Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3332363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: jbvL8y3WXiAccCneU8nv0kVvMt/bOwu1JT55+y+zdi4=
Subject key identifier: 40:53:C9:10:3A:D1:11:B3:43:47:DF:2D:D2:13:DD:3F:00:03:C1:B2
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 76E448EF228A8FFA50C407BA3A35D5AE92124C07
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:01 +0000
ROA not before: Mon 26 Sep 2022 09:55:01 +0000
ROA not after: Mon 25 Sep 2023 10:00:01 +0000
asID: 59282
IP address blocks: 2400:d680:326::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:e4:48:ef:22:8a:8f:fa:50:c4:07:ba:3a:35:d5:ae:92:12:4c:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:01 2022 GMT
Not After : Sep 25 10:00:01 2023 GMT
Subject: CN=4053C9103AD111B34347DF2DD213DD3F0003C1B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:44:e1:58:f8:4f:cf:38:58:18:b0:c0:27:8c:
14:4b:6b:6b:dc:ae:82:b0:b7:9a:d4:22:02:60:fa:
35:61:10:61:bf:8c:31:4b:ca:60:f7:80:31:99:74:
97:b6:99:90:f2:4d:bd:88:05:83:56:2c:44:56:6f:
f9:a0:5d:c0:28:42:8b:85:c2:87:e2:74:66:5e:1e:
3b:a9:6a:bd:ec:93:9d:17:86:ca:43:58:7c:9d:cf:
29:c0:88:70:ff:dd:fc:42:ef:57:05:34:f9:60:6b:
d8:4f:a5:e2:47:37:dd:bf:35:32:63:9d:a5:d4:fe:
da:97:a7:f0:5f:6f:6b:cc:f2:40:09:1d:88:86:14:
c8:2a:ff:3a:d1:2e:4c:85:4f:72:c7:41:b4:7e:bc:
30:b2:2c:5b:fd:98:38:28:a5:d0:20:5b:7f:91:3a:
9d:30:c2:42:65:63:01:c3:89:6d:6c:94:75:48:45:
32:2c:9a:35:e5:c2:dc:35:c0:cc:c4:15:1f:de:4e:
ab:80:c1:2b:9e:b6:22:ac:45:d7:cf:65:55:96:e4:
12:00:3e:e1:30:f8:11:23:d1:ff:e8:df:60:0f:a0:
38:86:97:9d:49:bc:60:f6:f6:b3:10:40:06:06:28:
50:fe:e8:29:13:97:4e:18:2a:1f:a5:af:8a:e6:11:
7c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:53:C9:10:3A:D1:11:B3:43:47:DF:2D:D2:13:DD:3F:00:03:C1:B2
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:326::/48
Signature Algorithm: sha256WithRSAEncryption
39:36:3f:07:e0:93:d4:b5:f4:87:41:89:46:09:50:2f:07:ce:
ea:fd:d1:7e:2b:dd:9b:6c:57:5b:d7:5c:b2:69:b6:e9:5b:a5:
7c:ba:90:f0:ce:2d:33:b1:ca:2b:68:4c:2b:6a:d5:97:a2:81:
01:77:d5:14:c1:6c:cc:93:e8:05:9d:8e:07:d1:59:af:87:7a:
3f:1c:47:b6:24:53:6b:69:77:9b:d6:90:11:07:cd:9b:75:e1:
7c:86:1d:f1:da:68:2c:3c:a4:2f:78:39:1b:b2:f7:df:a8:78:
dd:dd:af:c9:1a:57:c3:0c:14:52:8f:76:8e:40:be:e9:92:66:
4b:6e:a0:c9:88:49:1f:a7:b0:95:8e:09:24:fa:e6:af:8b:2d:
58:5e:41:e8:2a:e4:40:8a:68:56:72:17:96:fc:47:ea:3a:eb:
df:a2:74:62:7a:b3:6f:0a:15:74:fd:24:fd:67:fb:a2:ac:5e:
2e:4b:53:11:5d:f6:2f:c3:d9:71:45:2f:28:53:ce:75:e7:bd:
36:f1:4d:91:3b:cb:fa:c5:d4:8d:2d:a8:b8:55:4f:9e:46:15:
b1:2a:21:0f:8f:ca:46:63:98:cb:8f:15:ab:10:fd:53:7f:da:
fa:2f:50:d8:7d:ca:93:2b:d0:0c:43:59:e7:8f:ff:d5:e7:6e:
7e:e9:53:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org