Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a33353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: IQOdeOEJ5c1TWP3xGg8oRXHMr73Piwf7cCwxjEAQy3s=
Subject key identifier: 8A:FE:05:DB:44:E8:5E:18:E1:94:BD:73:01:DF:E5:AC:04:A5:47:C0
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 568CEA79864CDF5EB07F0658DB23AAAC2A526C9F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:55 +0000
ROA not before: Mon 26 Sep 2022 07:56:55 +0000
ROA not after: Mon 25 Sep 2023 08:01:55 +0000
asID: 59282
IP address blocks: 2400:d680:35::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:8c:ea:79:86:4c:df:5e:b0:7f:06:58:db:23:aa:ac:2a:52:6c:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:55 2022 GMT
Not After : Sep 25 08:01:55 2023 GMT
Subject: CN=8AFE05DB44E85E18E194BD7301DFE5AC04A547C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:eb:8b:06:56:20:50:43:2f:85:a0:71:fe:41:
7c:b8:fd:ca:de:9d:1f:eb:b7:a5:79:9c:a3:d9:32:
cf:07:7f:4b:8f:93:bb:ef:4c:34:fa:fc:d0:9b:b1:
30:cd:1d:d3:cd:01:8b:cb:28:f0:2a:52:ac:62:24:
a0:eb:c9:55:4d:df:52:2a:e2:c3:9b:f6:01:d2:2b:
4d:84:84:eb:f0:e8:24:f5:c7:91:af:27:72:b8:f5:
78:e3:b6:12:b1:7c:77:c2:18:45:e2:bb:fd:94:4c:
3d:fb:b3:a9:08:08:cf:6c:37:f1:23:dc:bd:98:aa:
11:53:d1:92:70:8c:73:ef:30:7f:62:7a:52:ca:d0:
a7:10:38:e1:c8:e5:0b:05:c9:da:ef:c5:7a:17:3c:
f8:ea:1b:1c:8d:d9:31:bd:a1:6b:55:a4:0f:cf:a1:
63:e4:a7:84:1e:50:df:09:c0:ad:4a:6e:20:fa:1a:
03:21:04:e4:26:5a:72:64:46:85:c8:33:bd:95:b7:
32:e0:e5:7a:a7:04:eb:8b:ad:e8:ea:d2:cf:cc:60:
2c:d4:86:9d:59:57:24:8e:ec:d8:49:60:4f:2e:98:
37:29:4b:f4:ca:20:84:c5:18:72:bf:03:0f:3a:c6:
62:ac:25:0a:4d:b5:cf:a6:7e:72:47:f3:59:8e:a7:
71:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:FE:05:DB:44:E8:5E:18:E1:94:BD:73:01:DF:E5:AC:04:A5:47:C0
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:35::/48
Signature Algorithm: sha256WithRSAEncryption
a1:57:8b:49:7a:51:48:f9:66:dc:4d:b1:43:b4:da:c3:c9:06:
ab:38:0e:21:62:c0:93:73:f6:5f:dd:7a:de:73:78:22:b1:08:
89:53:e9:58:ed:70:cc:f2:b3:77:39:70:4b:74:07:98:19:53:
74:f9:9c:38:4c:5a:7d:60:17:ea:e0:07:ce:9f:60:e6:46:80:
5c:d5:2e:63:e9:f9:de:2e:33:14:55:1a:13:61:fa:76:df:d2:
7d:90:6b:36:01:88:4b:57:69:f1:ca:d5:b9:4d:2f:f8:21:09:
7b:c5:ea:3b:73:f6:7d:fc:cf:68:64:fb:8c:77:5c:d6:e5:f0:
93:22:5e:b4:e8:c0:16:55:f8:49:be:61:9b:f8:8e:42:5d:c3:
e0:48:90:11:76:63:f4:c9:63:ed:09:56:29:41:23:17:6d:e6:
4c:f0:b9:46:36:b6:15:08:63:77:e1:7e:68:bb:8a:f5:e5:b8:
67:b8:e4:8b:4b:d7:fc:6f:7b:c4:ac:68:2d:67:4d:82:c0:f1:
8b:da:76:55:a9:ce:73:f4:f6:50:4c:5b:b0:62:d1:76:c7:21:
96:7f:32:e3:e2:48:d5:e0:86:fa:0f:a7:93:9d:fa:50:86:70:
1c:08:76:30:f6:d4:41:4c:44:54:42:d2:5c:22:7c:a5:69:66:
bf:e0:4b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org