Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3332613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 9TOl0nOIZJ4Rw5Q46w2GWF4iG1c3hVl4IB2+Ft6SOG4=
Subject key identifier: FE:02:D2:94:F2:D6:F9:10:7C:3D:98:A2:01:C2:02:19:33:3F:F6:0B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1A9FB6943AB636930864E3779F0CC14DD5B8C6A0
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:31 +0000
ROA not before: Mon 26 Sep 2022 09:55:31 +0000
ROA not after: Mon 25 Sep 2023 10:00:31 +0000
asID: 59282
IP address blocks: 2400:d680:32a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:9f:b6:94:3a:b6:36:93:08:64:e3:77:9f:0c:c1:4d:d5:b8:c6:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:31 2022 GMT
Not After : Sep 25 10:00:31 2023 GMT
Subject: CN=FE02D294F2D6F9107C3D98A201C20219333FF60B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:72:1f:ee:04:c4:a1:1a:ee:22:f3:bb:d9:e0:
80:97:09:b5:87:68:f4:86:bf:50:06:4f:46:bc:07:
23:0b:16:da:8d:5e:28:b8:ba:f1:90:2e:fa:68:57:
0f:3d:0e:5d:6d:22:61:4d:1d:c6:31:b0:af:e9:63:
df:8f:4b:66:03:3b:af:4d:3f:28:0d:a1:b0:4a:78:
0d:04:4d:8f:75:87:5d:97:a2:4b:97:61:4d:2e:63:
67:a8:98:b1:4d:6e:a5:03:3a:10:9b:f7:69:1d:01:
e1:48:b0:de:7c:9c:09:16:9f:92:1e:a4:f6:5e:ae:
79:12:94:b8:c4:28:c9:42:73:58:5a:86:79:ff:29:
ec:ef:9f:bf:d6:7a:bc:c0:01:bf:f9:dd:29:09:ab:
c7:62:0b:33:3f:51:5e:46:e7:05:ca:ec:96:7e:fd:
e3:79:83:80:9c:4a:73:39:a0:0c:46:59:79:29:5e:
07:81:0c:02:ee:1c:f9:09:f0:49:08:bf:c5:6d:14:
b6:3f:9e:f9:f2:35:07:bc:cc:25:32:45:42:61:68:
35:bd:ea:70:58:7b:1a:50:53:f9:54:88:5c:4a:88:
0d:9f:41:44:9e:e8:5b:6c:33:02:42:26:b6:cf:c8:
78:c9:57:8a:03:b4:48:7b:d6:b7:47:e0:18:12:1f:
9e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:02:D2:94:F2:D6:F9:10:7C:3D:98:A2:01:C2:02:19:33:3F:F6:0B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:32a::/48
Signature Algorithm: sha256WithRSAEncryption
4b:eb:83:a7:4c:4b:b5:1f:bc:91:e7:16:d1:d3:86:da:94:e7:
2d:e4:b4:24:9d:52:1c:20:6a:ce:ab:cb:11:9f:c3:91:89:1d:
7f:2c:b4:56:5f:11:fa:da:75:f8:48:bf:52:e8:c9:d0:81:44:
66:d9:1f:37:89:8a:6d:9d:d6:4f:8c:cf:9b:98:d1:01:d8:11:
f4:c4:49:09:16:ec:6a:c1:e1:0f:43:40:5f:c4:12:96:4e:8f:
5b:e6:7d:fa:2b:73:fb:89:19:6c:12:d6:15:fb:e9:e0:e5:aa:
af:21:e0:65:00:53:dc:33:f4:47:b3:76:6c:20:2b:59:ab:2c:
00:ab:fd:80:2a:e8:fc:9b:a2:ac:e3:d7:ff:78:b7:78:d1:84:
ac:99:fb:4b:74:5d:18:41:74:02:81:84:27:bc:98:9e:f8:a3:
1a:34:99:4f:8e:d3:8b:96:89:06:c3:1e:03:63:e7:e2:43:14:
5b:f1:b4:23:3e:87:b1:b5:ee:9b:9d:50:56:09:6f:66:16:69:
a7:fe:b2:30:a5:1f:ca:de:fc:e4:6b:ee:1d:b4:c5:ef:eb:9d:
5c:6a:84:18:f7:ad:31:a2:07:7f:f2:4c:7a:68:64:90:b2:6c:
37:aa:ca:4d:e3:4d:21:5e:4a:35:fc:90:f7:c2:db:37:e7:d4:
ca:37:26:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org