Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3335633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: wyTuYxZPawhHyCRTBrnazZ2RzZY1n+beoG1wZeFanqk=
Subject key identifier: BD:D4:55:3E:2C:82:45:00:F2:C9:B4:51:55:3A:55:3F:46:9F:95:5B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 185A3C088ADD6562E4576D931B75AF974C832877
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:28 +0000
ROA not before: Mon 26 Sep 2022 10:55:28 +0000
ROA not after: Mon 25 Sep 2023 11:00:28 +0000
asID: 59282
IP address blocks: 2400:d680:35c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:5a:3c:08:8a:dd:65:62:e4:57:6d:93:1b:75:af:97:4c:83:28:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:28 2022 GMT
Not After : Sep 25 11:00:28 2023 GMT
Subject: CN=BDD4553E2C824500F2C9B451553A553F469F955B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ba:e4:ab:cc:d2:2d:8a:f7:82:50:ef:8e:c6:
b2:74:2a:61:85:96:c0:4c:96:91:af:b9:a7:1d:b2:
8b:e5:8c:df:97:c1:73:e4:74:55:ea:5c:58:95:a4:
ea:f3:5f:66:69:80:c8:74:ad:d4:5c:33:a3:85:72:
db:92:7e:9b:2e:00:b9:f6:35:96:56:3c:7a:19:e8:
1f:24:b9:0e:1e:7c:be:59:8b:9a:3f:95:49:8d:32:
b8:d7:0b:2e:b0:47:f0:6d:a8:cc:b2:ac:69:e7:19:
78:82:73:95:a0:83:40:da:b3:fb:9c:b9:24:87:ad:
50:70:b9:73:cc:e3:5e:a0:7f:00:a0:f4:78:9d:ed:
66:ba:74:8a:f5:1f:b9:6d:03:bb:d2:16:b3:d5:4a:
21:bd:cc:54:01:0d:7e:93:44:0a:c5:16:00:c5:83:
f4:0c:fe:e5:70:57:78:0d:32:f6:73:9e:5c:ec:f5:
5c:45:03:fd:7d:4f:d2:4f:23:c8:9d:db:38:f6:06:
6d:c0:00:ad:a9:73:b4:d8:59:09:eb:4b:c3:39:43:
0f:49:da:e6:45:86:b2:ec:27:86:f2:35:8d:ba:ff:
c6:68:b6:9d:51:be:07:af:2b:ac:e6:88:de:2a:8d:
ac:aa:83:ad:06:e0:f7:50:a7:62:d0:e3:57:a9:de:
97:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D4:55:3E:2C:82:45:00:F2:C9:B4:51:55:3A:55:3F:46:9F:95:5B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:35c::/48
Signature Algorithm: sha256WithRSAEncryption
6a:28:0b:3d:87:76:65:54:49:4f:1e:ca:87:6b:f8:02:fe:60:
08:5a:64:a2:97:b6:5c:3d:f1:36:74:b7:e3:ef:c4:60:43:07:
84:19:a7:64:d2:c3:72:55:a0:56:86:9a:c3:32:e3:61:6f:ee:
65:d8:bb:9d:02:37:5f:49:38:cf:30:ba:75:8d:73:3a:a9:30:
0a:0a:79:ef:1c:81:14:c7:53:41:fc:a5:8d:ba:ef:4e:cf:d5:
57:1f:8c:10:04:d7:b3:5a:f7:bd:43:c6:c6:92:48:f5:5e:bc:
e4:fb:a5:0a:93:1e:25:f5:75:14:4f:7a:d2:93:9a:91:2a:99:
72:0c:e5:f6:34:44:0d:10:1a:c5:7b:b4:9f:66:c6:e6:8b:16:
aa:a6:b8:a5:d9:ab:81:4c:f7:86:b7:29:86:f9:e8:43:52:1c:
0f:15:2e:39:93:0e:32:65:73:8a:c0:0e:f3:d1:88:92:4e:42:
27:22:22:5a:4a:90:80:8a:dc:80:03:07:a2:6f:1e:d3:3e:00:
7d:35:18:f7:c0:b8:b3:0f:7f:ee:6d:96:c5:92:e6:82:1b:94:
fa:31:84:f6:ae:84:11:98:79:f8:3e:9e:0b:e2:c9:1a:af:05:
b5:e9:2b:09:2f:c2:c1:50:d3:68:30:f8:5a:a1:d7:b4:70:25:
8f:8d:bb:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org