Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3337303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: xWHSaoXFRBpioF3fqkiFuGepIm9tBP9Hvd1Wzag2WI0=
Subject key identifier: 1B:A4:63:40:74:BD:BF:3D:C0:6B:ED:DB:86:3C:82:44:7F:7F:94:0C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 724853BE25562282BF33B98824C6A22625F149F5
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:42 +0000
ROA not before: Mon 26 Sep 2022 10:55:42 +0000
ROA not after: Mon 25 Sep 2023 11:00:42 +0000
asID: 59282
IP address blocks: 2400:d680:370::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:48:53:be:25:56:22:82:bf:33:b9:88:24:c6:a2:26:25:f1:49:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:42 2022 GMT
Not After : Sep 25 11:00:42 2023 GMT
Subject: CN=1BA4634074BDBF3DC06BEDDB863C82447F7F940C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:38:ef:57:67:cd:29:20:54:f3:db:f3:1a:d9:
09:3f:c4:f4:78:41:88:9a:45:4f:f8:f5:fe:57:1f:
7f:1a:cc:09:39:0b:37:eb:62:8a:91:90:4e:ca:92:
e2:7b:64:2a:9e:d1:be:20:65:18:60:36:3f:9b:61:
c7:df:1e:9a:1f:ad:dc:a8:df:ff:39:58:4a:f5:a2:
f6:31:66:45:b2:a1:25:4e:b5:e6:35:af:60:12:c3:
4b:a5:75:e1:10:f3:87:4a:5b:d0:5e:f0:a9:68:b7:
4d:83:7c:b3:c8:a1:b9:af:9a:ce:c1:44:a1:47:6e:
9e:99:3a:3e:a1:30:84:36:ac:d6:70:83:71:88:f7:
84:03:36:d9:52:ac:66:3b:b6:1b:cb:c1:cb:5e:e1:
f3:e6:63:71:e2:c3:15:dc:a3:5f:1b:86:f0:49:ef:
72:6e:05:24:0e:86:e9:ad:5a:15:07:70:41:d7:10:
b7:ae:50:35:94:67:8c:4f:19:6b:d5:2e:1b:18:76:
b4:c5:40:76:e4:0d:0d:45:97:89:ce:1c:66:07:b8:
2b:37:41:f7:6b:66:70:f4:e6:fe:41:c9:e5:fe:0c:
c1:db:23:42:fe:9c:bf:f8:a2:05:6f:7c:4b:99:08:
1c:b2:03:c5:bb:a5:7c:aa:bc:80:6f:9b:53:a0:5a:
ec:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:A4:63:40:74:BD:BF:3D:C0:6B:ED:DB:86:3C:82:44:7F:7F:94:0C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:370::/48
Signature Algorithm: sha256WithRSAEncryption
25:a5:6b:b4:05:15:e0:01:f6:f1:ff:73:3c:58:b7:87:38:63:
41:79:c7:4a:58:f0:9a:6b:4b:65:9a:d3:cf:2f:22:28:3d:40:
59:47:1f:8a:97:92:44:fd:2b:92:09:85:b7:bf:87:9d:cc:db:
bf:17:19:cf:96:04:15:a2:48:bd:07:7a:12:6c:83:35:e5:4a:
e5:df:02:51:28:8c:ae:3b:2a:07:a3:52:db:12:db:56:62:38:
11:ee:4e:67:a3:4b:03:c6:df:dd:73:2b:48:ff:a0:75:ae:6b:
91:1b:56:4b:2b:65:a0:b0:05:5a:ad:fd:c2:27:4a:d0:bc:2e:
b3:15:99:a5:c0:e1:e6:a9:58:f5:43:fe:d4:af:11:40:87:d8:
1b:54:09:ce:4f:9a:12:e8:1a:2f:b7:ed:38:55:f7:fe:0c:73:
41:90:b2:f8:e3:04:cc:07:44:24:91:f4:48:33:8a:e4:78:af:
e9:4b:03:a3:2e:b0:07:ae:ea:b0:a8:4e:10:ea:55:8f:23:f8:
5b:a9:4a:1f:fe:78:5d:53:ee:d8:de:7c:a7:c4:f6:5f:79:42:
94:c8:a5:65:1c:32:15:05:e4:f4:5f:92:02:03:7b:13:3b:eb:
17:a2:f6:1d:b5:51:00:e2:72:9a:dd:83:59:a3:b7:5f:cb:75:
0c:ca:7c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org