Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a32633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: qCMwMOR3TdVNpaG1QB5o/La1/zeg+nceBtGfCHnS3Ow=
Subject key identifier: 90:7D:5C:5F:3B:30:75:C1:22:85:DB:2F:33:3F:6B:A6:86:B0:4C:B2
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2CB9522F76441FF1F5735011D516A9B9C2AB4D40
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:01 +0000
ROA not before: Mon 26 Sep 2022 07:57:01 +0000
ROA not after: Mon 25 Sep 2023 08:02:01 +0000
asID: 59282
IP address blocks: 2400:d680:2c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:b9:52:2f:76:44:1f:f1:f5:73:50:11:d5:16:a9:b9:c2:ab:4d:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:01 2022 GMT
Not After : Sep 25 08:02:01 2023 GMT
Subject: CN=907D5C5F3B3075C12285DB2F333F6BA686B04CB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:48:19:7e:1b:9f:22:c0:dc:96:08:33:1a:00:
ca:52:66:f1:48:fc:85:a2:a8:e0:9f:40:aa:82:8c:
4e:d7:c2:c1:fb:1e:61:85:3c:75:07:4f:16:4e:61:
4b:62:24:67:7e:5d:8b:74:c7:c5:d4:04:12:ab:26:
15:f5:93:1b:52:fe:e7:d6:c8:f9:69:14:9a:8d:aa:
74:e3:09:5f:ba:94:6e:8b:16:8a:36:f5:a7:1c:95:
03:a5:6f:d8:26:4b:a1:25:74:af:4a:33:52:77:cd:
aa:04:c7:71:d9:50:73:20:f2:a5:46:02:9d:68:3c:
b3:03:50:71:cb:d5:1a:83:25:93:c5:c0:45:02:5e:
9d:1b:f7:65:da:a3:cc:23:67:54:b4:95:1b:ce:2c:
92:28:66:89:92:47:fa:57:21:a5:74:0b:a9:78:a3:
45:af:5c:f4:2a:f7:b3:04:be:42:db:74:34:4d:ff:
34:b9:06:15:53:b0:e8:da:ec:b1:0c:0d:6e:69:bf:
d9:4f:5d:a5:7a:ed:f6:3d:60:50:60:df:af:d0:d3:
b4:40:15:dd:56:b1:b2:bc:3b:20:af:4a:03:99:0c:
ed:c7:95:31:05:89:de:3c:d7:ff:39:e6:f0:87:07:
5d:3e:6e:e3:41:8c:4a:39:0f:aa:26:1b:30:8f:a7:
26:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:7D:5C:5F:3B:30:75:C1:22:85:DB:2F:33:3F:6B:A6:86:B0:4C:B2
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2c::/48
Signature Algorithm: sha256WithRSAEncryption
0f:38:ff:83:bc:20:17:21:27:d3:c3:33:47:ac:64:c2:ae:36:
47:3c:c2:2b:a1:e1:11:70:ff:79:49:25:d9:4e:06:ed:ce:55:
a9:d1:72:72:a6:16:e8:0e:b9:12:17:86:b6:b8:5e:17:7f:b8:
63:24:99:31:fb:bd:e5:a5:f0:f5:f0:c7:ab:d3:57:37:4b:9a:
5e:0b:71:c0:c6:03:96:8b:0a:f2:87:51:6d:2e:25:b9:b1:77:
29:60:8e:25:07:00:33:77:a4:a9:5e:7d:50:14:8e:71:91:20:
ed:21:85:5f:ab:24:dd:0f:2e:a2:38:03:87:9a:bb:0b:cb:72:
76:ef:a6:bf:f6:c9:f5:3b:f0:6d:32:12:18:a7:49:af:53:d3:
6f:a1:ee:40:6d:d6:b0:08:76:47:56:50:c6:5d:5a:a8:89:61:
31:2a:00:ca:9b:dc:e0:c6:cf:b3:19:73:2e:d8:b8:95:76:40:
8e:fd:f4:ed:47:6e:b7:b1:93:f2:13:0c:a7:d7:fd:86:9f:3e:
7b:34:5f:c1:45:2c:68:7f:0d:82:cd:80:2b:5d:8a:b7:24:e2:
05:d7:34:9c:42:bb:46:e1:b8:ce:6c:61:2f:a7:9a:7c:b7:95:
a7:4a:86:86:0c:a6:ca:5c:ef:82:60:5d:42:6e:55:4a:1c:42:
d0:a2:e9:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org