Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3337353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Xp1kIArDQSY+NdNrqWdMhJ1QBWp7o5epSzXl3ZqupU0=
Subject key identifier: 04:BD:8D:33:F6:9C:8A:3B:2D:21:1D:B2:C5:13:D9:83:06:98:2E:CB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3B9FF451BB08697AA8213E9577F34718240FC017
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:44 +0000
ROA not before: Mon 26 Sep 2022 10:55:44 +0000
ROA not after: Mon 25 Sep 2023 11:00:44 +0000
asID: 59282
IP address blocks: 2400:d680:375::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:9f:f4:51:bb:08:69:7a:a8:21:3e:95:77:f3:47:18:24:0f:c0:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:44 2022 GMT
Not After : Sep 25 11:00:44 2023 GMT
Subject: CN=04BD8D33F69C8A3B2D211DB2C513D98306982ECB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:18:a8:17:1b:61:8c:fd:7d:5d:4a:29:5f:18:
9b:9d:7b:f2:6b:4e:3a:06:7f:b4:13:ce:68:84:81:
b1:2d:ce:a5:44:71:d0:d3:f2:88:1d:68:a2:4f:27:
88:a6:95:9c:f4:ec:7b:50:2f:92:d9:3d:74:fc:bd:
44:d7:6c:77:f3:62:f5:33:76:31:8e:fb:78:b3:42:
bd:22:03:61:f9:7c:61:3c:11:94:5b:f9:49:9c:10:
15:14:09:53:9b:86:28:33:e1:f7:ae:24:92:eb:09:
a1:89:fc:14:e0:f2:61:f7:0a:f1:54:8f:77:65:c2:
74:bd:63:72:db:ee:b1:7f:ee:48:dc:cf:14:e0:a2:
ba:d7:05:77:c5:ba:50:ed:3d:5c:76:78:80:e9:17:
64:f1:31:8d:9a:1a:a2:f1:4b:a5:cb:ae:5b:33:21:
67:ca:38:7c:43:f2:40:04:8b:88:37:77:2d:77:0f:
06:fc:b6:9d:f4:62:e1:7a:0b:7d:b5:0c:b4:f8:f4:
19:8f:38:8d:b4:5f:22:44:73:1b:e1:5f:7e:54:5c:
1e:95:58:55:1f:cd:f6:0f:89:bb:1f:c5:0d:ac:d8:
ed:63:8f:af:c5:13:f4:87:88:91:36:69:f5:ef:ae:
9f:99:f8:55:0d:b4:56:0b:0e:71:00:1e:64:83:45:
8e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:BD:8D:33:F6:9C:8A:3B:2D:21:1D:B2:C5:13:D9:83:06:98:2E:CB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:375::/48
Signature Algorithm: sha256WithRSAEncryption
2a:ab:f2:0f:7d:18:5f:cf:2b:2b:77:e2:79:1f:6b:e2:79:4a:
55:09:04:60:36:a7:62:69:b4:35:2c:f1:57:96:5f:bc:d4:c4:
80:e7:87:f2:cb:1b:15:06:77:17:89:4b:30:d2:db:c5:ba:0c:
c8:55:f0:71:db:46:85:89:68:53:f3:33:77:b8:53:b5:a0:1e:
80:65:a2:d0:f0:da:5a:1b:bc:87:a5:12:19:bb:a6:c7:78:d1:
b9:61:09:36:df:78:b5:8a:98:25:8f:7f:42:2b:ca:86:79:4f:
10:ec:3e:9c:ba:f7:30:a5:c0:51:bd:ab:fd:84:d9:a7:e8:26:
30:f2:9c:5d:b0:1f:42:9a:95:56:d1:85:e4:3b:c9:13:2a:9e:
bc:b3:85:e6:b8:9e:51:54:6d:9c:ab:ea:47:dc:ae:35:ac:4d:
16:dd:3d:0c:8d:dc:d5:da:40:4f:be:96:db:c0:d1:07:47:e2:
ec:27:64:13:45:6f:9f:ea:75:80:46:d5:d9:73:cf:8e:a6:d5:
d0:b7:64:49:ec:eb:4b:45:5f:4a:5f:45:67:62:a7:89:9e:9b:
6f:fb:27:be:02:c5:ff:7c:63:b5:41:fa:ef:02:2f:c6:8c:f5:
5c:9e:30:6c:59:72:d9:5a:31:d3:fd:71:93:68:e7:2f:72:13:
3b:f7:03:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org