Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3265323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: JF7QNl0BmlB+uBOJSi1czxmkKa0HGDctZw4cTBkwb+E=
Subject key identifier: BB:7F:06:00:BE:27:AD:5E:F2:C9:5A:60:31:16:9F:E8:B8:3E:F9:0D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 37F704AB0958EA100744CB56F5F4CF54B6C194BE
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:01 +0000
ROA not before: Mon 26 Sep 2022 12:55:01 +0000
ROA not after: Mon 25 Sep 2023 13:00:01 +0000
asID: 59282
IP address blocks: 2400:d680:2e2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:f7:04:ab:09:58:ea:10:07:44:cb:56:f5:f4:cf:54:b6:c1:94:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:01 2022 GMT
Not After : Sep 25 13:00:01 2023 GMT
Subject: CN=BB7F0600BE27AD5EF2C95A6031169FE8B83EF90D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:53:46:6a:6a:0e:a6:d9:8f:38:6e:9e:91:c7:
11:22:76:63:fc:30:1a:e0:95:e5:4e:33:85:2f:eb:
40:e7:ed:38:55:ee:15:4b:6f:31:d2:80:d9:6f:e5:
09:dd:27:80:0b:f7:5a:85:be:6a:33:39:82:fa:62:
70:5d:aa:e6:eb:fd:32:d8:ba:02:de:42:72:b9:9d:
3d:45:21:17:01:c1:d4:42:cd:80:19:cc:31:21:24:
c4:05:af:69:7b:f0:57:c1:9b:23:b7:a6:10:d6:76:
7f:40:4e:d4:e0:eb:e3:52:51:d1:de:4e:49:f1:1e:
ed:49:d1:94:73:46:26:e8:0b:4b:a1:a4:77:2a:6b:
22:87:80:b4:58:7e:2f:18:6b:ba:77:bf:b9:95:b1:
40:ec:23:10:21:d2:90:fd:38:90:bc:57:73:0e:ab:
ce:6e:d3:c9:86:f4:8a:6c:4f:17:44:26:ba:27:d5:
d2:d5:51:75:b4:94:44:d0:72:13:eb:c6:90:5d:b3:
af:4f:ae:fe:47:b5:e2:f3:90:70:df:e6:72:70:53:
05:8f:49:16:c5:d9:31:d4:87:b5:dc:08:9b:49:c6:
d1:98:d3:36:4e:e9:60:de:6f:00:7d:89:2e:48:db:
6d:11:7c:73:20:8b:79:57:7f:82:82:7e:7b:d1:a3:
31:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:7F:06:00:BE:27:AD:5E:F2:C9:5A:60:31:16:9F:E8:B8:3E:F9:0D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2e2::/48
Signature Algorithm: sha256WithRSAEncryption
ab:a4:40:2a:d8:5b:e5:97:03:fd:83:34:53:fd:48:1f:79:01:
a1:12:fe:05:ed:de:75:2f:d4:d0:cc:dd:21:8a:65:f3:03:59:
61:5d:05:54:66:27:6a:42:e3:c4:92:f6:2e:f6:b5:82:13:25:
ec:dd:f9:25:83:98:86:d9:c8:af:57:e0:0b:a7:77:2d:84:55:
c9:94:26:46:05:0a:a0:b5:6b:fd:e6:91:7a:b9:9b:da:1d:da:
9c:71:8d:df:ee:c0:98:ec:69:47:62:11:58:38:4a:07:cb:8d:
72:a2:49:3c:b3:e5:e3:6e:4c:f7:c5:a7:87:e8:55:78:36:a1:
76:7f:73:eb:59:97:47:30:78:d3:94:97:e8:cd:49:0b:7d:a3:
1d:56:69:a2:15:9b:e0:f0:73:51:9a:de:be:21:11:79:79:d0:
b3:a9:ca:b8:02:00:16:28:fa:43:75:cf:8d:12:c9:0a:0e:31:
83:99:45:3f:e2:82:e0:a4:cb:5d:6d:0e:18:9f:85:97:02:c0:
a8:36:d3:0b:21:41:e3:e9:3e:96:55:f3:57:8c:37:6f:40:b3:
a3:9f:3a:89:18:f5:f3:8b:2c:89:71:38:d1:39:4f:3c:c4:6b:
79:b6:c1:13:46:c9:42:03:a9:71:de:0f:d6:e3:ff:67:ba:6a:
3f:f0:f3:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org