Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3262663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: OvsP5ZgOBWvBvb0l+snNOlTlCb6qA1iusYC5h0cNcbQ=
Subject key identifier: 85:F3:C5:F4:AB:B7:6F:FB:89:A9:FC:01:8B:61:24:E0:4A:9D:DA:22
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1F453E41FDABE54286962EBB00AAED142F9CE8B8
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:14 +0000
ROA not before: Mon 26 Sep 2022 12:55:14 +0000
ROA not after: Mon 25 Sep 2023 13:00:14 +0000
asID: 59282
IP address blocks: 2400:d680:2bf::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:45:3e:41:fd:ab:e5:42:86:96:2e:bb:00:aa:ed:14:2f:9c:e8:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:14 2022 GMT
Not After : Sep 25 13:00:14 2023 GMT
Subject: CN=85F3C5F4ABB76FFB89A9FC018B6124E04A9DDA22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:8d:ad:8b:b0:e7:e2:9b:6b:34:a4:a5:95:a9:
66:b7:a5:92:df:9c:08:94:ef:68:46:93:75:49:dc:
83:a0:5d:26:fa:f6:18:c5:61:c4:99:e1:33:e1:33:
0a:2e:5b:96:ca:aa:e2:1f:b6:19:00:ad:96:ab:1f:
fa:56:46:d1:6f:4e:ed:0b:a4:f2:1c:f6:6b:ee:7c:
a9:d6:0d:4f:6c:c7:d1:e4:48:0c:c1:89:5c:b3:ad:
9f:ae:1d:27:33:aa:64:7c:f8:f6:0a:9b:d0:48:2f:
46:63:45:0c:49:20:80:1a:1e:cf:11:91:dc:c6:9b:
48:e0:72:e1:eb:b8:8a:6a:7d:ed:7b:3e:0b:d6:03:
04:d0:29:04:2f:9e:71:ec:81:b6:b4:f0:19:57:cc:
99:68:9f:83:b6:ac:b4:be:a1:71:c3:66:6f:7a:42:
87:5c:dd:6d:67:70:6c:ea:e5:cb:f0:4c:47:4c:35:
04:11:7f:3d:c4:03:17:c1:a9:0b:ae:e5:13:0e:d7:
9c:6a:ca:75:3a:18:25:79:be:2c:5f:72:e4:0f:43:
8a:86:96:3c:03:45:2c:aa:69:6c:a3:85:cf:f1:91:
78:bb:88:25:91:40:44:6e:d9:fd:14:a8:66:f0:79:
31:8f:42:e4:92:9e:c4:d0:18:aa:5a:22:1d:86:81:
7d:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F3:C5:F4:AB:B7:6F:FB:89:A9:FC:01:8B:61:24:E0:4A:9D:DA:22
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3262663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2bf::/48
Signature Algorithm: sha256WithRSAEncryption
69:93:42:85:54:fd:3b:b4:83:f2:64:da:1e:06:9b:52:14:26:
4e:61:da:59:4b:02:6b:37:de:9c:37:04:d1:b1:78:35:66:87:
c3:50:43:60:92:a6:93:62:f7:c9:44:37:f0:d6:b3:76:0e:59:
9d:cb:6f:bf:6c:16:b2:45:cf:47:5f:ff:9a:d3:65:68:b9:93:
41:a8:1f:f5:1a:38:50:1e:d7:f1:38:5c:b2:12:47:2d:d8:bb:
a0:44:c6:f0:a2:0c:2f:a2:75:10:be:fa:8a:a3:a9:65:e5:f0:
c7:48:84:a1:4b:52:2b:47:08:b4:46:00:d8:28:3f:1d:57:bc:
db:29:54:82:c5:4e:d9:26:3e:89:4b:bb:62:43:33:23:c5:73:
c1:66:8c:36:bd:53:ac:f0:f4:5a:6c:f4:eb:d9:01:7e:b8:48:
2b:ee:7b:9d:fd:28:b6:03:3b:14:a3:da:c3:c1:e3:ff:44:ec:
56:0c:f4:fc:a8:f9:59:91:0e:80:04:de:7e:25:2e:9b:25:49:
c5:d3:81:05:d6:2c:b1:91:4d:83:ae:73:b7:6e:b5:91:7f:75:
c2:79:6b:ad:1c:80:fc:51:39:aa:84:48:d7:9f:ba:f0:ff:55:
44:81:86:36:ac:56:4c:37:2d:f4:10:7e:5f:14:1e:b9:0a:c3:
ec:ba:c3:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org