Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3265643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: TvkMehAZYNSwiLnVlgTRXrd+YROO6XxZP/y1zIReyo0=
Subject key identifier: 04:1C:E1:5E:ED:E7:6F:F0:94:6A:BD:7D:14:0C:93:23:22:6B:EE:9E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3E0B2417CB02CEDE9DB804FF053F173EF5519470
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:07 +0000
ROA not before: Mon 26 Sep 2022 12:55:07 +0000
ROA not after: Mon 25 Sep 2023 13:00:07 +0000
asID: 59282
IP address blocks: 2400:d680:2ed::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:0b:24:17:cb:02:ce:de:9d:b8:04:ff:05:3f:17:3e:f5:51:94:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:07 2022 GMT
Not After : Sep 25 13:00:07 2023 GMT
Subject: CN=041CE15EEDE76FF0946ABD7D140C9323226BEE9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d2:a3:d0:af:9d:fb:83:97:ba:9a:fb:cd:33:
c7:d5:50:4e:f9:3e:74:47:8b:f0:a6:f5:cf:f6:72:
e7:00:23:cc:9b:aa:c3:5d:4a:d7:d9:c9:4e:01:70:
5b:08:29:4e:21:b2:09:15:c9:4e:1d:1a:33:cf:79:
d9:29:55:78:c8:b2:2e:25:ea:c1:b4:f5:49:4e:f4:
f7:ef:bd:99:da:c6:bd:bd:4c:a0:d9:ec:20:9c:32:
1b:df:8a:54:9b:e7:3c:49:12:33:07:86:47:db:9d:
35:03:1f:77:10:33:f8:21:c7:f5:13:4b:78:e8:a2:
cc:0e:d7:ec:ad:30:df:35:59:3f:c3:8d:b2:48:71:
9e:6e:5f:8e:d7:99:56:1a:36:c2:38:ca:70:e2:8e:
95:d8:7b:6b:ed:23:cf:8d:6b:7a:ea:b0:c6:6b:88:
8f:03:de:2f:f8:26:8d:09:5e:62:63:7d:80:7b:8e:
9d:cb:32:f5:54:f1:73:5f:12:c2:0c:5e:47:df:aa:
fa:16:88:ae:36:44:da:47:6f:e3:56:b9:6c:85:0d:
7f:98:09:6c:cc:31:5b:00:a5:53:5e:ea:16:b0:72:
2e:f1:93:1e:dd:a5:12:c8:7b:a8:43:bc:29:19:3a:
83:79:47:04:3b:b2:15:63:32:18:90:a5:bf:2b:a9:
c1:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:1C:E1:5E:ED:E7:6F:F0:94:6A:BD:7D:14:0C:93:23:22:6B:EE:9E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2ed::/48
Signature Algorithm: sha256WithRSAEncryption
4c:15:2f:1d:10:bb:4f:44:3a:90:04:e4:e9:c9:50:9d:b0:31:
57:c3:bb:ff:28:3e:03:dc:e8:0a:64:76:97:06:38:ff:ed:a1:
28:c1:96:27:3c:12:18:13:5a:04:e5:21:80:d9:2f:4e:db:f3:
29:dd:fd:b7:95:e4:38:04:49:ec:c0:7c:99:40:f1:a4:e1:ad:
83:21:e4:aa:b9:f6:7f:77:07:9e:c3:bb:64:53:78:9f:d9:c7:
4e:04:40:71:67:ba:b7:39:49:14:61:7b:91:bc:b9:19:f3:7b:
bb:c1:c9:7b:56:c4:05:97:39:63:53:7e:2f:d0:74:fe:1f:d5:
26:36:12:2d:b1:15:35:46:e1:70:0c:9c:50:5e:53:11:d7:3e:
89:28:8e:f8:42:49:0d:72:09:47:bf:e2:a5:b5:43:a7:49:a9:
34:af:35:57:43:19:8f:f1:89:da:3c:15:c4:8b:ac:3d:63:23:
38:3a:3b:cf:35:cd:a7:f9:50:8c:cf:96:79:da:78:1a:26:7b:
c6:57:4f:78:81:91:7f:ad:2b:54:67:d3:46:a0:53:8b:4b:9b:
13:c5:70:00:0d:cf:a9:cd:87:4b:2e:c7:27:f0:99:b1:2a:f0:
69:84:cc:1d:2d:77:7c:a2:95:73:f7:f2:60:c3:18:29:75:d6:
f4:80:41:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org