Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3262623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 0ycbEZOVblyGR3UZb/mdmhfV5uN21DfUNyZFTzEjpnQ=
Subject key identifier: 14:9B:A1:1C:FF:8F:DC:B5:98:F9:E8:D2:B5:48:AE:3F:FA:F7:06:00
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 78324CA225B7B07C42348AB5CDA397AFEB6F1D7E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:16 +0000
ROA not before: Mon 26 Sep 2022 12:55:16 +0000
ROA not after: Mon 25 Sep 2023 13:00:16 +0000
asID: 59282
IP address blocks: 2400:d680:2bb::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:32:4c:a2:25:b7:b0:7c:42:34:8a:b5:cd:a3:97:af:eb:6f:1d:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:16 2022 GMT
Not After : Sep 25 13:00:16 2023 GMT
Subject: CN=149BA11CFF8FDCB598F9E8D2B548AE3FFAF70600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:47:c2:e6:4c:a6:38:40:02:8c:40:51:de:c0:
62:24:a0:54:80:f9:f6:1b:ba:8c:10:5e:25:67:fa:
55:d7:1a:83:b9:5d:8a:33:0f:b1:14:24:eb:bf:c2:
47:62:e8:04:85:82:c4:a4:c9:9e:45:9a:8a:ee:4b:
75:ae:ae:d4:da:c4:e0:0f:13:37:a9:a7:4a:52:74:
8e:36:41:6e:63:59:f6:96:bc:da:6c:71:d6:a7:36:
5c:ed:57:6b:d2:41:4d:28:74:05:ef:cf:19:61:eb:
43:e9:5e:87:f6:b7:81:60:69:89:91:7a:21:cb:8e:
46:0d:49:9d:c7:87:c2:96:93:fc:25:ff:3f:6d:89:
e6:18:40:50:31:99:bd:df:00:1a:98:b4:05:7a:e6:
e6:ce:29:77:76:03:61:62:25:de:0c:48:53:ef:9e:
e2:72:ee:ae:a2:46:61:5f:1e:43:cf:74:16:b5:76:
7e:bb:7b:20:16:63:bf:45:cc:82:a4:bd:2c:3e:ab:
13:7f:e1:4e:62:c0:a5:64:6e:d8:e4:cc:70:d0:99:
c5:cf:e1:ed:2a:fc:58:5a:72:2e:6b:52:eb:44:02:
95:98:8e:5a:89:c8:d4:fe:c6:44:73:9f:39:5e:37:
15:46:74:9c:42:0f:15:03:03:bd:7f:ec:b3:d1:43:
9d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:9B:A1:1C:FF:8F:DC:B5:98:F9:E8:D2:B5:48:AE:3F:FA:F7:06:00
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2bb::/48
Signature Algorithm: sha256WithRSAEncryption
cf:ed:71:2e:cd:3d:53:20:a9:01:e5:9b:ab:95:c0:cd:fc:22:
de:61:ae:a2:7b:af:e9:b7:ed:e3:c3:58:99:08:03:49:a4:a8:
be:ad:15:53:77:f5:f1:b7:b5:24:31:fe:ca:8d:65:86:b2:db:
a1:c7:be:9f:6e:51:70:a7:52:5f:ac:d7:3f:94:fa:31:e2:82:
21:4d:ad:f5:d7:88:ae:e7:b6:10:66:d2:bb:ff:c2:83:af:e2:
5e:06:07:16:00:18:86:48:05:c6:30:22:a9:1d:85:d4:c1:35:
71:6d:db:6c:91:9b:e4:9c:ee:27:2f:30:fa:34:de:cd:d3:a6:
e1:ce:46:db:60:8c:c4:d4:dc:83:21:58:82:b7:7e:ab:bc:cd:
d1:bf:08:28:80:60:a7:3a:90:62:06:58:3e:0e:f7:00:50:b6:
42:6e:0d:eb:70:cb:d7:18:99:7a:65:49:2a:b6:b0:70:05:64:
14:79:42:1a:f1:00:15:cf:95:87:36:0e:0e:fa:d9:49:b8:05:
34:cb:6e:2b:06:b5:fe:e0:03:44:49:43:9f:98:f8:56:aa:5c:
cd:6d:6f:68:42:8b:a0:81:a5:7a:41:8c:6c:af:6e:5e:d9:b2:
83:f7:fb:4e:a7:9d:1a:23:7c:37:38:fe:38:52:7c:97:bd:ac:
e8:67:ca:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org