Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3331363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: HuvOUtC8kzgiCHjp+e/hu4gLM1/B+RWeJ9sHym5YiuA=
Subject key identifier: D3:20:00:E9:1F:97:A2:77:89:7C:4D:60:39:E7:83:5A:A8:80:E6:C8
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 136C69ED4BEF8A3A268325D22C9468897DBFF5AD
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:13 +0000
ROA not before: Mon 26 Sep 2022 09:55:13 +0000
ROA not after: Mon 25 Sep 2023 10:00:13 +0000
asID: 59282
IP address blocks: 2400:d680:316::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:6c:69:ed:4b:ef:8a:3a:26:83:25:d2:2c:94:68:89:7d:bf:f5:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:13 2022 GMT
Not After : Sep 25 10:00:13 2023 GMT
Subject: CN=D32000E91F97A277897C4D6039E7835AA880E6C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3a:08:8c:e0:22:a4:19:71:ca:3a:63:f6:00:
b1:f2:36:b0:e6:e1:07:ca:d2:10:e0:b3:b1:51:0a:
6c:36:88:b2:84:fd:b4:27:ae:cd:01:30:55:d0:13:
fb:52:34:ba:aa:91:0a:ea:eb:25:f9:e6:54:71:ca:
59:16:ba:9d:97:9f:b8:a3:07:12:7a:34:b9:e9:08:
9a:e0:fc:2c:9a:0a:40:3c:88:4b:d7:43:22:22:7f:
b4:56:a8:93:2a:0a:ca:af:a5:c2:21:96:09:b0:ff:
8a:ae:cb:38:ad:86:17:e8:e6:f9:af:d1:29:a2:31:
ff:6b:de:b3:dd:5b:4e:63:98:ae:eb:6e:e4:42:f4:
8f:f6:3e:6c:c5:52:07:f1:a7:c0:93:41:85:cd:c6:
07:2e:23:7d:e6:88:8b:c6:36:fd:e1:b2:75:50:bd:
e1:6d:76:ae:70:35:05:ba:24:82:a1:a7:28:63:d2:
2a:64:a6:36:54:28:29:b0:31:dd:d0:af:1e:89:b1:
44:c4:bf:2d:59:67:2f:76:c9:23:8b:19:97:f6:10:
3d:37:c7:2f:d6:b6:07:8e:93:ec:ef:63:71:84:6b:
3b:15:7c:a8:0d:0e:c0:6a:11:d5:b5:73:6d:ac:f3:
b6:63:fa:fe:1c:cb:b1:82:a4:35:9e:4a:ab:5d:db:
c2:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:20:00:E9:1F:97:A2:77:89:7C:4D:60:39:E7:83:5A:A8:80:E6:C8
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:316::/48
Signature Algorithm: sha256WithRSAEncryption
b6:5a:bb:8b:8d:e3:ad:b9:60:27:0a:76:01:84:98:9d:4d:44:
fd:f3:f0:6a:b6:b8:68:d7:95:a4:19:ec:6e:1b:01:04:36:41:
93:3e:46:fb:c5:ad:9f:60:78:db:c5:4b:ed:6f:af:2a:a3:c1:
f0:79:12:08:8a:a3:ae:ce:d3:1b:c2:e1:15:e5:3a:68:28:f7:
f1:70:5d:bf:26:8f:f4:f4:6a:c1:0b:62:9d:f1:a5:f7:9b:36:
0a:2b:1a:93:67:8c:d1:b4:6c:20:0e:d3:97:25:df:c3:29:e9:
a8:03:8f:94:83:2b:96:b6:8a:70:57:90:51:44:14:a1:95:43:
05:e4:f6:32:68:3a:70:a6:e8:e5:0a:3c:92:99:c3:37:6c:7b:
d7:f0:7c:a0:8a:ee:8f:75:92:ea:b6:69:d5:1b:cf:ba:01:a8:
25:c4:2f:fd:ac:07:48:4f:0f:9f:7b:d3:c5:0a:ee:fd:00:c9:
91:e8:e4:d6:d4:79:bf:66:3e:87:7c:62:86:75:30:b2:82:97:
dd:98:8d:4a:bf:02:5e:ca:c2:ce:a2:68:21:e4:3a:c9:e8:9b:
14:0e:6e:d2:3f:38:36:0a:65:7d:26:80:1f:37:34:52:f0:06:
cd:7a:ce:19:d2:b2:4a:42:43:b6:ed:85:11:ff:f7:5a:e1:f3:
ad:62:42:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org