Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3333343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: EbIApbCnNJgr9k0JvzXUcf+L6y4x+dfeEdn7Sd2NoP4=
Subject key identifier: 2C:67:73:20:C8:91:F8:AE:FA:E0:7A:29:10:7C:58:62:A4:F4:39:06
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5514550F7FF9242EA1FE9C3DEB46E378D49F49E6
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:21 +0000
ROA not before: Mon 26 Sep 2022 09:55:21 +0000
ROA not after: Mon 25 Sep 2023 10:00:21 +0000
asID: 59282
IP address blocks: 2400:d680:334::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:14:55:0f:7f:f9:24:2e:a1:fe:9c:3d:eb:46:e3:78:d4:9f:49:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:21 2022 GMT
Not After : Sep 25 10:00:21 2023 GMT
Subject: CN=2C677320C891F8AEFAE07A29107C5862A4F43906
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:52:e4:91:94:58:80:97:69:64:3c:90:f3:bb:
6d:25:71:5a:c0:9e:a1:58:8c:df:92:29:ca:8d:09:
65:b8:41:85:54:50:2f:49:73:c4:6c:11:4e:53:62:
2a:10:65:c2:14:13:a0:32:a4:e9:c1:c3:32:23:ff:
ed:7c:db:ab:50:14:39:81:02:1f:d3:cd:97:d2:6c:
c5:2f:d5:cf:9a:2f:f9:59:33:47:1f:29:4f:97:60:
93:8e:6f:d7:eb:0f:f0:3c:02:37:88:06:0b:49:bc:
ee:2b:1c:dd:35:80:97:87:a6:1f:5f:79:6f:62:43:
0c:82:4a:8e:1c:89:9f:67:a1:fa:5a:bf:ff:32:0d:
de:95:e5:74:ff:38:1b:fc:59:21:56:20:24:8a:21:
a1:03:15:1c:e7:40:d2:be:df:62:b3:58:18:5e:f9:
94:6a:4c:18:6f:4f:44:c6:fd:0f:dc:0c:94:7c:2d:
ae:95:e9:ab:f9:fd:fd:0c:57:9c:11:41:87:65:23:
16:1c:27:a9:4c:35:e9:fd:19:d3:a6:4c:5e:dd:40:
81:82:d0:97:40:b5:7f:78:b7:f2:21:d2:8e:61:ae:
76:4a:9d:3f:b1:f7:c6:87:a0:ee:1e:77:c8:bf:35:
5e:cb:04:8f:79:70:83:ac:e0:e2:ed:7b:cb:6a:51:
d8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:67:73:20:C8:91:F8:AE:FA:E0:7A:29:10:7C:58:62:A4:F4:39:06
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:334::/48
Signature Algorithm: sha256WithRSAEncryption
5c:25:86:11:0f:28:d4:91:26:13:8b:9a:60:b9:bf:ee:12:56:
52:91:cd:4c:a4:f7:58:1b:e9:88:8d:ba:a2:62:71:d8:02:b1:
d5:f9:39:ba:f8:cf:88:5b:b0:fd:ae:9a:7f:81:00:36:0c:67:
91:3d:1c:fe:19:31:b4:39:59:c3:45:bb:1b:d8:20:d9:93:c3:
27:e7:9b:47:2a:fc:4c:d3:fa:c1:c2:4b:fa:83:a5:aa:a0:c4:
a3:cc:53:45:2c:ef:4a:a7:62:22:02:bb:bd:57:b1:cc:26:17:
54:1b:3c:8a:e0:69:4b:a1:14:5f:2f:37:8b:10:3e:c1:c7:68:
07:fa:b2:8b:fc:35:0f:9e:63:4e:45:d2:af:fb:0d:17:30:40:
00:9b:8c:75:f1:41:04:0a:70:8d:00:70:38:cf:54:b8:ac:c0:
ca:9d:c1:45:1a:e7:b7:88:8b:39:73:6e:f6:07:71:97:71:47:
8b:79:7c:2a:03:03:8b:f0:b2:58:66:7b:ac:fb:c6:85:35:10:
f4:88:a7:19:6f:3b:cf:5b:3a:e9:ee:2a:61:7a:eb:22:59:4c:
44:3d:e0:93:fb:30:73:44:4c:55:b0:a9:4f:90:fa:5c:48:14:
d0:49:96:6b:13:00:36:c4:51:46:a1:91:ba:2a:4e:d4:21:cf:
98:16:31:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org