Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3331333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: XeCQUEddib94LpvamRcP0bnQoQ87G3EfRxtfKGFg1Uo=
Subject key identifier: E4:DB:7C:6F:8D:8C:09:8E:D4:3A:D1:69:37:4B:04:D8:C6:C0:2A:32
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7D28A2F515F020E2A019AC26D7B73CDC0201C997
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:33 +0000
ROA not before: Mon 26 Sep 2022 09:55:33 +0000
ROA not after: Mon 25 Sep 2023 10:00:33 +0000
asID: 59282
IP address blocks: 2400:d680:313::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:28:a2:f5:15:f0:20:e2:a0:19:ac:26:d7:b7:3c:dc:02:01:c9:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:33 2022 GMT
Not After : Sep 25 10:00:33 2023 GMT
Subject: CN=E4DB7C6F8D8C098ED43AD169374B04D8C6C02A32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:45:df:65:ba:41:ea:7d:fd:39:06:4e:74:45:
e9:51:d3:b0:0b:6c:4c:8a:e0:a4:fc:f0:85:1a:8a:
ef:18:a5:ed:9f:28:19:9e:d9:72:bb:82:86:91:8d:
f5:10:fa:50:54:38:ac:40:2d:af:88:a5:20:63:90:
cf:cf:a0:b3:08:61:79:b6:b8:fc:bf:94:08:ba:c0:
42:17:c2:b4:60:b8:a5:03:f5:62:35:3f:bc:9f:d7:
e2:e9:6f:31:ed:0e:05:1a:81:ce:f4:76:bc:ad:1c:
de:dc:d0:35:7b:cc:72:e1:17:27:7a:06:76:6f:c1:
eb:fa:e3:af:fb:49:3c:65:4b:25:c7:f0:57:9a:48:
e2:1f:96:08:b1:51:74:a7:2e:9d:03:c6:43:2b:cf:
bd:11:24:c6:35:01:b4:d2:c3:d2:4d:24:bb:5b:f7:
8e:02:23:97:f3:9c:70:53:65:2d:ad:29:e4:ec:92:
a1:6e:23:08:36:28:b7:d0:c8:63:f6:dd:49:c8:de:
91:b1:ef:9e:8b:c9:c6:1d:73:9c:8d:3b:f1:7b:7f:
17:0c:21:8c:8d:fb:dc:4b:37:b2:ba:5f:b2:e3:55:
ef:c3:4b:d9:44:6f:f4:54:83:e8:e8:6d:df:5f:79:
72:2e:2d:11:a7:21:65:52:8f:48:f0:ae:36:81:02:
a2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:DB:7C:6F:8D:8C:09:8E:D4:3A:D1:69:37:4B:04:D8:C6:C0:2A:32
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:313::/48
Signature Algorithm: sha256WithRSAEncryption
26:28:e0:05:63:dc:2a:71:b7:ab:45:79:75:13:02:49:4a:56:
27:d3:12:d2:8e:a4:89:4a:1e:1c:39:f7:7b:30:d1:1f:9d:9b:
87:de:81:71:15:35:ae:9e:dc:00:0c:16:65:84:cc:fc:49:10:
e5:f1:d5:db:18:cc:64:e4:d0:89:81:54:b2:59:1a:e6:23:09:
83:8e:02:5b:40:47:da:8f:03:0b:99:af:33:67:d8:52:14:f4:
83:3c:7a:d9:d2:d7:42:05:6a:84:79:af:13:e7:70:59:d3:e7:
7a:df:0d:81:7c:fe:59:19:e2:1f:e7:bc:1d:ef:73:58:96:69:
28:cc:da:e8:f0:58:5a:4f:86:d8:41:98:8c:8a:b7:82:58:49:
a7:7d:1a:9a:bc:0d:8d:e6:29:a8:eb:75:80:9f:87:2f:4d:0a:
0d:02:ee:ed:b0:b2:1b:1f:f5:6f:63:a3:df:a1:e7:b7:b8:a2:
96:de:79:36:2c:6c:4d:30:2c:db:dd:b9:26:aa:55:75:2b:87:
b5:6d:e1:d3:1e:58:94:e9:c4:95:d6:b2:d4:0e:68:e2:db:ac:
87:d0:30:f8:9f:7e:40:0d:80:67:a4:e0:11:e2:e9:e8:03:c4:
2f:8f:8e:3a:7e:66:d4:65:16:9d:df:43:8d:3e:5a:d5:47:e4:
7d:45:66:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org