Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3336663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Nsvd4xoFskWS3iqn7PoCph/pl3pZKHzjhwpRHAgC+q4=
Subject key identifier: 87:8C:11:87:ED:A1:28:1A:51:48:78:CE:F9:27:A7:81:D9:65:0B:1B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5A0AAA2FFAFC4FBF6596A4F8ED4519EA2151861A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:44 +0000
ROA not before: Mon 26 Sep 2022 10:55:44 +0000
ROA not after: Mon 25 Sep 2023 11:00:44 +0000
asID: 59282
IP address blocks: 2400:d680:36f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:0a:aa:2f:fa:fc:4f:bf:65:96:a4:f8:ed:45:19:ea:21:51:86:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:44 2022 GMT
Not After : Sep 25 11:00:44 2023 GMT
Subject: CN=878C1187EDA1281A514878CEF927A781D9650B1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:fe:a0:64:65:3b:26:05:22:0c:a4:46:39:29:
42:8e:ab:d4:24:a2:dd:44:17:47:64:de:b7:23:2d:
f0:0a:27:70:5d:9f:61:d5:7b:28:8c:b5:73:bd:fb:
05:d2:a4:cb:ea:fe:79:41:54:f9:d6:8b:65:12:d9:
45:10:4d:95:d6:70:2c:3f:a2:ac:3e:2d:a6:b7:6c:
d9:df:da:d0:10:e4:08:23:08:53:26:2d:dc:d1:44:
75:85:44:45:0d:15:1b:e4:50:33:6d:70:56:65:3d:
6b:c8:bf:a3:fb:05:61:41:04:2e:1b:d4:4d:ed:90:
90:83:c8:ab:d0:81:b6:53:33:dc:20:27:31:7f:68:
42:64:b1:d6:ce:68:39:df:6d:79:ef:a1:c4:3f:50:
e5:3e:fe:a2:af:06:18:4c:d1:1b:18:90:15:98:95:
f8:e1:5d:25:d2:5e:e8:2d:16:06:6f:64:e7:dc:6c:
fc:06:15:79:3a:79:18:89:04:72:ac:b6:5e:60:50:
32:ef:9e:52:b6:7a:c2:b8:ca:86:9e:47:a1:ad:c5:
bc:90:d1:1f:c6:ee:25:83:e5:49:26:ce:4a:6f:fc:
ae:f0:37:c4:01:a5:7f:5e:3d:ea:cb:4e:d7:32:e8:
50:48:b9:a0:94:42:f8:ef:cf:df:0c:4b:10:00:94:
9a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:8C:11:87:ED:A1:28:1A:51:48:78:CE:F9:27:A7:81:D9:65:0B:1B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:36f::/48
Signature Algorithm: sha256WithRSAEncryption
5d:a4:71:be:d0:bd:f9:d2:a7:e5:63:0e:26:21:d3:89:7a:93:
d3:0b:52:f7:0b:c4:cb:87:de:94:13:82:0f:39:d5:60:46:ee:
cc:98:5c:34:ed:7f:3c:81:d5:67:97:8f:98:fd:18:c0:2c:dd:
b8:e7:e2:0e:15:a6:66:85:99:cb:e6:86:61:9e:fd:fe:32:8a:
ea:cc:7b:09:31:43:9f:5b:73:35:55:48:b2:5d:c2:d8:56:d8:
c1:1e:82:2c:10:7b:e2:98:60:ef:5b:9b:90:13:16:a5:37:1c:
d0:a9:0f:ff:0f:bf:2d:66:ea:71:d6:2e:f3:19:65:44:99:a7:
96:99:b2:64:5d:65:7c:1e:79:02:89:48:19:70:0d:a6:0e:f6:
ff:15:b1:d7:58:b8:5e:56:81:b7:8f:d8:7d:b8:1e:50:ff:af:
09:30:66:00:f3:89:fa:c9:45:1e:2a:22:66:a5:a1:bc:13:c0:
52:82:40:38:1f:cf:56:5f:50:d0:0f:6f:3c:02:c8:4e:81:66:
63:f5:c5:41:57:99:8f:d7:7a:60:53:c1:0e:77:25:07:43:38:
96:11:88:27:37:ee:fc:f3:79:c7:ff:b0:fb:66:84:24:24:c2:
de:af:05:eb:41:04:82:80:13:80:76:f7:ca:9d:0b:04:39:89:
0e:71:e5:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org