Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3337653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 5VhIR5pnO+JkPz4FUi0pOVdKq4AZNkux1dG6txDwHyg=
Subject key identifier: D4:AE:F4:A3:86:42:0A:CC:06:B1:73:2B:D0:F1:CD:1A:5E:09:48:47
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1AC9ADA76F35E5E9CA96967CE44BB0C5CA74E4D2
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:31 +0000
ROA not before: Mon 26 Sep 2022 10:55:31 +0000
ROA not after: Mon 25 Sep 2023 11:00:31 +0000
asID: 59282
IP address blocks: 2400:d680:37e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:c9:ad:a7:6f:35:e5:e9:ca:96:96:7c:e4:4b:b0:c5:ca:74:e4:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:31 2022 GMT
Not After : Sep 25 11:00:31 2023 GMT
Subject: CN=D4AEF4A386420ACC06B1732BD0F1CD1A5E094847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:86:f4:b4:0c:07:45:07:41:fe:51:88:19:5e:
23:25:c8:d6:51:4f:e8:9c:4e:e2:03:cf:3e:d8:b3:
ad:0c:fb:95:77:8a:bd:38:80:3e:d4:01:24:de:af:
cb:2e:ba:46:41:02:03:66:03:a1:59:22:b1:55:ec:
c2:38:7d:c9:54:11:c1:b0:f5:5c:c4:1a:28:6e:6b:
43:43:7d:f9:36:fa:c2:f7:72:73:4c:a1:ae:4c:85:
68:47:d4:f2:13:82:10:69:8a:8a:d5:93:da:f2:23:
9a:86:74:e9:2e:a6:10:97:d4:0c:7b:64:b0:0d:37:
e2:e8:87:ef:3b:29:af:41:68:1e:fc:69:30:3b:3a:
29:1e:26:7d:a8:ca:3c:ba:37:b0:1f:a4:52:56:f1:
e9:1c:67:6e:3d:a8:7b:07:84:dc:94:07:51:a0:1f:
5e:84:4b:ad:cb:0f:a9:37:30:d1:14:6d:d7:a9:fa:
a4:1a:de:b3:3f:1b:6c:cd:4e:95:e3:e9:1c:97:dc:
de:33:54:1d:a7:7e:29:29:4e:c2:6b:03:dd:ef:a9:
da:4f:a3:13:88:a6:84:e5:c7:00:5b:c8:19:13:dc:
62:b9:99:3a:f2:6d:58:eb:35:49:30:3f:aa:a9:4c:
b8:6b:9f:11:6f:f2:8d:c4:dd:c9:ed:d8:f9:75:e3:
21:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:AE:F4:A3:86:42:0A:CC:06:B1:73:2B:D0:F1:CD:1A:5E:09:48:47
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3337653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:37e::/48
Signature Algorithm: sha256WithRSAEncryption
9f:72:e7:1f:56:c1:68:71:e9:5a:94:1f:f2:24:45:f1:44:82:
37:2a:48:4e:db:6b:41:6e:4f:5c:43:fb:73:a7:3c:8c:c2:a7:
16:dd:bf:0d:ed:5c:a6:f2:6a:70:df:e7:56:40:58:4d:b7:02:
89:74:55:bc:c0:9e:f8:48:11:d3:b4:39:39:28:5a:31:88:bf:
6c:2e:80:0b:90:20:bc:c7:5a:09:41:4a:f8:00:96:36:93:cb:
33:a4:3e:2a:53:da:7c:72:44:e5:44:4a:60:cc:17:85:f0:2e:
d6:10:79:4e:ea:e7:e7:40:74:ae:27:cc:32:ba:c6:de:07:09:
f4:c9:02:4b:64:ea:8b:1b:7e:91:c7:5a:ac:26:97:0e:f2:5f:
61:d8:4d:24:4b:73:11:c3:d4:36:75:b9:e1:ed:7f:98:0a:09:
d1:89:d8:4d:35:bc:8e:45:0e:29:ee:98:6c:6c:34:85:81:6e:
7a:8a:bd:d3:52:fc:88:99:28:1b:64:ea:e2:0e:aa:a4:51:10:
6b:c5:00:47:28:23:62:59:62:d9:50:7f:fd:5e:43:74:6d:64:
d9:bf:0e:3f:16:dd:32:c2:71:27:03:d0:61:f9:0f:b4:ef:a9:
2b:e4:63:df:64:fd:fa:5c:2c:6c:44:ec:c9:e1:e3:ec:ce:5b:
af:92:f6:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org