Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3338633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 9CNqrhwDI+RJuNDZN3gCLbvuRQXiUvra1dqvzT2Pn9Y=
Subject key identifier: A3:3D:6D:27:17:1D:DD:EB:0B:0F:BE:05:C2:AF:F8:95:E9:C3:86:A1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2A1A3D251E99D4F05835F37039E5C88B7F775D8D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:50 +0000
ROA not before: Mon 26 Sep 2022 10:55:50 +0000
ROA not after: Mon 25 Sep 2023 11:00:50 +0000
asID: 59282
IP address blocks: 2400:d680:38c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:1a:3d:25:1e:99:d4:f0:58:35:f3:70:39:e5:c8:8b:7f:77:5d:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:50 2022 GMT
Not After : Sep 25 11:00:50 2023 GMT
Subject: CN=A33D6D27171DDDEB0B0FBE05C2AFF895E9C386A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:62:f7:c1:9e:2d:ac:c7:7d:57:ec:90:8f:76:
66:d7:d7:18:45:fc:e0:36:b3:f7:7e:e6:88:8b:2d:
3c:32:99:b4:1a:04:76:ca:0f:15:68:fa:fb:13:7e:
70:87:d2:b0:e1:14:17:9e:ff:f8:34:4c:1b:6c:a0:
0c:0f:70:f6:eb:88:96:54:df:62:53:7c:c1:e9:0e:
77:0b:cc:23:25:e6:0b:19:9c:52:2a:49:c7:ef:4c:
20:88:08:66:38:ca:e9:5e:bc:b4:d9:ac:34:b9:e7:
3f:5f:5f:20:b6:13:fc:4e:0b:30:f4:bb:29:f6:aa:
0b:af:1f:2e:2c:01:97:5e:6b:0d:dd:a8:b4:05:9e:
23:18:47:15:b8:d2:a0:50:7a:9e:98:e4:26:02:c0:
9a:f6:76:84:e3:5d:a8:a2:4a:a4:7d:5c:27:bd:78:
7a:48:de:ff:6f:95:7d:95:f7:93:c3:6c:8b:e8:4a:
77:fb:bc:63:09:fc:5b:8b:d0:4f:9e:3c:ff:b8:58:
94:2e:18:79:ba:c6:28:1d:11:ee:7a:2e:1f:a8:5e:
86:c1:d4:2f:39:fb:1e:3f:03:43:21:69:27:35:86:
45:48:05:6f:64:3c:1c:79:3e:2e:81:eb:c9:33:69:
c1:bd:dc:8e:19:48:29:08:13:b1:91:65:8e:53:8a:
3a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:3D:6D:27:17:1D:DD:EB:0B:0F:BE:05:C2:AF:F8:95:E9:C3:86:A1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:38c::/48
Signature Algorithm: sha256WithRSAEncryption
d7:6a:e3:91:89:1e:38:6e:76:47:1a:92:27:6b:c4:08:21:b7:
bc:b9:d0:61:5f:42:fc:0a:7f:07:16:85:ba:9e:89:5b:90:04:
9c:cc:fe:0b:ef:a5:ed:5e:63:5a:e4:54:a5:76:55:7d:36:ff:
e8:f2:10:2c:60:a5:c8:72:75:dc:42:b5:ef:78:28:2b:64:70:
7c:17:bd:bb:80:69:ad:14:32:99:a9:a5:e1:51:f9:d4:ec:44:
df:d2:e1:b2:72:10:e0:d8:20:a6:05:18:94:2d:4d:de:7e:9f:
be:fa:47:7d:ff:80:b8:00:52:20:17:85:c3:66:68:b0:70:fa:
59:72:41:24:38:9c:a8:28:eb:f5:72:7a:1d:6b:77:ef:02:35:
18:b7:ab:75:85:09:6b:9a:5e:d9:f1:56:49:90:dc:b0:1c:75:
57:24:a2:a1:61:44:5f:f0:80:82:00:96:63:cc:6a:e4:40:fe:
6b:e8:79:de:32:c7:30:7c:1f:27:66:5e:df:4e:2f:40:55:17:
94:0b:c5:62:18:d0:dc:a5:63:23:30:a6:bd:23:b1:1a:20:89:
4b:c6:37:bf:c8:13:af:6f:20:ae:24:61:2a:06:4c:38:3e:85:
89:e6:ad:65:e3:4e:6a:bd:52:e4:20:a2:c8:37:f0:ea:bd:8b:
9f:48:21:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org