Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3264623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 9QFi4YCej5wJjQGqr7s5CEG9x534P3V7rcxaTEa9A6g=
Subject key identifier: 18:1D:E1:1B:45:31:8A:C0:31:A7:64:CE:69:E2:71:CC:43:B0:72:C9
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2590B529B76350E04274032288C7AF9450629B24
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:06 +0000
ROA not before: Mon 26 Sep 2022 12:55:06 +0000
ROA not after: Mon 25 Sep 2023 13:00:06 +0000
asID: 59282
IP address blocks: 2400:d680:2db::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:90:b5:29:b7:63:50:e0:42:74:03:22:88:c7:af:94:50:62:9b:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:06 2022 GMT
Not After : Sep 25 13:00:06 2023 GMT
Subject: CN=181DE11B45318AC031A764CE69E271CC43B072C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:48:d3:6f:77:6e:c7:ce:c7:28:0d:8c:8a:00:
99:7f:2d:c2:2d:39:f9:53:01:6a:ce:6f:1d:7d:a6:
76:a9:95:77:ae:c1:25:b2:b3:42:90:e0:f5:4a:22:
59:4a:f8:55:88:af:1c:c3:51:39:cc:dd:bb:87:fa:
c7:d3:a6:d5:94:24:d8:dd:22:a2:2d:f8:e3:ba:8c:
10:5a:f9:55:40:ef:9f:13:5d:d4:cf:64:34:ae:ad:
49:72:0f:6f:23:c9:2b:98:7e:a7:3a:85:42:28:a8:
f9:d4:cd:86:e2:f9:a6:f0:35:6d:5e:9d:c4:60:1d:
32:fe:be:37:bb:a5:ff:d9:d1:42:3a:b1:1a:a4:f5:
7f:c3:cd:74:ea:75:8f:e1:75:be:2b:1e:e5:6d:b8:
3b:02:5f:ba:83:64:f3:a7:c4:43:37:d0:4f:7d:2c:
f9:c4:dd:5d:20:85:cb:84:8d:ff:cb:f9:20:fb:af:
a4:c4:18:af:2b:91:0e:7c:af:2e:f1:98:18:39:e4:
da:02:4e:d9:1d:5c:f5:33:a6:d9:e4:ce:ae:24:e1:
e9:c4:a2:51:d5:41:19:04:5e:01:33:cf:08:04:87:
58:7e:95:71:f7:60:b1:d3:31:c3:e9:ad:f1:e5:35:
15:71:4f:41:6b:3f:e2:79:e2:e8:a7:89:59:ca:c5:
0c:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:1D:E1:1B:45:31:8A:C0:31:A7:64:CE:69:E2:71:CC:43:B0:72:C9
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2db::/48
Signature Algorithm: sha256WithRSAEncryption
8a:22:2e:34:9b:df:c5:1e:de:fa:d3:fa:e8:b8:fc:ee:c8:b6:
33:9e:0e:98:25:4b:78:ee:1e:9b:77:07:50:5f:3a:fe:59:9a:
ce:e0:01:6d:62:37:cb:83:90:db:78:6e:19:1c:79:24:2c:75:
e5:e5:42:2d:fc:59:03:7a:95:ae:6f:b3:87:b3:27:a2:fc:d9:
81:10:74:41:1c:43:b7:5b:c5:6e:49:38:fb:5b:1c:0a:9e:fa:
4e:42:da:0c:e4:83:d6:b3:3a:d9:e6:39:39:20:5e:ae:de:de:
ee:53:95:c2:88:23:c3:96:10:ee:38:4d:04:be:33:4b:04:07:
05:f8:65:85:af:ab:b0:f2:7c:e9:59:5b:14:50:cf:9f:6e:e2:
14:9b:14:ed:da:e1:78:10:44:05:f8:0a:6e:4e:c3:af:ca:11:
7f:03:d4:d1:45:3f:a7:c3:c1:a2:cf:f8:c3:df:4f:e5:56:73:
ff:1a:61:5e:26:7c:68:40:79:a3:90:4b:ed:bc:96:48:43:87:
39:87:87:6c:00:32:d0:8f:b1:d7:a9:9e:a9:d5:49:e0:83:83:
ae:94:30:15:4d:4a:1c:5b:a6:fe:36:d3:5a:b5:77:96:e6:0e:
27:ab:29:d0:ed:b9:23:be:f4:7c:29:86:a2:01:16:fa:30:55:
8a:c9:0f:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org