Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3261653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Is67MbXlSzVuRJQdoAK7z3jHYnPSCWZ4q1AI3wX3tHw=
Subject key identifier: 5C:69:69:F5:42:CB:65:88:3C:E3:AA:90:3F:B2:12:0E:9C:E6:20:68
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1FA2DD29BAB671B003BA73B5DC50CF8C88FAF278
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:10 +0000
ROA not before: Mon 26 Sep 2022 12:55:10 +0000
ROA not after: Mon 25 Sep 2023 13:00:10 +0000
asID: 59282
IP address blocks: 2400:d680:2ae::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:a2:dd:29:ba:b6:71:b0:03:ba:73:b5:dc:50:cf:8c:88:fa:f2:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:10 2022 GMT
Not After : Sep 25 13:00:10 2023 GMT
Subject: CN=5C6969F542CB65883CE3AA903FB2120E9CE62068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:67:e2:af:dc:5f:30:fb:85:ab:5f:48:61:3b:
1f:ed:9b:34:bc:29:b2:bf:92:8e:f2:bd:ca:35:36:
48:f7:8c:7c:da:27:9b:ee:b1:c6:fd:9b:eb:76:db:
80:e6:ec:97:59:9b:c5:c6:71:03:68:2d:64:2f:c5:
39:5b:67:52:53:a7:77:90:6f:ea:88:ff:eb:0a:73:
4e:f9:ff:42:4c:22:79:12:0f:25:9e:4c:9e:6e:dc:
5e:e1:62:87:1b:6f:52:11:fd:46:8a:2e:84:40:d5:
e5:43:6e:f3:ca:b6:8d:96:ee:d4:cc:8f:aa:f4:35:
e9:59:92:85:95:69:8d:18:71:de:08:23:b8:13:43:
55:cd:ab:6f:e6:6e:c9:05:88:e7:5a:b6:ec:0d:9b:
4d:7d:e9:b2:06:a9:7a:65:13:ad:6a:ad:c6:a0:73:
99:19:08:81:e8:33:61:16:5c:6f:44:e2:16:24:91:
95:4c:35:35:6b:78:fd:e6:ba:a5:25:3f:c9:a5:5d:
d7:f2:8c:7d:6e:10:f3:5a:c7:1e:cb:3f:78:f5:35:
ac:39:b8:47:90:18:86:7d:e1:96:b5:d2:93:c0:80:
1f:39:e2:be:cb:04:d2:11:f2:37:9e:4b:22:83:4c:
3a:dc:10:91:ab:24:08:55:9c:6e:0b:7b:42:08:04:
1e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:69:69:F5:42:CB:65:88:3C:E3:AA:90:3F:B2:12:0E:9C:E6:20:68
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2ae::/48
Signature Algorithm: sha256WithRSAEncryption
d5:e7:f8:03:a3:f5:b3:d5:2d:b0:61:32:bc:07:03:55:17:a5:
fe:f5:7d:26:a1:01:f2:20:fb:a2:36:bc:37:a8:58:57:ab:f0:
4b:57:df:b4:ae:fc:47:57:be:14:34:8d:cb:ff:e5:fe:5d:21:
27:82:b9:5b:f4:33:be:7a:f4:4f:a1:99:22:f1:8d:1c:13:64:
67:a2:ef:ca:61:db:b7:92:09:5a:54:35:0f:39:93:64:43:97:
02:c6:ee:e5:be:46:37:f2:8f:8d:ac:9c:af:b9:c1:af:94:ce:
21:1a:4e:92:d1:42:8f:f6:d2:1a:be:28:6b:c8:00:4b:0c:6f:
9d:57:f4:84:e3:4a:16:24:36:fb:84:5b:6a:0d:b2:b9:70:8f:
58:00:87:ec:ad:e5:ec:5d:31:02:a9:48:07:4d:b1:66:65:d6:
07:cb:c2:a4:55:4e:60:ef:77:c1:12:70:77:a0:3e:0e:74:db:
52:b8:e6:52:83:19:c5:e4:b4:8d:5b:6d:65:02:29:79:14:6f:
a4:19:eb:e4:a0:1b:5f:b7:45:1a:36:ca:d7:96:a0:9a:b6:fc:
ef:da:e7:63:d8:c1:35:17:32:f0:45:30:ec:76:74:0f:de:90:
42:4c:f1:32:1a:db:5e:44:f3:cf:49:84:7a:26:99:fb:4f:ec:
e5:b1:6b:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org