Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3338393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: THMcOQkG5E9xYaWirTFVOAb9qPM/IihVOV3k7fLPYJI=
Subject key identifier: 88:A5:3A:26:00:C9:73:B9:24:6E:FE:1D:0B:5E:CA:F3:C4:0F:68:77
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3D85923B814F27B2D11F0142FF50A4097AC588B4
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:34 +0000
ROA not before: Mon 26 Sep 2022 10:55:34 +0000
ROA not after: Mon 25 Sep 2023 11:00:34 +0000
asID: 59282
IP address blocks: 2400:d680:389::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:85:92:3b:81:4f:27:b2:d1:1f:01:42:ff:50:a4:09:7a:c5:88:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:34 2022 GMT
Not After : Sep 25 11:00:34 2023 GMT
Subject: CN=88A53A2600C973B9246EFE1D0B5ECAF3C40F6877
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:33:e4:d0:0a:05:9c:ea:04:53:4c:d0:f8:95:
b4:3c:fe:f4:e2:a9:07:1b:fd:1d:50:84:d2:f2:48:
3f:95:2f:bc:35:a7:fd:33:cc:9c:3c:57:ca:20:70:
b3:52:17:3c:7b:7b:41:d3:75:94:a9:61:c0:cb:94:
a8:97:e2:9a:9b:b4:82:a9:c4:d3:42:ef:e2:34:c5:
f4:a2:8c:e8:91:f2:1b:94:22:80:26:cc:98:07:79:
80:f4:dc:a2:62:ff:df:57:61:4b:81:ee:fa:21:0b:
89:4e:93:bd:2b:a2:1d:43:fb:55:12:7c:90:29:25:
90:71:87:2d:19:26:36:78:7c:3f:1d:ee:a3:57:f6:
ed:06:fc:a5:f6:69:9a:e9:be:ae:f4:d0:cb:01:c9:
7e:87:a0:29:27:f7:13:ea:12:4e:1f:1f:2d:a0:78:
f1:b6:03:db:56:65:9e:da:ce:3a:2f:80:5e:b7:4a:
25:5e:3b:d1:8f:85:44:38:78:c5:f4:8d:41:8d:5e:
62:29:c8:79:f6:0b:3f:ba:a2:0f:03:a6:22:51:c8:
aa:cb:e4:f8:2b:34:a9:17:49:3c:a3:66:e0:04:ba:
1c:4a:5c:3f:e2:a4:e0:06:ac:86:f0:4b:6f:64:6b:
e6:84:12:c2:88:fd:c3:d8:bc:76:38:03:7b:97:14:
5c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:A5:3A:26:00:C9:73:B9:24:6E:FE:1D:0B:5E:CA:F3:C4:0F:68:77
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:389::/48
Signature Algorithm: sha256WithRSAEncryption
a5:dd:ca:e9:a6:47:cf:4c:c7:e7:56:30:2d:41:3e:d3:5a:d2:
08:84:3f:6e:33:e3:86:17:c2:71:fa:c1:26:47:6f:a3:06:1f:
fa:33:bd:36:93:15:68:c8:23:7f:03:6d:50:69:8b:71:25:2f:
6f:10:27:04:39:9e:9b:4e:6a:b5:4e:3d:c3:ec:01:0b:dd:ac:
bc:39:b0:68:0c:35:92:f9:ce:0b:32:d3:66:e5:e7:10:9d:64:
52:f0:40:fd:40:af:b3:34:ea:46:f8:42:4c:b1:86:44:35:67:
12:ca:08:d5:ea:01:62:e6:fd:db:11:cb:3d:82:60:49:4f:99:
39:9c:8d:3b:9f:a9:94:3a:b5:f5:97:ec:e4:57:b1:3d:59:75:
8f:33:ea:c0:49:09:7d:7f:fa:15:72:f5:61:bc:fe:d8:4e:0d:
93:8c:a7:6a:00:5a:4d:d7:59:7f:42:43:e4:83:99:2d:80:46:
03:75:e5:c0:44:cb:e2:7c:1e:8d:03:90:0c:c6:b3:44:d9:e7:
8c:67:85:3e:bc:e0:00:44:a4:9a:98:b6:ac:34:78:6a:33:ac:
71:6c:88:4f:62:aa:74:70:98:f4:42:d7:c8:2d:5f:03:b2:67:
42:8b:68:e2:21:6f:bc:47:d6:ba:7d:58:b2:a7:78:c8:d5:f4:
47:11:85:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org