d:29:72:20:95:79:4b:dc:2c:24:62:
4e:35:ee:86:8f:83:1c:f3:56:3d:10:34:9a:c2:04:db:77:08:
d4:d0:48:df:b4:1d:18:4b:f2:7e:83:64:4b:de:38:23:a9:85:
2a:88:ed:4a:d0:2d:73:a9:4a:cb:39:30:6e:26:ce:2e:d2:87:
d2:47:2f:44:98:5a:28:62:28:b8:f3:68:0e:3f:66:07:91:92:
9a:57:11:75:0e:d2:43:38:e9:35:f1:b3:66:14:11:4c:28:89:
aa:f3:d0:5d:ed:38:e7:92:ec:0e:db:e7:d5:89:e7:57:af:c3:
cf:87:2b:b2:d6:be:38:58:d5:47:90:db:0b:3f:69:da:0b:1b:
ce:5d:2d:1d:d8:3c:d3:dc:eb:72:a1:7e:6c:fc:90:1c:d9:20:
3b:3c:83:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org