Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3262363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: GrWX8XDf/R0KUlgBY3u+zVRoI+5deXTQgOjp1X75fJw=
Subject key identifier: BF:97:37:1E:E4:BE:FB:FD:07:4C:30:2D:41:A0:73:0A:74:43:D3:9F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 34D134D2454C62D6DD88696E51E52A25C212B9C4
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:08 +0000
ROA not before: Mon 26 Sep 2022 12:55:08 +0000
ROA not after: Mon 25 Sep 2023 13:00:08 +0000
asID: 59282
IP address blocks: 2400:d680:2b6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:d1:34:d2:45:4c:62:d6:dd:88:69:6e:51:e5:2a:25:c2:12:b9:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:08 2022 GMT
Not After : Sep 25 13:00:08 2023 GMT
Subject: CN=BF97371EE4BEFBFD074C302D41A0730A7443D39F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:97:d4:2f:88:50:bf:75:bd:d5:ce:9d:e3:6d:
ed:d8:48:d8:ed:69:31:33:8a:5c:e1:4a:46:cc:20:
8e:db:28:3f:11:eb:0f:6e:4d:cb:25:02:9c:89:77:
72:30:29:3b:3f:93:e7:14:96:de:2b:6d:52:31:e6:
ab:2c:54:9f:fd:a5:2f:ae:49:8b:52:10:88:5d:6f:
4e:88:23:61:94:3d:35:c5:fe:de:c9:8a:3a:80:34:
27:d2:2f:ff:90:08:f7:a3:db:83:5d:b5:d9:79:7d:
d7:09:47:66:79:0f:1e:84:63:1f:b0:48:57:04:dd:
c3:fd:28:fb:06:7e:15:4e:83:d2:dc:0d:c9:8e:23:
da:ee:d9:1a:c0:c0:3e:12:50:99:42:a5:66:a8:85:
34:02:b1:78:4d:a8:b8:d6:7d:65:f5:c6:5a:a6:a9:
18:f2:94:46:95:34:5d:15:87:8b:41:5a:a7:39:1a:
71:95:74:7a:53:72:06:fb:c8:f9:86:7d:77:0a:1c:
e2:f9:9f:e6:38:93:2a:dc:c5:b3:b4:e2:32:79:ab:
21:29:5f:6a:67:aa:48:ab:c3:96:ca:66:d0:d3:e0:
b9:80:44:c1:64:35:91:a8:81:6f:0c:9c:40:f9:54:
3e:6b:08:d3:3b:0e:9e:ff:61:f3:71:3d:ed:8a:39:
e9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:97:37:1E:E4:BE:FB:FD:07:4C:30:2D:41:A0:73:0A:74:43:D3:9F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2b6::/48
Signature Algorithm: sha256WithRSAEncryption
15:92:16:df:c4:37:56:d5:72:8b:fe:ad:d3:55:2e:7e:d0:a7:
a4:b5:b2:47:24:12:d3:b5:40:70:1b:a3:9d:18:17:6e:e4:c7:
13:25:0c:bf:65:37:4e:86:e8:04:08:c4:09:b4:61:10:50:83:
52:7a:44:b7:2b:80:0b:e0:77:33:9b:51:5d:05:8a:41:2a:35:
6d:84:32:83:69:8e:39:b0:63:86:bc:04:63:05:2b:d1:bd:38:
95:d1:7d:a9:ff:c6:17:98:8e:25:f4:fa:53:cf:bb:e0:aa:fc:
f4:a1:80:9e:07:5e:8d:a3:27:d9:7f:70:04:dd:dc:94:75:9a:
cc:10:65:02:b7:e6:73:83:4e:a0:d0:4c:fd:7a:bc:eb:df:71:
7f:f1:7c:23:76:7f:06:27:fa:7c:ac:85:b2:1f:7a:3c:69:13:
48:4a:5f:5a:3f:81:c4:87:66:4e:12:8b:44:3b:8e:e3:11:85:
eb:90:40:68:94:6a:c7:a0:0b:65:c1:d0:bb:0d:bf:68:0d:56:
47:07:3e:57:1e:e1:3e:89:45:83:17:b4:c4:78:fb:93:51:90:
c3:fa:09:ce:ad:45:02:77:c3:76:aa:d7:2d:94:e5:b5:0c:5d:
84:77:21:42:63:a3:2f:41:c3:6a:70:05:ac:60:38:f0:cd:8f:
cc:12:22:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org