Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3262393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ekwOQRhzOLHxQDohRUn1xG77dEj2oXvne6ZOGRkxtHE=
Subject key identifier: 2F:26:E6:0C:25:8F:5E:E2:5D:E2:9F:BF:72:33:13:A9:EB:F9:80:7D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5DD84185DC07812C74CF2A680DC2FAA4D7354512
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:22 +0000
ROA not before: Mon 26 Sep 2022 12:55:22 +0000
ROA not after: Mon 25 Sep 2023 13:00:22 +0000
asID: 59282
IP address blocks: 2400:d680:2b9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:d8:41:85:dc:07:81:2c:74:cf:2a:68:0d:c2:fa:a4:d7:35:45:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:22 2022 GMT
Not After : Sep 25 13:00:22 2023 GMT
Subject: CN=2F26E60C258F5EE25DE29FBF723313A9EBF9807D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:bf:e5:1f:fa:7c:ec:de:69:e2:8c:54:dc:95:
f4:7a:1d:56:84:98:3d:4b:dd:72:97:d4:15:51:9d:
09:e8:a3:9a:07:d5:f1:4d:95:3c:0a:c9:13:43:60:
9c:b9:51:31:57:d4:ab:65:0b:44:4a:38:97:67:fe:
03:c4:1b:0f:43:86:4c:e4:fe:72:a1:d3:4d:8d:9c:
e2:de:d2:bd:29:2e:9e:a8:b4:7e:24:ea:8d:ea:6c:
9d:d2:f6:5c:35:4d:5a:28:64:4a:26:c5:84:fb:43:
8d:d4:92:70:ef:73:1c:1f:c1:5c:cf:04:4f:d2:0d:
0c:90:ce:66:0c:b4:9a:00:12:70:2a:6b:fa:b4:58:
30:73:59:fa:e1:cf:e9:cf:75:c5:45:e3:7f:cb:49:
0f:71:3f:fe:25:1e:cb:6c:ea:08:d2:25:02:12:ab:
64:5e:35:64:c6:7c:e2:a0:85:a7:82:39:ce:af:7e:
7b:dd:46:a3:c6:82:17:4e:eb:be:cd:bd:9d:f3:a3:
e5:ad:ae:09:a5:f9:58:8e:95:30:d2:31:5e:84:1d:
48:1b:c6:5d:17:bd:33:ac:5b:2e:31:1b:10:4d:17:
fd:8d:8d:da:a8:8b:37:75:4d:75:94:bd:c5:80:3c:
19:f6:89:f4:74:c8:ff:d5:7c:e4:6f:8e:41:95:ca:
c7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:26:E6:0C:25:8F:5E:E2:5D:E2:9F:BF:72:33:13:A9:EB:F9:80:7D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2b9::/48
Signature Algorithm: sha256WithRSAEncryption
0a:98:aa:8a:f9:36:02:bd:96:63:ef:00:14:48:dd:1d:88:fb:
e2:3f:7b:5f:e9:e6:9e:97:0a:73:e5:13:76:e8:5d:a8:cc:bc:
b3:8f:1c:1f:2d:0b:6c:c2:c1:4a:c2:d4:d3:20:9b:95:77:11:
f5:7b:92:89:69:c1:ab:18:24:42:85:df:26:9f:c5:5b:16:c9:
71:29:64:1d:39:1d:29:f1:5c:63:c2:76:91:a3:23:b4:93:6f:
0e:9c:85:9e:a6:d6:ff:83:48:d7:c1:94:9d:3a:eb:8c:65:2a:
56:d8:b3:26:2f:c0:0d:af:ab:06:3a:57:d5:fe:61:fb:e3:5e:
79:53:5f:5c:05:70:58:8a:b1:33:e0:ec:9b:33:01:06:70:a8:
f9:06:d7:f3:1b:9b:80:70:78:cd:36:c3:e1:27:4d:bf:9d:dc:
23:41:4c:b6:1e:8b:94:ce:14:31:d2:5c:91:3d:1b:0e:1b:c7:
e7:2e:0c:a7:c9:0a:b0:ed:90:f2:ba:74:89:03:c9:6e:5e:4a:
d1:b0:e6:e5:72:45:48:2c:04:38:ba:5f:a1:a1:c1:53:b0:16:
a4:c4:8c:81:6f:93:c5:b8:cc:a8:cd:f1:b0:7a:1f:41:e9:3a:
54:2e:ee:4a:1b:1c:f7:40:ad:4e:f3:f1:f8:9d:f3:4d:0e:3a:
27:8e:df:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org