Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3265333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: w4it2meEedUx+JrSp3FUZJeHAuK286npICin/9jaNFI=
Subject key identifier: 11:F2:A1:69:74:C1:10:81:4C:AA:85:4C:A8:D4:52:15:FD:7F:BC:E6
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 43496EE7E6E0DEEA51B6E44181AD456BACA8E2F6
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:12 +0000
ROA not before: Mon 26 Sep 2022 12:55:12 +0000
ROA not after: Mon 25 Sep 2023 13:00:12 +0000
asID: 59282
IP address blocks: 2400:d680:2e3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:49:6e:e7:e6:e0:de:ea:51:b6:e4:41:81:ad:45:6b:ac:a8:e2:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:12 2022 GMT
Not After : Sep 25 13:00:12 2023 GMT
Subject: CN=11F2A16974C110814CAA854CA8D45215FD7FBCE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:9f:23:09:06:38:38:fc:ad:50:ba:b7:79:c8:
10:bb:b6:36:4a:73:78:ea:e6:d1:24:93:f1:01:55:
df:c2:25:7d:cc:6f:b5:0b:e6:0d:53:75:c2:fb:77:
e3:bb:bb:b0:68:46:e0:0b:31:16:39:a2:80:b3:18:
34:7e:f3:33:6b:46:a1:37:0c:c9:55:f6:d7:96:dc:
f4:85:d6:0d:50:c8:77:06:d0:7c:0f:3c:03:ba:4b:
80:2c:fc:d8:ab:72:fe:d7:f9:77:39:14:e4:9e:b4:
45:91:46:42:ea:9f:72:10:a3:47:43:96:ee:c2:c3:
42:72:8f:86:8c:e5:ad:da:d4:c6:23:6a:74:33:bd:
44:79:d4:8a:53:15:9b:b2:ec:4c:c9:03:b2:15:90:
df:cf:93:86:70:2a:f3:c0:4a:33:58:b5:65:6a:cd:
60:53:6a:0a:6c:32:57:96:56:87:2c:e6:4d:af:63:
91:28:55:f1:79:80:06:d8:8d:f0:40:81:a9:5a:ab:
5a:db:70:fe:0a:24:96:b6:c6:36:fb:f1:f5:45:db:
f2:21:bb:26:5d:23:9a:68:e6:27:ab:cb:5b:8e:42:
de:8f:02:b5:39:50:90:d5:7e:7f:b8:a5:ab:27:80:
ca:4d:17:77:60:8c:5b:c3:f9:ae:0e:30:75:53:63:
98:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:F2:A1:69:74:C1:10:81:4C:AA:85:4C:A8:D4:52:15:FD:7F:BC:E6
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2e3::/48
Signature Algorithm: sha256WithRSAEncryption
8d:51:a4:55:e9:49:89:2f:72:2b:c5:d9:5e:f1:eb:7a:65:8d:
c9:ba:73:1a:1d:bd:2e:ab:b1:66:ff:51:72:23:c2:04:df:a0:
52:b6:e9:3f:8c:db:18:9d:6f:43:da:d5:fb:06:fb:52:eb:4f:
6d:90:fb:04:e9:5f:42:4e:9c:25:ae:42:fa:aa:24:7c:9a:ba:
da:8d:5d:6d:2a:b6:1e:be:03:0b:c2:4c:30:21:60:c0:3c:ad:
b2:b0:88:f7:bd:f3:87:05:66:aa:bf:2e:25:44:0a:e1:d4:62:
e6:a9:bb:92:b9:49:20:6d:0c:d7:66:f9:76:cb:ec:a0:53:bb:
ca:fd:33:c9:80:f0:e2:52:22:30:5d:8e:c8:18:c0:95:c6:21:
7c:d1:34:84:b8:45:f3:a6:35:d1:28:8d:15:c6:a1:9d:19:56:
0f:d4:00:01:9a:4c:bd:ef:64:c3:0b:92:d6:0b:13:6d:01:6d:
eb:45:2f:4b:16:97:cc:fa:a8:dc:7d:29:dc:5f:8e:c6:81:89:
b0:7c:5d:ad:3f:7a:cc:d5:02:8c:81:98:80:e4:e7:d1:e1:44:
73:46:77:15:33:c9:0d:24:bf:ea:6b:fb:26:61:a1:9b:99:15:
df:71:9c:e9:a1:70:de:a9:85:f7:c7:31:d4:f6:5e:b1:f2:f7:
4e:4c:c8:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org