Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3263623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: QVN/Xw1bvANxHtQFDGe0UxcFIN57q5jSgi4BqoenjCM=
Subject key identifier: 81:21:43:05:D7:34:82:BD:43:18:E3:D3:8D:CA:AD:1F:73:9D:6D:7F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4DBC347FF14A2AF34572669E2AF240C84F7D0885
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:03 +0000
ROA not before: Mon 26 Sep 2022 12:55:03 +0000
ROA not after: Mon 25 Sep 2023 13:00:03 +0000
asID: 59282
IP address blocks: 2400:d680:2cb::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:bc:34:7f:f1:4a:2a:f3:45:72:66:9e:2a:f2:40:c8:4f:7d:08:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:03 2022 GMT
Not After : Sep 25 13:00:03 2023 GMT
Subject: CN=81214305D73482BD4318E3D38DCAAD1F739D6D7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:67:5a:61:eb:f8:b4:91:fd:b0:bb:a8:98:16:
d6:f2:da:cb:94:e5:fb:06:2d:f0:e3:4a:00:41:1b:
dc:a7:5d:3f:2d:40:b3:c1:16:a1:e0:5c:31:0f:0d:
26:3f:59:6e:96:38:55:08:dd:27:f1:0d:e6:f2:be:
1e:76:4d:8f:3a:f1:a0:f0:34:52:1b:ee:08:95:b7:
21:12:d2:8d:2f:cc:ba:a3:02:de:87:87:0c:04:ff:
80:e4:de:87:7d:f7:08:4b:c2:c6:29:9d:ad:69:0f:
4d:32:7b:ba:01:e9:8f:35:22:1a:9e:14:a5:0d:8f:
d0:3c:b6:51:6a:84:59:c4:93:83:9c:fb:82:fc:1b:
82:6b:24:57:65:b3:a6:94:1c:cd:97:f5:02:21:bc:
cd:fd:b8:0a:cd:e6:a0:9e:4b:de:4c:2f:36:15:af:
ac:4f:2e:7f:79:6b:39:90:94:a3:6d:44:b0:ef:f7:
63:64:80:a6:43:91:6d:91:29:fa:21:b8:47:db:23:
f7:b3:14:a4:c5:09:78:60:34:f0:16:72:b8:58:62:
76:f1:c9:13:1c:c7:e4:4e:dc:a5:42:4b:b8:33:37:
60:17:e5:b2:22:f7:7b:cb:be:7c:1e:17:59:3e:fc:
d7:3d:b6:dd:9f:59:f2:95:b8:2f:29:09:dd:3a:e7:
71:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:21:43:05:D7:34:82:BD:43:18:E3:D3:8D:CA:AD:1F:73:9D:6D:7F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2cb::/48
Signature Algorithm: sha256WithRSAEncryption
10:96:7b:2c:85:30:97:6f:ab:9b:9a:0c:af:15:81:a1:0c:7a:
80:e4:9c:5b:3d:fc:62:67:cf:44:7c:10:31:d9:aa:c5:db:52:
e8:9a:95:92:20:73:9f:94:2f:cd:83:b4:c8:34:a8:7b:45:d9:
61:24:bd:ec:94:9a:a5:70:ff:1e:a5:44:80:de:5d:81:dc:91:
19:d2:f3:7d:4c:10:16:47:0e:ad:37:55:a9:17:19:5f:bd:f4:
ee:da:1b:2b:23:61:49:c6:c3:1b:3b:95:49:88:a9:e1:6b:22:
d6:e0:35:d3:03:7a:16:46:db:94:3a:18:d3:85:7d:b6:9f:01:
44:63:6a:d7:47:f0:ab:e3:da:e4:d8:93:22:c1:75:29:09:82:
05:2a:50:a5:eb:b0:54:13:d7:d7:36:a8:0c:78:2b:87:e9:76:
f2:d0:5b:e6:a9:4b:8a:c8:b3:b8:a5:b3:ca:e3:71:6f:9e:a7:
40:48:68:e4:78:97:25:78:c6:f3:0f:a9:e9:41:bb:41:bf:13:
c9:6b:a0:b6:c8:32:35:9f:b9:ec:9e:56:92:f5:18:fe:c7:a4:
41:41:96:06:78:1c:ab:1f:68:89:df:c7:df:e4:3c:7e:53:11:
82:57:c9:1a:50:ef:9a:0b:2e:59:19:22:18:8c:65:8a:de:04:
29:5e:77:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org