Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3239623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: dyvXboe4axSOGu/Q4rtTELi7MlpFk9xFbQwB+b8NwMQ=
Subject key identifier: 2D:23:3D:B2:5E:74:EA:8C:A3:C8:5F:67:33:34:6F:6B:E0:C4:AE:4F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2CF7C2F20F8AA217EF31BA807DC0AF866C4E6205
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:14 +0000
ROA not before: Mon 26 Sep 2022 12:55:14 +0000
ROA not after: Mon 25 Sep 2023 13:00:14 +0000
asID: 59282
IP address blocks: 2400:d680:29b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:f7:c2:f2:0f:8a:a2:17:ef:31:ba:80:7d:c0:af:86:6c:4e:62:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:14 2022 GMT
Not After : Sep 25 13:00:14 2023 GMT
Subject: CN=2D233DB25E74EA8CA3C85F6733346F6BE0C4AE4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:64:d7:73:03:c3:29:83:ce:06:96:c5:71:9d:
43:3d:6a:4d:73:7c:5e:b4:25:5b:9e:df:c6:df:6a:
88:28:97:10:dc:1f:94:12:bc:4e:e8:d4:9d:eb:71:
18:b2:33:16:be:77:1a:51:7d:0e:61:30:5e:1a:39:
00:34:6b:18:66:49:20:be:70:43:bc:1d:be:ce:3d:
5a:be:b9:b3:90:0b:74:37:bd:2c:5d:4f:b9:cf:9b:
09:23:39:25:0b:a4:4d:c5:a9:77:aa:9a:de:53:60:
46:e0:a5:ca:c2:80:a1:d0:65:0d:72:af:32:04:f7:
7b:70:13:84:24:40:de:c7:3d:d5:a5:31:92:02:b7:
c9:2c:78:ca:4d:48:e6:5c:01:5c:f6:e9:78:1b:13:
cf:8e:42:0b:58:a4:9b:96:33:56:1b:7b:de:f8:e8:
b6:dc:e5:25:c4:93:2a:27:0f:0f:35:30:63:ad:b5:
2f:10:d4:42:c5:a7:6d:ee:f9:07:ef:53:31:cb:87:
c3:a8:b9:7a:f3:2c:16:b1:e3:b9:64:c8:27:8f:2a:
ab:5f:43:93:40:c5:c2:56:2a:9c:bc:22:67:c0:ab:
45:c2:1c:c8:f3:b9:3f:90:7a:ce:e3:2f:3c:84:f3:
95:ae:20:26:a4:7e:ff:8e:bc:58:84:04:8e:3e:71:
32:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:23:3D:B2:5E:74:EA:8C:A3:C8:5F:67:33:34:6F:6B:E0:C4:AE:4F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:29b::/48
Signature Algorithm: sha256WithRSAEncryption
a7:47:5a:88:97:d6:af:23:c7:1b:ee:05:7d:1e:77:1a:e1:3d:
1f:08:68:d1:e6:bd:97:71:f7:e5:0c:f9:6b:62:66:3f:49:d5:
c8:10:24:b0:88:c2:05:01:3d:af:01:94:c1:40:89:21:6a:0d:
31:67:02:4a:b6:94:b5:5f:c4:b9:e0:16:1a:29:05:cc:d2:d7:
74:45:b4:20:8a:b0:dd:54:79:b4:8b:b1:31:7f:66:f6:9a:9d:
3f:3c:f7:a3:84:ef:dc:5a:30:15:85:7c:ba:1f:38:2c:76:6d:
c2:72:b6:99:bc:f6:86:99:69:36:a4:38:c3:c2:94:01:cc:44:
b5:69:09:6b:53:f1:d2:cf:b6:e7:c3:db:60:b0:7f:77:9d:b0:
f9:0f:da:4d:32:98:05:92:04:ab:33:1d:95:c0:c6:cd:f5:d1:
b5:fe:59:59:27:48:3b:97:0b:b0:64:dd:1a:71:66:0c:ef:c8:
d6:04:9d:b1:00:5c:c1:3d:8a:18:aa:39:cb:af:75:2e:ae:47:
6c:53:6f:3f:98:be:82:ef:57:17:d6:4d:c5:18:1b:c3:0b:cb:
9d:10:ae:1c:01:66:94:97:9e:1d:19:66:2f:09:9a:f3:2b:d0:
41:8b:4b:07:79:e8:5e:34:8f:41:12:86:31:91:e6:2b:bb:52:
e1:42:07:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org