Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3239613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: zeXx38RE9exC3C5uEzrkFvpfs39T+kdac9Ckf6/nHtI=
Subject key identifier: BC:AD:CA:8A:CD:89:C3:DA:F8:59:A4:BC:66:76:B0:8D:5B:DC:79:BB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3ED717933919D3F487F24F5AFE84DA15A288482A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:01 +0000
ROA not before: Mon 26 Sep 2022 12:55:01 +0000
ROA not after: Mon 25 Sep 2023 13:00:01 +0000
asID: 59282
IP address blocks: 2400:d680:29a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:d7:17:93:39:19:d3:f4:87:f2:4f:5a:fe:84:da:15:a2:88:48:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:01 2022 GMT
Not After : Sep 25 13:00:01 2023 GMT
Subject: CN=BCADCA8ACD89C3DAF859A4BC6676B08D5BDC79BB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:62:3b:c7:4d:fe:85:16:eb:ef:d6:4e:3f:6a:
c9:2d:95:1a:d8:48:47:32:32:9a:c4:9e:c3:23:5a:
65:c7:fd:8b:a9:d9:81:b8:0f:e1:73:65:dd:04:e9:
b5:30:3b:3d:9b:7a:4a:4f:f0:61:9b:b1:25:0b:75:
7c:0b:01:20:e1:c8:38:4d:40:15:0d:8c:e0:92:86:
51:42:40:df:b8:f7:21:20:42:aa:07:ba:1f:47:8b:
d6:87:76:d2:01:a8:75:d7:63:1f:34:58:34:d0:61:
ab:5f:be:de:9b:3b:e0:7f:5a:9d:d3:58:6b:11:2a:
90:14:15:87:5b:b2:83:85:f3:50:6a:c5:1f:8c:90:
e2:5c:e0:7a:8a:e0:b7:15:97:ff:e9:22:63:d7:c2:
be:f0:5c:13:b7:ab:5b:87:6a:1f:7a:ba:f5:ec:63:
e5:53:85:4f:8e:29:43:60:22:62:af:f3:14:f0:70:
b0:b3:a1:d3:b1:24:3a:ab:48:c3:b2:16:87:46:31:
d4:08:9a:c6:d9:f5:36:45:ae:0a:50:40:eb:27:89:
0a:4e:58:c6:93:99:61:3d:04:09:01:0f:ff:0a:a9:
a5:e5:49:2f:a4:ae:fe:34:78:05:b2:d6:c0:44:e4:
7b:55:f1:80:a1:93:c6:a5:9f:9f:d1:ff:09:0f:8d:
a2:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:AD:CA:8A:CD:89:C3:DA:F8:59:A4:BC:66:76:B0:8D:5B:DC:79:BB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:29a::/48
Signature Algorithm: sha256WithRSAEncryption
51:e2:6d:73:c8:3b:6a:93:11:88:82:27:2e:e9:dd:31:b3:21:
9d:66:90:f5:4b:76:1e:94:86:19:6b:96:78:d4:94:23:ed:41:
df:98:bf:2d:02:02:9e:72:23:43:33:5a:04:73:9d:a9:bf:cd:
a8:b3:a0:60:5f:da:42:12:c4:a7:00:9b:bd:c3:f4:08:77:64:
c3:12:48:27:4f:47:56:ff:05:ae:67:5b:77:61:f2:d7:f2:dc:
31:41:fe:cf:8d:21:4c:80:e0:39:5f:2e:cc:17:76:e6:e2:11:
5f:4c:d8:60:e4:ea:38:57:00:2c:fa:02:1e:89:d3:6b:9b:b4:
5d:0e:1e:d7:11:56:d8:bb:0e:02:be:ed:c6:36:60:4e:37:4f:
d9:15:63:24:db:2a:a2:08:6a:16:62:b8:51:1f:88:34:91:22:
fb:0a:66:30:9e:f9:a2:e5:4d:f8:31:94:a3:34:50:95:f1:62:
69:50:98:13:f6:b1:2e:f0:14:55:01:53:41:b0:bc:5b:e6:f5:
ed:b0:0f:bb:dd:75:a6:4a:7b:16:6f:7d:5c:c0:14:87:f2:1b:
ab:1a:65:e6:81:3f:29:72:fd:4b:9c:f9:d0:cf:df:82:15:44:
9c:cb:10:8c:e2:cd:aa:79:6e:95:df:09:57:d0:ab:e8:a2:c7:
6b:b0:d9:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org