Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3335663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Asv/V8DG92WIohgNnVgypKnPO2/lQb7tjCZoKQ6wBhw=
Subject key identifier: E6:52:7C:71:47:F9:18:32:56:55:CF:E1:DC:F4:7D:91:24:8F:DC:01
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 65A6AED48202BA420FE40943308EC05BEAFD847B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:50 +0000
ROA not before: Mon 26 Sep 2022 10:55:50 +0000
ROA not after: Mon 25 Sep 2023 11:00:50 +0000
asID: 59282
IP address blocks: 2400:d680:35f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:a6:ae:d4:82:02:ba:42:0f:e4:09:43:30:8e:c0:5b:ea:fd:84:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:50 2022 GMT
Not After : Sep 25 11:00:50 2023 GMT
Subject: CN=E6527C7147F918325655CFE1DCF47D91248FDC01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0d:8b:c1:98:f2:5a:b5:b2:12:c7:c0:a6:7a:
91:a2:e9:b6:ce:87:ac:5c:0d:80:60:3b:54:e3:07:
ff:c5:57:00:eb:56:e6:c2:43:26:81:65:08:31:bd:
53:44:0f:51:3a:32:df:7b:d9:f0:11:e7:66:0b:53:
5e:87:d1:7c:1d:e9:6f:45:d5:42:ca:3f:7b:72:70:
ca:6c:f0:54:c6:8b:22:1c:0b:78:60:a4:5c:44:1d:
36:3f:6c:a3:c8:31:8e:19:17:5c:24:5d:d0:9b:fe:
98:37:d3:c1:6b:29:9e:9d:b7:48:12:99:b4:95:0c:
86:0a:43:9b:65:11:5f:cb:c2:98:05:43:90:e2:23:
38:98:d0:6d:eb:17:f5:81:41:06:3e:e3:e7:a1:10:
53:da:4b:2a:7d:74:24:a9:b4:f0:3b:18:7e:db:52:
04:42:c4:31:c3:b8:ef:86:6a:9b:2b:4d:92:d6:91:
ce:90:51:97:01:45:36:3a:e7:e8:6c:df:13:30:2f:
c5:12:62:64:52:86:8f:b9:71:92:4f:b5:b6:fd:7c:
6d:3a:fb:29:e3:44:29:98:f9:4b:c2:39:f7:21:d9:
a0:56:b1:43:6a:0a:0d:5b:a8:52:52:5b:69:3b:5b:
48:3c:62:87:c9:04:d1:3f:23:ba:f5:33:0b:6a:ac:
92:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:52:7C:71:47:F9:18:32:56:55:CF:E1:DC:F4:7D:91:24:8F:DC:01
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:35f::/48
Signature Algorithm: sha256WithRSAEncryption
ac:1e:44:70:c2:9f:d6:12:b0:ea:fb:5c:58:a9:07:0c:89:30:
39:9d:e0:20:c5:e5:5d:bf:52:92:a9:c9:75:b8:1b:49:d4:dd:
e1:ff:6b:da:29:40:c3:b3:30:39:c4:f4:7a:e2:25:3a:c3:0c:
ac:a0:70:f6:89:c8:1b:eb:31:76:dc:42:59:ae:94:bb:8c:62:
4f:ae:52:b8:5a:ea:29:fe:dc:f5:90:f9:8c:e3:dc:5e:b2:2e:
e8:5d:6e:f3:20:bc:db:85:f9:d5:2b:e5:3d:4a:d4:fb:30:ee:
53:70:47:af:17:df:78:21:2c:32:2e:18:94:4d:e0:76:42:37:
9e:e3:36:f1:29:38:ea:76:d3:87:f7:e4:65:89:79:d8:80:2a:
ef:bf:7c:be:61:e9:39:b3:5d:78:cc:99:f5:0c:37:b2:0e:0b:
96:37:59:ba:28:a7:cd:3d:cf:91:eb:b3:25:61:10:49:fb:e0:
b5:49:bb:9b:f3:02:d6:86:d7:a7:ab:a4:d6:8c:42:4f:8f:be:
5e:cc:2e:08:7b:a3:6d:f8:2d:1c:05:4c:0d:36:f2:1b:ed:90:
db:9c:27:92:6a:4d:2b:de:fc:b7:6e:e9:19:41:9a:7a:b9:34:
cd:3b:5b:6d:55:66:c9:58:16:fe:9b:cf:8a:a6:3e:d9:79:c9:
c9:39:e4:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org