Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3336343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 9wfZ1IA+QVrRFGzcik2GSzMCpdmfyG8LYvwiy8cthIA=
Subject key identifier: CD:09:41:0D:13:31:33:08:6E:E1:62:91:AD:20:31:15:44:42:73:5D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4B4F8DF55956B4871FF4751556F201451D616264
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:37 +0000
ROA not before: Mon 26 Sep 2022 10:55:37 +0000
ROA not after: Mon 25 Sep 2023 11:00:37 +0000
asID: 59282
IP address blocks: 2400:d680:364::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:4f:8d:f5:59:56:b4:87:1f:f4:75:15:56:f2:01:45:1d:61:62:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:37 2022 GMT
Not After : Sep 25 11:00:37 2023 GMT
Subject: CN=CD09410D133133086EE16291AD2031154442735D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:72:3a:18:5c:fe:b3:0a:9a:a7:a5:b2:b3:35:
26:25:ba:d5:87:b0:23:5f:ff:ff:19:32:b1:47:8c:
b6:83:59:17:ce:1f:56:90:e5:e7:63:d9:3e:f9:1d:
f1:f8:f1:80:a8:f6:30:63:f3:13:d6:95:bf:b9:40:
62:38:ba:9e:a1:16:98:60:d8:eb:ba:9d:69:50:2e:
25:f7:60:ec:0f:b1:24:1a:41:eb:b7:48:aa:83:b5:
7d:f2:21:a6:9b:8b:21:60:03:46:e6:30:71:3f:1f:
a8:23:8b:8b:41:23:ef:6c:df:08:67:4c:63:e0:b8:
ef:5a:c6:f9:b8:1c:25:a8:93:1a:dc:ad:09:15:33:
d4:93:a7:72:fa:42:2f:9a:6b:19:31:61:7d:39:37:
9a:50:9e:41:68:45:71:a6:3d:3b:9c:17:70:eb:d4:
6a:7a:06:37:f7:30:8b:20:23:10:11:3a:1c:2a:32:
bf:b2:44:a2:b0:a8:ed:69:3c:87:47:82:c5:e1:e4:
68:cd:b9:2c:28:23:7e:7c:91:4a:72:09:f0:e9:b6:
e8:47:99:db:c4:da:89:4e:6c:bd:67:b7:11:17:c5:
a2:87:a8:11:3f:b2:a1:8c:1d:3c:9b:d5:3a:22:75:
20:da:82:92:a3:ea:e4:9a:e8:9a:a3:9b:75:2a:46:
53:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:09:41:0D:13:31:33:08:6E:E1:62:91:AD:20:31:15:44:42:73:5D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:364::/48
Signature Algorithm: sha256WithRSAEncryption
d4:98:59:5c:69:f1:2a:bb:97:a6:8b:ea:06:87:cd:65:58:54:
79:34:39:2a:33:53:fc:62:cc:cc:b2:44:da:68:37:d2:3b:e9:
a2:43:a2:ef:4e:e1:38:93:99:64:72:01:07:08:1d:be:cc:4b:
9f:52:78:8b:4b:27:fd:a8:6a:19:bf:26:35:37:10:9d:b0:ba:
46:91:5e:20:ca:be:66:bc:9c:3a:0b:02:3e:ce:99:39:f3:1e:
c3:2e:15:70:10:c0:3a:cb:7d:eb:a8:33:60:d2:17:ef:1d:68:
fd:65:4d:65:82:f7:24:a0:79:de:cf:05:73:66:cc:67:47:d5:
a0:46:ac:e3:01:69:2f:ca:3a:5f:e8:dd:42:70:3e:95:6b:c4:
f7:39:9d:d7:8b:fe:24:b5:19:e2:5d:f4:40:5c:77:13:2c:78:
28:9e:d2:75:da:03:76:c0:1f:bf:0d:0d:83:78:d5:61:52:fc:
19:5f:9b:be:e5:a9:d3:bc:ca:b1:05:25:12:71:ba:34:79:48:
8f:ae:41:94:07:f1:7c:b5:02:24:5c:1e:df:2c:0a:45:90:c3:
1d:6c:f1:c5:77:a0:39:76:cc:e0:67:75:4e:2d:1e:5d:24:af:
ec:46:dd:e3:a9:71:95:2d:8c:9c:a7:7c:15:d1:d8:c5:d8:e9:
5a:d9:f1:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org