Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3339373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: zX6nu3NtpMlukxARbxMSo7yPJeHJHsFfQdS0kzDSjpQ=
Subject key identifier: 09:B9:B6:78:32:A4:2A:24:4B:E7:F2:A5:0F:88:AF:8A:85:E7:FF:04
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5D00AE319B49227E61360E9906AC17EEE733161D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:33 +0000
ROA not before: Mon 26 Sep 2022 10:55:33 +0000
ROA not after: Mon 25 Sep 2023 11:00:33 +0000
asID: 59282
IP address blocks: 2400:d680:397::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:00:ae:31:9b:49:22:7e:61:36:0e:99:06:ac:17:ee:e7:33:16:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:33 2022 GMT
Not After : Sep 25 11:00:33 2023 GMT
Subject: CN=09B9B67832A42A244BE7F2A50F88AF8A85E7FF04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:90:d1:e5:bb:c4:9f:e6:25:93:6f:82:c7:6c:
6d:fb:4f:f7:8d:f9:0a:87:3f:c7:a5:16:36:80:40:
1b:f1:dc:f7:73:ea:ed:9a:2b:35:3a:61:dc:3d:b2:
7a:fb:62:f9:74:4d:73:5b:e9:6f:07:7a:83:ef:62:
1d:02:a7:84:a1:8a:a0:ec:62:13:b1:c5:c6:35:9e:
78:bd:d9:af:79:45:7e:1b:86:bc:f2:bf:83:40:d3:
ac:e7:26:61:9b:06:c3:a7:21:18:be:62:4d:7a:40:
ae:db:a1:52:1d:8a:c9:63:11:45:c7:6e:54:1e:75:
a7:7f:82:3e:ad:81:01:2d:99:94:15:80:8b:0d:a6:
60:38:0c:78:68:ba:99:2e:27:a7:ee:67:d2:80:f4:
c2:44:33:55:33:76:27:10:95:09:2a:7d:02:ca:21:
62:0b:bc:57:da:2d:45:9c:42:c7:77:63:b5:77:cd:
1a:68:c3:b7:6e:ea:2a:b4:ff:63:a1:1c:34:5e:d8:
b0:1f:27:76:f9:83:68:7f:41:c1:54:de:0a:10:b5:
5f:55:e6:c2:db:8b:b2:75:cb:45:10:95:df:17:0c:
00:8d:b9:0b:b1:2b:5b:68:c0:75:e2:61:3e:84:84:
3d:dd:58:92:13:45:b0:04:97:1a:b2:89:49:ef:8e:
b4:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:B9:B6:78:32:A4:2A:24:4B:E7:F2:A5:0F:88:AF:8A:85:E7:FF:04
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:397::/48
Signature Algorithm: sha256WithRSAEncryption
7b:01:6f:9e:31:91:6b:d6:c8:d9:cc:5a:f2:ad:c3:d5:99:0f:
7c:b1:7a:63:49:29:cd:ab:81:a7:41:e2:0d:04:8e:cb:36:36:
ea:42:c8:97:95:ee:f4:cd:66:c1:f2:90:8f:c1:2c:f6:23:a9:
4d:5b:bc:61:81:18:4f:89:0e:20:f9:70:1a:ba:83:76:bd:6e:
b1:49:de:c3:16:b6:89:4e:12:e7:8a:a3:50:09:55:2e:da:a7:
46:80:fb:fc:af:50:73:ea:0a:98:a7:e5:4a:89:21:5d:34:5e:
63:88:03:49:cc:82:99:c5:a0:fa:b2:25:be:f9:7d:19:88:76:
be:da:33:df:48:77:93:e8:4d:65:ca:5d:a5:c9:1f:13:16:8e:
3e:9e:1f:26:9b:95:0f:fc:cb:bf:37:c8:19:11:1d:ba:24:7c:
a1:e0:d9:01:49:6f:7e:14:3a:6e:0f:25:dd:e0:0a:c4:86:e8:
31:9e:79:d5:89:78:c2:68:18:d6:e1:16:71:cd:ba:a2:90:87:
4a:71:14:28:ad:d1:a5:3d:86:b4:c4:77:60:b6:c6:5b:8c:5f:
45:4b:71:57:5d:e1:36:9b:d1:a6:9e:a2:b2:66:7c:de:52:fd:
b4:b1:02:0e:16:12:54:7b:7c:d4:f7:6f:09:8b:45:1b:c5:f7:
73:6c:8d:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org