Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3264663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: o0mP/hKAbZYne/yaY8e3GJlc9NZWD52Bha49QW+zrVw=
Subject key identifier: F6:66:A9:80:C9:D1:05:00:1B:C8:66:C0:99:78:47:FD:95:EA:E7:E8
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2A6CF2BDDAA0BA317D0953E2631105FEBBC0BBA5
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:04 +0000
ROA not before: Mon 26 Sep 2022 12:55:04 +0000
ROA not after: Mon 25 Sep 2023 13:00:04 +0000
asID: 59282
IP address blocks: 2400:d680:2df::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:6c:f2:bd:da:a0:ba:31:7d:09:53:e2:63:11:05:fe:bb:c0:bb:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:04 2022 GMT
Not After : Sep 25 13:00:04 2023 GMT
Subject: CN=F666A980C9D105001BC866C0997847FD95EAE7E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:38:70:17:8c:1f:9f:ac:83:f2:3a:a7:6d:91:
98:4c:ba:45:16:2d:01:6c:35:47:99:24:94:64:16:
ed:ae:cf:45:b8:ea:e0:dc:91:7b:32:d3:b8:b5:a3:
c5:8d:5b:d4:74:b7:da:b6:0b:45:a5:4d:25:62:d5:
47:ea:82:5d:ca:cf:e7:a3:3e:5f:16:6a:c4:72:e0:
31:8d:07:57:a8:81:1d:b4:84:4b:67:d5:ab:84:75:
e2:3d:8e:44:c0:05:87:e7:16:f7:2d:db:41:69:86:
8b:1e:68:41:50:dc:38:fe:e1:8c:9c:f9:47:0a:ae:
87:6a:b3:d5:a9:73:52:ed:d4:47:2a:21:f2:e0:25:
94:2f:e9:c0:21:02:d4:74:7b:eb:0c:97:e2:e8:61:
53:16:03:b0:86:d5:97:70:ea:44:c3:34:c8:b4:40:
05:ed:28:c6:2e:bb:70:e0:42:3d:e2:04:7a:d0:5a:
79:e1:90:c7:d5:ee:37:86:a2:30:31:da:15:9f:7f:
87:3a:d5:7e:eb:b3:b2:fe:9c:05:11:ab:0c:1c:ab:
0d:01:28:be:9e:7d:5b:c3:81:c5:09:69:fc:bd:77:
89:88:3e:01:d3:a6:3d:ca:0e:82:70:ca:b6:10:f5:
69:6c:d2:81:a1:5f:41:fe:2d:b7:b4:6a:31:5c:44:
36:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:66:A9:80:C9:D1:05:00:1B:C8:66:C0:99:78:47:FD:95:EA:E7:E8
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2df::/48
Signature Algorithm: sha256WithRSAEncryption
98:51:ec:ea:0e:b7:42:32:cd:20:d9:18:37:cd:f2:62:3e:bb:
62:ae:18:a3:4e:01:63:8d:5a:99:8a:e0:62:6e:d3:66:82:b2:
3f:1c:9a:8f:79:e6:16:d0:eb:f9:26:f1:26:26:03:0e:1b:56:
9c:4a:60:0d:3c:9b:bc:34:e2:a2:12:ff:d4:84:d9:e9:89:39:
71:30:c7:ad:a1:4c:93:d2:1d:f3:f3:58:55:95:3f:1d:de:5b:
d6:d7:7d:1e:26:9d:1e:fb:73:b4:3a:bf:9a:8e:8c:64:49:fd:
e7:6b:6b:66:49:67:71:fc:91:22:7f:0d:6a:8b:83:99:9e:ec:
97:9f:1a:fd:17:22:5d:27:7c:bc:6d:25:a3:a8:3f:1e:e4:a5:
92:86:54:aa:c1:24:be:2e:20:5b:f9:d3:3c:27:9f:19:45:1f:
9f:57:b6:00:56:34:9a:1f:33:ed:c4:db:51:7d:b6:ce:12:8d:
81:31:dd:14:ca:63:85:6c:33:5b:8f:28:0d:ee:0b:11:c0:ae:
79:51:2b:75:5b:2f:5a:8f:5e:c2:77:7e:0e:15:a3:9a:09:51:
50:db:5e:82:f7:3a:9a:e1:6e:48:6e:c8:01:42:03:18:15:87:
8a:c9:21:e9:53:f2:c0:23:28:99:c6:da:81:be:90:5f:d4:18:
f4:54:6a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org