Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3266303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: YiX8y1QNuK3WyMUF8BeDufKnFXtV9A6hoYcLgHDfzzs=
Subject key identifier: C5:C8:65:75:04:5F:DB:08:AF:FC:EC:DB:27:EC:63:14:50:AC:17:C3
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7A5BAFE9A90BFFC4280FEC5D7117415549441A6B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:04 +0000
ROA not before: Mon 26 Sep 2022 12:55:04 +0000
ROA not after: Mon 25 Sep 2023 13:00:04 +0000
asID: 59282
IP address blocks: 2400:d680:2f0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:5b:af:e9:a9:0b:ff:c4:28:0f:ec:5d:71:17:41:55:49:44:1a:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:04 2022 GMT
Not After : Sep 25 13:00:04 2023 GMT
Subject: CN=C5C86575045FDB08AFFCECDB27EC631450AC17C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:21:6c:39:0b:02:52:6f:cd:92:e9:38:8d:26:
ed:3b:60:67:ce:b3:14:09:e0:97:fc:5a:95:6c:ce:
eb:c4:5a:8f:5f:4a:4b:d8:ce:0f:4e:09:47:a4:b3:
bd:8d:d5:ac:5f:db:12:5d:1d:11:dc:bf:bc:11:b1:
4e:e4:f2:04:2a:b9:1e:de:e1:1a:a0:25:47:77:76:
a1:de:89:8d:bd:91:12:1e:00:3c:0f:78:99:9e:2e:
fa:4f:61:80:30:4c:b2:ff:1d:bd:1b:f2:f0:85:da:
7d:5b:b5:12:b0:0a:5f:c8:ba:74:f1:60:e2:82:ec:
fc:5c:41:14:30:7b:78:58:c8:1a:3e:4c:76:8f:69:
15:fa:00:73:83:2a:90:10:bc:ed:9c:94:7e:a0:eb:
0f:97:a7:9b:9d:71:71:e8:13:de:06:1d:dd:7e:a8:
4e:57:eb:5b:92:21:88:7e:a3:b4:40:b0:9f:5f:7e:
fa:a0:73:6a:b8:55:bf:e4:96:20:bb:66:02:96:df:
27:ed:9b:ee:f5:33:20:ff:98:c2:36:c3:0a:a8:a2:
ff:de:6c:0f:bf:2a:40:b6:06:b7:dc:c5:0e:48:a3:
72:fa:a7:1e:cd:a6:05:8e:2b:39:58:d9:fe:a3:78:
e5:97:88:e3:68:69:b9:37:2d:60:0a:63:ff:ec:6f:
2b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C8:65:75:04:5F:DB:08:AF:FC:EC:DB:27:EC:63:14:50:AC:17:C3
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2f0::/48
Signature Algorithm: sha256WithRSAEncryption
9c:ab:9b:af:dd:7b:a7:4b:82:ef:e1:5b:86:8b:17:22:0f:7a:
69:ee:5a:e2:06:bf:fc:6d:58:a8:dc:09:6b:9f:f1:b8:ae:f3:
d0:26:b1:24:60:fd:f6:04:82:3c:41:b1:be:14:a5:a5:b3:a5:
33:c3:c9:a7:e6:8a:b9:7b:e2:c2:2f:a3:63:c8:e2:0d:f3:b9:
8d:c0:11:62:15:fc:8a:33:6f:6a:c2:7d:9c:ad:86:48:58:0d:
2b:5f:a5:38:d5:c9:d2:e9:93:dc:e9:30:84:ce:1a:7b:ed:e9:
65:cb:cd:c6:df:b2:fd:9f:3e:a7:1f:08:00:44:7f:76:dc:1d:
5b:f4:87:3c:0b:ea:15:4a:fc:7a:18:84:59:37:1f:3f:ba:93:
66:1d:e1:9a:66:b6:ef:34:1d:aa:34:fb:e7:58:23:12:a0:40:
83:2b:3e:ef:22:7e:d8:ce:f4:f4:4c:62:51:31:51:f3:58:ed:
37:c9:21:7d:a1:89:7d:00:51:81:19:4c:c5:b5:5d:5b:e7:fe:
39:52:89:ff:41:b9:86:21:a4:f8:ca:1a:2d:8b:db:e3:26:32:
77:25:67:2e:6b:ac:40:64:1c:1c:4e:d8:ca:a1:53:97:50:9f:
aa:66:c8:db:00:19:3d:a1:39:39:6c:85:8a:2a:56:11:1c:9b:
08:e9:c9:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org