Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3265393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Fp+mqbkWpiPtVJUJwzJ4Juj8RNRPBaOZ/fUz7faxiaU=
Subject key identifier: E7:F7:A9:1B:AB:AD:17:37:8D:EE:BD:B1:7F:7C:F7:02:78:9E:3C:95
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 24777D90B8A8F6EBB57C4E8EA081B63C15B4F7AB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:07 +0000
ROA not before: Mon 26 Sep 2022 12:55:07 +0000
ROA not after: Mon 25 Sep 2023 13:00:07 +0000
asID: 59282
IP address blocks: 2400:d680:2e9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:77:7d:90:b8:a8:f6:eb:b5:7c:4e:8e:a0:81:b6:3c:15:b4:f7:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:07 2022 GMT
Not After : Sep 25 13:00:07 2023 GMT
Subject: CN=E7F7A91BABAD17378DEEBDB17F7CF702789E3C95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b9:e7:8e:47:f4:9e:7c:dd:ac:7d:3d:d4:bf:
6f:9d:e9:3d:fe:99:ef:49:4d:bd:9d:68:94:87:d0:
1b:36:9a:ed:a7:10:dd:e8:d5:32:db:ed:75:23:34:
56:65:6f:64:8f:7e:c4:24:cb:e1:d6:49:7b:78:0a:
36:21:19:ad:b9:05:86:27:21:86:c0:ed:66:56:2a:
82:fd:48:ec:37:64:70:0c:c0:eb:e7:8a:54:bd:1a:
f1:d8:48:da:9f:9d:ba:d8:6d:86:5e:ee:73:20:30:
ef:43:b1:80:13:6b:37:ef:ad:51:92:2d:f0:45:6c:
b6:e1:2a:af:d4:21:c8:72:e2:7e:52:3a:80:1d:72:
47:b6:10:13:01:be:1d:df:a0:e5:dc:6f:27:27:2a:
fc:b0:2d:fd:db:a4:be:2c:a0:0b:17:3d:4a:35:e0:
e4:71:7e:2a:bb:fd:44:c6:08:4a:62:0d:e3:af:5a:
46:ac:2a:93:a9:d4:0c:b3:b2:6e:a0:e3:73:da:e0:
51:8c:2c:3e:4f:9f:24:a3:d4:e3:e8:b0:aa:09:42:
a4:3b:3c:f9:f0:50:1d:aa:3f:55:e4:78:9b:d0:bc:
7c:19:36:ef:8d:71:5e:be:53:f8:d0:c0:2b:a4:36:
1e:ac:77:45:a9:77:50:45:12:b0:65:42:8f:5b:ba:
cf:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:F7:A9:1B:AB:AD:17:37:8D:EE:BD:B1:7F:7C:F7:02:78:9E:3C:95
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2e9::/48
Signature Algorithm: sha256WithRSAEncryption
8f:7a:80:b4:27:16:e1:4a:f3:a5:46:c0:fd:7e:d0:23:20:2c:
20:5c:8c:da:a7:38:ca:2f:64:23:2d:ca:f6:0d:75:0d:07:f3:
f0:d6:a6:9f:00:70:bc:4f:6b:a0:d4:e7:bb:cb:78:91:e8:fb:
e9:a0:8e:20:2b:c2:e8:92:7a:ab:c0:7a:33:60:35:7a:c9:4f:
f9:7f:05:9b:01:98:35:af:1c:e4:04:83:1b:30:8c:af:f9:c1:
94:fa:c1:7f:7f:cd:f7:b6:eb:34:ff:27:77:2f:b6:c8:14:7d:
bc:3a:4a:06:71:7b:55:4b:4e:5f:99:71:b7:d0:46:c7:51:2e:
1f:51:80:aa:dd:a9:1d:2d:31:12:08:07:f5:e7:db:74:34:c3:
7c:71:b4:b0:c1:49:e0:3c:80:d7:0b:7c:07:2a:ba:b9:1d:18:
4d:d5:b3:5e:32:4a:be:1f:39:5f:36:87:79:fc:0b:70:3a:4f:
12:0d:57:c9:aa:0f:4a:4a:a9:e8:c0:97:8c:07:bf:32:33:9d:
0f:12:35:cc:ff:99:1d:e0:46:72:81:11:ed:8f:17:e2:df:c1:
63:39:b7:37:75:ad:85:e4:04:09:30:7a:ab:1d:d7:5d:f2:02:
35:7f:32:45:ee:34:42:6d:9e:91:de:25:03:18:cc:8b:a1:5e:
cb:7e:31:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org