Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3333333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: angMKknjJR4VKvnOQ+ouEVXbjfUPa5ONuK+ssrnk2Ts=
Subject key identifier: BB:38:CA:59:51:D2:92:B9:F0:50:B0:D4:E1:3E:FC:B1:0A:2B:76:07
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 77A849C889EDDC3CF5660922B8B26BAAC50A9F71
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:33 +0000
ROA not before: Mon 26 Sep 2022 09:55:33 +0000
ROA not after: Mon 25 Sep 2023 10:00:33 +0000
asID: 59282
IP address blocks: 2400:d680:333::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:a8:49:c8:89:ed:dc:3c:f5:66:09:22:b8:b2:6b:aa:c5:0a:9f:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:33 2022 GMT
Not After : Sep 25 10:00:33 2023 GMT
Subject: CN=BB38CA5951D292B9F050B0D4E13EFCB10A2B7607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:04:d6:ef:22:fc:0b:72:68:43:37:e1:8a:5a:
06:ac:a0:f4:65:c9:66:3f:3e:72:2e:33:d6:8e:92:
b6:1c:8d:86:29:bd:1d:56:33:a9:b0:37:b2:f1:33:
8f:88:0c:5f:39:3e:9d:4e:1f:6a:f4:37:7b:3c:3c:
90:6b:6d:09:6d:6d:c9:87:bd:47:e9:9e:c4:59:25:
0b:41:e7:64:df:d9:c2:cb:24:53:74:7d:77:5d:cd:
a8:49:e1:22:f5:6b:d0:44:11:8b:73:3c:ca:18:04:
83:54:5e:12:49:86:3a:24:67:2b:04:3f:1e:bc:7b:
e1:9a:e6:9f:19:6d:bd:f2:99:8f:19:d5:eb:57:5d:
8e:bb:7d:49:89:a8:40:a2:b0:b4:ec:4e:73:24:91:
3e:b8:5b:e3:e3:45:4f:c7:cb:9f:59:d7:6f:84:c6:
42:54:15:02:4c:5a:3b:1e:61:87:85:ad:45:51:63:
e9:41:0e:3e:bd:56:be:79:7e:01:11:2a:f9:43:45:
1f:44:ee:3d:56:aa:b9:94:70:24:5f:cd:ff:0b:b2:
0f:da:ff:71:6b:2a:7a:7b:f6:bd:cd:bd:06:ba:93:
22:7d:b8:f4:e1:b8:cc:17:24:22:ef:b9:96:7b:45:
b6:a0:8f:39:87:28:54:89:ad:51:7b:3d:4b:6a:62:
a0:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:38:CA:59:51:D2:92:B9:F0:50:B0:D4:E1:3E:FC:B1:0A:2B:76:07
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:333::/48
Signature Algorithm: sha256WithRSAEncryption
c0:99:87:2a:a6:81:0b:e9:cd:b7:77:ba:3d:dd:03:be:a8:f6:
04:35:fe:06:9a:ae:ca:88:cb:f2:78:72:b6:09:b7:47:26:59:
2e:8c:aa:fe:0c:8d:fd:23:67:9e:66:0d:e3:4c:d2:df:8f:0a:
b8:1a:f1:3e:15:b2:df:87:79:a1:b6:f9:c6:32:ce:28:bb:67:
d6:35:b0:ad:92:ad:d6:f1:84:98:39:a8:fb:f4:6a:c3:f5:c1:
4a:c0:0f:75:1b:a0:66:67:41:6f:05:63:83:b7:e7:48:19:b9:
79:df:50:9b:2b:c5:86:d9:5a:ef:1f:ca:09:81:4e:7d:54:b8:
5b:86:65:b6:ee:93:ea:ff:23:82:e7:f4:6b:37:60:49:42:76:
41:a5:be:4e:6f:e8:4e:8d:ac:a7:a7:e3:cf:79:d5:9f:d7:40:
c7:40:92:90:65:a3:92:4b:33:66:43:7a:fd:a7:62:52:2e:43:
e2:04:f2:0a:08:26:c4:59:d2:50:51:b1:9c:8c:3a:7d:63:87:
06:6b:10:62:54:fc:ce:3b:8b:3a:d3:7c:b3:5b:0d:87:3b:7e:
bf:68:56:a9:b5:6f:f3:f1:85:15:81:8a:16:9b:c5:ff:c3:b9:
ce:f2:d9:d0:ba:f7:bc:3a:af:9e:8c:28:9d:79:26:21:d0:70:
3f:99:58:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org