Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3337613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: LF4kPrzz422TGuQ5qY7wQR4F7CQ3ynNOxSfvSlWt8Oo=
Subject key identifier: B4:13:35:AF:DA:A6:8C:7C:F0:60:D8:85:33:26:BB:9E:29:D6:D2:34
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3574810A7B75939F90119AEE1E84AEEE37768395
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:29 +0000
ROA not before: Mon 26 Sep 2022 10:55:29 +0000
ROA not after: Mon 25 Sep 2023 11:00:29 +0000
asID: 59282
IP address blocks: 2400:d680:37a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:74:81:0a:7b:75:93:9f:90:11:9a:ee:1e:84:ae:ee:37:76:83:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:29 2022 GMT
Not After : Sep 25 11:00:29 2023 GMT
Subject: CN=B41335AFDAA68C7CF060D8853326BB9E29D6D234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3d:dd:29:ec:21:61:b9:bd:6c:70:87:1b:8d:
09:05:b4:97:3f:da:09:fb:96:93:3f:01:1a:60:a9:
cc:9f:96:87:a3:1e:69:f7:f4:7b:5b:07:ab:02:68:
1f:2f:aa:71:44:11:94:81:e0:dc:ca:a7:92:90:b4:
b7:c8:54:a1:16:ee:a6:38:32:a5:0e:ef:b4:bd:9f:
29:48:eb:98:32:42:38:71:7c:90:97:17:61:50:84:
13:3e:b8:4f:a9:52:7a:4e:fe:ec:72:24:72:61:bd:
3b:c9:dc:d7:dc:69:bc:dc:a4:ad:2c:5a:f6:32:09:
a5:37:22:a9:d3:fa:ec:79:a1:b3:57:f2:c6:9e:21:
cd:b6:bd:0d:ff:8c:f2:1d:93:03:9c:3b:87:9d:23:
08:12:b8:cc:a5:68:c3:b5:56:32:9e:d4:2a:9f:eb:
6e:81:00:3a:da:41:73:f3:eb:4d:4d:a4:6e:d1:b9:
a3:a7:97:c3:ca:db:d9:85:35:7d:d7:e0:17:75:39:
90:3d:7f:25:8e:84:eb:9c:f5:0d:aa:4e:2d:a2:a6:
7f:bf:89:cf:07:5b:57:e7:b9:40:6f:13:10:53:27:
6b:f5:fb:1d:04:7c:11:01:af:3e:b5:34:8a:5f:d7:
8d:0f:da:ab:aa:a2:8f:f9:93:84:92:21:81:89:54:
6c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:13:35:AF:DA:A6:8C:7C:F0:60:D8:85:33:26:BB:9E:29:D6:D2:34
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:37a::/48
Signature Algorithm: sha256WithRSAEncryption
37:f2:75:ed:fc:51:14:d7:d9:f0:12:b9:12:9c:62:94:ee:0e:
67:b4:af:ca:da:0f:1e:21:95:6f:6d:37:bd:d2:75:3a:de:c8:
b1:98:07:e2:eb:90:2a:80:d4:b6:e9:7b:11:77:c9:e9:50:5a:
cd:eb:45:b9:90:43:94:4d:8e:ed:b5:09:93:6c:8e:23:a4:85:
a8:58:e3:0b:de:91:ac:36:c5:5f:83:3c:1c:5b:68:85:18:d6:
97:9d:ae:a5:35:b9:29:d3:a4:ad:22:0d:fe:ce:74:70:bb:aa:
60:6c:6f:6e:ea:1d:f5:f6:3c:a6:ee:48:75:9d:92:99:b2:32:
e7:71:28:af:87:2c:f2:d9:40:b5:80:ab:de:a2:3f:31:e7:3a:
83:02:44:26:cc:26:25:52:6a:96:b3:b5:66:8b:40:02:8d:86:
42:1f:24:0e:0a:24:cb:46:6e:45:0b:7b:a6:7a:49:73:19:30:
f0:e3:0a:3a:b5:76:ba:e1:e7:c5:25:1c:be:04:9b:a2:f9:d3:
f3:a8:ce:99:a2:6e:20:92:b5:7f:bf:88:03:8f:88:4a:35:12:
6d:4e:ea:78:37:62:57:f5:9d:c6:26:ed:db:f0:e2:b2:7b:68:
86:90:3e:cb:c2:e7:f1:8c:a2:c8:6c:29:93:7f:28:ad:da:f3:
97:87:c8:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org