Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3330373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: cQ4jMTJVcwSFLcWTeHiV2FZ52OhyXHUarqY/CNXZI8M=
Subject key identifier: 45:7E:60:D7:E8:EA:A8:D9:37:0F:2C:A2:5C:C3:68:FA:A4:E9:62:75
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 485B4D6E62C7A5E40F2F3CE5417A69AA48C898D8
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:19 +0000
ROA not before: Mon 26 Sep 2022 09:55:19 +0000
ROA not after: Mon 25 Sep 2023 10:00:19 +0000
asID: 59282
IP address blocks: 2400:d680:307::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:5b:4d:6e:62:c7:a5:e4:0f:2f:3c:e5:41:7a:69:aa:48:c8:98:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:19 2022 GMT
Not After : Sep 25 10:00:19 2023 GMT
Subject: CN=457E60D7E8EAA8D9370F2CA25CC368FAA4E96275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:c8:77:b7:84:09:4b:46:19:68:9e:1a:60:cd:
8f:45:1d:24:55:09:c5:95:02:a5:37:77:da:3b:73:
0c:a6:22:ff:64:2b:00:75:24:d4:b1:89:8c:6b:ef:
94:79:7d:e1:a3:b0:9c:48:ff:96:0f:7e:43:cd:86:
45:ad:f1:26:cb:8f:e6:a7:ec:3a:1a:a4:76:c5:92:
f1:8f:48:12:5e:23:79:5c:53:fa:cf:8e:48:31:30:
4d:81:86:26:e7:c3:95:d4:4f:54:0c:77:45:ec:49:
ce:47:33:72:83:64:e3:2b:36:7d:d3:c9:3d:5e:40:
40:f1:3d:8d:14:8c:d9:ed:22:bb:13:6c:58:0c:ae:
3b:b9:8e:1c:5f:a2:45:f7:09:4d:4b:f4:4d:cf:2e:
db:74:1e:24:90:f8:4e:a7:ac:d0:f0:c6:4d:04:60:
f4:a5:cf:b3:61:6e:a5:82:8a:0c:18:6a:3e:ae:4f:
58:12:1d:68:fc:fd:7f:5d:cb:e1:43:61:de:2c:aa:
40:d9:9e:19:79:d0:b8:6c:68:75:3b:a1:48:cd:e7:
42:ce:ac:b4:f1:3f:3f:31:a0:5e:b7:fe:68:7b:83:
4b:95:93:e9:e2:78:a8:06:9b:6f:de:0f:dc:b1:3b:
00:64:89:bc:b2:8c:da:b6:df:8a:6b:68:3c:9a:6b:
6a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:7E:60:D7:E8:EA:A8:D9:37:0F:2C:A2:5C:C3:68:FA:A4:E9:62:75
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:307::/48
Signature Algorithm: sha256WithRSAEncryption
5e:93:4c:c9:cb:f5:c2:8a:05:46:c3:b4:2c:4d:68:4d:61:aa:
a7:ae:97:c4:f8:01:21:b2:e9:b4:26:4f:e0:c2:35:45:42:cb:
96:ea:1d:88:59:6b:df:f1:9b:6f:ee:7b:5f:45:2c:cb:e3:04:
52:f6:41:32:99:f5:26:d0:f1:39:86:00:bd:2d:cc:4b:80:50:
43:f3:35:70:aa:30:f3:42:8d:2c:70:2c:10:73:6f:19:ad:ed:
f3:4f:ac:de:c4:00:49:ad:0a:2b:71:8d:61:1d:85:e8:c3:0e:
43:6e:fe:7d:d9:7a:be:16:7f:a0:e3:4f:d9:fc:28:d3:eb:40:
59:76:29:f6:37:c6:3b:15:0c:4d:93:c4:5a:be:f2:0d:5b:9d:
fd:3d:cf:00:fc:c6:98:7b:92:b2:10:9c:c1:c9:bb:c7:ad:14:
80:21:90:c4:44:17:35:15:b2:9b:ef:00:11:c6:1a:e9:f6:ba:
89:9b:89:71:38:80:56:57:5f:88:82:67:b6:c8:f2:f3:ab:f3:
f5:74:70:38:3b:b7:79:6a:50:44:32:b8:9e:fe:09:21:b9:09:
0f:f2:f3:ae:80:2a:0b:9c:2e:7f:32:e3:dc:67:28:81:97:a9:
cc:e0:5f:90:d8:18:af:49:10:ba:53:6c:7f:ba:13:90:4a:33:
22:14:a8:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org