Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3332653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: npSGxJP55+iVE9HjOf9Hy9R+kCm7RqDmwXPFgdnhHCs=
Subject key identifier: 60:30:A7:B4:DE:FF:65:A5:9C:50:92:12:F1:2E:59:AD:42:0D:E3:E2
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 51434BA8BECD650EBC474CDFA30B4A6800D1F54D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:22 +0000
ROA not before: Mon 26 Sep 2022 09:55:22 +0000
ROA not after: Mon 25 Sep 2023 10:00:22 +0000
asID: 59282
IP address blocks: 2400:d680:32e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:43:4b:a8:be:cd:65:0e:bc:47:4c:df:a3:0b:4a:68:00:d1:f5:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:22 2022 GMT
Not After : Sep 25 10:00:22 2023 GMT
Subject: CN=6030A7B4DEFF65A59C509212F12E59AD420DE3E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e7:78:ee:3e:92:71:5a:36:4c:15:f7:80:5f:
75:cd:af:03:c1:04:68:f0:9d:7a:41:f2:4e:45:19:
2c:67:d3:77:cd:bd:ef:d4:ea:02:d4:77:68:e4:20:
eb:86:e0:cc:1f:2a:96:bf:b5:aa:b0:2c:de:3c:6e:
f0:4e:ad:47:99:6f:07:26:a1:f9:67:54:d5:89:24:
29:48:2a:af:c7:b3:6e:e4:7e:fd:b5:fb:c4:40:b9:
d2:74:1c:f6:bd:9b:72:a0:26:54:1a:8d:26:1e:60:
57:0d:53:17:1e:65:87:e1:40:05:61:33:8e:88:a8:
7e:98:57:78:a7:2e:fb:fd:d3:76:f8:cc:14:15:56:
72:ea:8c:25:ce:b1:79:3e:3a:0d:72:a7:5d:90:79:
d0:31:3c:ab:a7:91:51:17:63:72:dd:f9:58:da:8c:
a4:1a:35:5f:77:e9:1b:02:73:c4:b9:9d:76:db:cb:
b4:77:a7:bb:9c:83:24:6a:30:4e:87:47:60:08:9d:
41:1e:5c:66:38:1a:b4:77:b9:0f:cc:7c:b1:a9:de:
5b:fa:43:03:0a:0b:8e:12:89:3e:a4:83:89:b9:5b:
20:35:af:10:12:14:05:78:37:5a:1a:7b:a4:93:ed:
1b:4c:90:46:69:31:4a:c4:05:d4:9c:bb:34:36:f8:
32:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:30:A7:B4:DE:FF:65:A5:9C:50:92:12:F1:2E:59:AD:42:0D:E3:E2
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:32e::/48
Signature Algorithm: sha256WithRSAEncryption
ca:ce:26:eb:79:23:34:05:1a:26:3f:af:be:9c:48:3a:f8:a8:
de:5c:e4:68:df:5c:34:8e:dd:47:db:51:3f:1b:9a:35:40:fb:
e7:d0:29:bd:61:eb:e3:84:3b:3d:c2:0d:1a:1a:a2:46:8e:22:
56:4f:c1:f1:d7:b5:0c:1e:d5:11:31:42:e4:45:1d:bd:3e:71:
ce:20:92:93:19:76:e4:37:8e:de:f0:9d:df:f9:60:39:f4:b8:
36:e5:09:83:0d:c1:0a:6a:d6:ef:ad:92:45:de:06:77:5f:95:
36:e6:ce:09:e1:07:fa:93:fa:de:03:70:34:88:87:ed:42:9e:
72:5c:69:fe:59:01:a6:6c:7b:d9:ae:dd:cc:87:e7:65:4b:3c:
e5:ed:5a:c7:5c:3f:e9:2f:f6:1a:29:ac:d0:35:59:04:09:93:
68:ae:5b:d5:92:bb:d1:a3:5e:ba:10:95:b0:7e:21:01:53:65:
40:3a:cb:ab:39:ba:ee:9b:43:04:7e:fb:c2:4b:2e:c1:39:4a:
e0:dd:5a:11:da:16:57:92:00:63:f6:96:0c:46:d2:af:36:41:
08:a7:69:55:ab:68:e7:cf:1f:cf:85:5d:08:4b:6a:19:32:19:
a9:fc:45:a1:3b:d1:61:b9:64:1f:ca:7a:f4:5e:a1:0d:da:d9:
37:b3:a8:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org