Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3333353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: w1HV1U6IbgOTygZM3KTTvqrCi7vmEhmnZtjH3e/Wq7c=
Subject key identifier: 83:CB:5D:0D:6B:5D:12:E4:47:3D:05:DE:D2:34:3D:BC:C7:4A:5E:F1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4E1EB5DC5DEE48D2CA29DCE338CAB4054BC24D9F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:14 +0000
ROA not before: Mon 26 Sep 2022 09:55:14 +0000
ROA not after: Mon 25 Sep 2023 10:00:14 +0000
asID: 59282
IP address blocks: 2400:d680:335::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:1e:b5:dc:5d:ee:48:d2:ca:29:dc:e3:38:ca:b4:05:4b:c2:4d:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:14 2022 GMT
Not After : Sep 25 10:00:14 2023 GMT
Subject: CN=83CB5D0D6B5D12E4473D05DED2343DBCC74A5EF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bd:45:16:30:4a:ea:af:72:13:79:64:02:c8:
c3:16:13:a4:18:7b:be:7b:ba:c5:01:08:e6:c8:ba:
50:95:71:57:44:46:2c:50:b4:73:c2:dd:ed:92:01:
b6:bc:74:2b:e9:42:dd:27:62:b2:c9:a2:79:0f:26:
ec:9b:e2:87:97:c9:b5:42:66:0d:bd:8e:b9:d3:2b:
b8:b7:46:a2:7d:e6:39:08:14:fd:6d:ef:ed:c7:9f:
8b:86:d4:e2:20:b3:90:66:38:06:29:11:fd:b8:51:
ec:1d:5b:99:7c:c2:6e:83:06:2e:34:d9:0e:13:22:
66:93:00:f1:5b:86:9b:de:99:31:5c:8f:0b:f0:ec:
44:10:83:94:30:30:83:fc:4f:f2:65:7e:ad:17:a1:
b6:77:66:43:8f:6f:52:5e:07:0f:e8:2e:83:33:2d:
6f:a9:f7:06:ae:0c:3c:f1:d9:d9:68:67:4c:c7:ad:
7e:78:06:d8:e7:d2:4e:55:c7:1e:89:24:ad:5a:c5:
ce:e0:c9:66:59:b2:84:ac:ad:e1:2f:2b:b6:b3:48:
70:6b:99:32:54:6e:0d:97:5d:e2:be:d3:c7:d5:eb:
a0:c5:10:c0:2a:1b:e6:d2:b1:81:8c:42:1b:ea:ca:
73:79:3d:a7:39:fc:93:11:01:5a:2c:fe:dc:1c:cb:
cc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:CB:5D:0D:6B:5D:12:E4:47:3D:05:DE:D2:34:3D:BC:C7:4A:5E:F1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:335::/48
Signature Algorithm: sha256WithRSAEncryption
aa:04:9b:02:c2:2b:da:3e:62:d6:f4:d6:d1:e8:07:e0:f2:88:
57:8f:27:e1:5e:38:cb:bd:ee:fe:a1:3e:54:c9:8d:e4:57:fb:
a9:44:05:40:4f:3e:43:7d:ea:b3:f0:ec:fc:ca:33:ce:d7:95:
52:ad:d6:9a:34:10:34:ee:25:fd:14:2b:85:f8:03:24:8e:e1:
7f:c4:db:1c:d2:c6:bf:5e:9c:1e:69:2a:4f:f9:b7:82:75:37:
11:ca:4c:f8:72:0a:8f:76:00:6b:aa:8b:bb:6c:1c:93:93:6b:
f6:c6:ff:ba:c5:fa:fe:1b:f0:46:77:d4:78:7a:dc:20:62:0c:
9d:a0:fc:49:04:47:ad:54:40:86:d5:bf:31:c7:6a:73:45:b8:
84:d7:fa:b9:33:78:bf:fe:8f:9d:6b:a9:27:b3:bf:c4:31:0d:
76:9f:1d:f7:d2:91:f3:42:c5:61:c5:2e:cf:3e:6f:48:b6:1d:
51:c1:c9:d7:70:ea:66:34:02:ba:b5:52:1c:67:f3:50:4d:2d:
92:b1:a3:59:46:fe:44:e7:88:55:f1:4a:ed:a2:d0:94:b4:8a:
1d:0f:d1:27:99:5b:16:5f:d0:a8:5e:bc:f9:ca:59:13:25:47:
3a:21:e6:f9:c1:2f:09:32:9c:1f:fc:2a:01:a9:63:94:f5:e1:
cb:3e:14:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org