Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3330313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 7qQvOrwp7BhkgGCF3CGYVtiWcczDaD92CMV9heoBVHQ=
Subject key identifier: 67:1B:C8:94:6F:9B:CD:B5:C8:9F:49:40:8D:36:85:62:B5:AD:D0:09
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7698F8E180FA9F3C047E88C17A0CB447DE849407
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:13 +0000
ROA not before: Mon 26 Sep 2022 09:55:13 +0000
ROA not after: Mon 25 Sep 2023 10:00:13 +0000
asID: 59282
IP address blocks: 2400:d680:301::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:98:f8:e1:80:fa:9f:3c:04:7e:88:c1:7a:0c:b4:47:de:84:94:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:13 2022 GMT
Not After : Sep 25 10:00:13 2023 GMT
Subject: CN=671BC8946F9BCDB5C89F49408D368562B5ADD009
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:87:b9:03:aa:03:7a:78:bd:64:ce:8d:98:76:
4f:d1:28:ea:7c:a0:70:a3:b1:5c:ce:7f:38:48:00:
98:f4:50:4c:46:67:6c:b5:c6:26:cd:5e:f1:00:5b:
ba:e1:f9:1b:01:48:68:6f:82:94:d6:87:0c:5f:65:
0b:db:85:bf:64:8a:a1:9c:c3:0f:fc:7a:c4:e6:63:
90:6d:a8:7e:53:14:11:9a:d3:de:69:8b:65:81:20:
57:a8:e6:57:43:1d:4e:cb:f0:2d:10:eb:52:64:d9:
90:23:60:4f:d1:a2:0b:39:b3:e3:9f:86:0a:8c:d3:
db:49:a8:cc:db:3b:ae:bd:16:b4:75:a9:cb:db:b0:
25:81:0f:6e:fb:6d:07:69:b5:77:ce:99:66:28:31:
ad:b6:d2:7b:5d:02:b6:ba:15:61:a2:33:a2:e9:0a:
84:2e:11:b9:00:b2:06:4f:b3:13:f3:e5:9c:b4:ed:
28:cd:c4:85:c9:e9:78:52:6b:11:dc:09:13:4e:80:
79:c5:79:11:5d:c2:63:2e:b5:c7:d1:e4:c3:f8:2d:
ad:55:52:03:61:e3:d6:a9:28:59:10:04:6b:68:35:
0e:82:d3:9f:91:80:3a:e6:3d:98:c8:46:ac:b8:bf:
43:ec:eb:de:eb:77:4c:55:03:b7:8e:e9:d1:21:01:
eb:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:1B:C8:94:6F:9B:CD:B5:C8:9F:49:40:8D:36:85:62:B5:AD:D0:09
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:301::/48
Signature Algorithm: sha256WithRSAEncryption
31:24:94:64:69:08:4a:a8:5a:76:31:9e:c0:ac:36:0b:88:ee:
8f:ea:70:95:91:84:04:2e:96:e8:c2:31:a6:5f:d0:d4:98:4e:
c3:aa:a5:67:1c:ec:a6:52:aa:8a:75:88:ae:0a:8e:33:de:88:
b4:34:2d:25:17:45:af:7f:c1:a8:52:c6:e6:f7:41:e6:90:4a:
6f:31:93:dd:77:c7:0c:25:ec:e6:df:df:37:e9:b0:a7:48:22:
92:bc:a1:e4:bc:86:7a:50:6f:39:e3:f6:56:ae:1d:05:83:22:
fb:f3:f9:0e:3b:62:2b:dd:57:3f:1d:6c:d0:23:c5:8d:b7:d3:
eb:19:1c:8a:c6:8a:16:7c:85:a3:d8:41:a5:fc:38:68:52:c9:
2b:74:56:dc:16:c0:b0:df:38:b4:65:5d:f8:f1:3c:f3:01:ef:
cb:ea:2a:64:b7:67:9f:ae:9d:e9:e8:ab:58:91:94:6c:8e:21:
e6:ba:e2:38:68:bb:8c:00:00:f9:9a:3d:f7:14:d8:e2:e6:98:
7c:58:98:bc:82:5e:50:fb:56:cf:04:de:fd:a4:b7:fc:fe:42:
a1:b2:a7:be:df:a8:44:74:42:6c:68:f3:f6:4c:0e:17:ef:d9:
61:da:6d:ec:7e:42:11:7d:71:69:a6:b1:75:23:5b:29:22:97:
f8:a9:26:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org