Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3339383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: RWcRi1qYFjPiAF4GfocIoRSYj0fL1273qC6mkvF8VsE=
Subject key identifier: 69:3F:07:8B:FA:E6:8E:8F:52:D5:C8:4B:A2:A3:AA:30:3C:7F:13:FF
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 66135DC48B7209112C4A377727E955D59F7249D1
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:36 +0000
ROA not before: Mon 26 Sep 2022 10:55:36 +0000
ROA not after: Mon 25 Sep 2023 11:00:36 +0000
asID: 59282
IP address blocks: 2400:d680:398::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:13:5d:c4:8b:72:09:11:2c:4a:37:77:27:e9:55:d5:9f:72:49:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:36 2022 GMT
Not After : Sep 25 11:00:36 2023 GMT
Subject: CN=693F078BFAE68E8F52D5C84BA2A3AA303C7F13FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ad:ef:79:39:99:61:d5:df:12:80:72:6c:23:
90:d2:a6:26:da:84:eb:cd:73:3c:e6:99:ea:d7:b0:
2b:7f:b5:4d:9d:43:a5:5d:66:72:79:af:4d:78:33:
af:c6:14:c1:99:35:e8:cf:66:25:b5:eb:e9:d4:cf:
63:5e:a4:59:b1:a4:cf:7a:ba:cb:c4:30:7d:39:b0:
3a:67:d4:3e:4e:7f:e7:10:79:7a:5d:73:4a:b1:d3:
1d:c4:e7:f0:54:1e:f2:7b:15:e5:3a:a9:f9:a8:b9:
70:9e:bd:d3:bf:5e:e5:bb:a6:5b:58:63:19:d2:67:
a2:7c:c4:a2:26:45:0f:a9:bb:c6:2c:e1:47:c0:dd:
c7:c8:1b:89:b0:43:66:66:5e:a5:b5:11:2b:ce:b5:
d4:c8:36:8a:e7:4f:32:b3:ab:58:c8:1d:7d:2a:73:
dd:d4:e1:89:9b:75:ac:bb:ba:e1:04:4c:83:b0:8e:
fc:5a:f4:d2:65:5c:a3:7e:6d:d6:91:4b:39:a2:e8:
db:cf:8e:9c:f1:65:23:6d:96:fc:f2:cd:6e:57:b9:
fc:85:5a:52:bf:08:0a:20:e4:22:2a:ee:98:f8:0f:
b8:9d:9e:df:25:45:9f:b2:3f:83:c8:22:3b:52:37:
04:8a:d6:40:c2:43:89:49:21:6f:a2:00:b9:70:e4:
f4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:3F:07:8B:FA:E6:8E:8F:52:D5:C8:4B:A2:A3:AA:30:3C:7F:13:FF
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:398::/48
Signature Algorithm: sha256WithRSAEncryption
5a:4c:ce:20:8a:78:c0:61:4f:d4:8b:14:4b:06:c5:e7:57:a1:
96:7f:39:8a:16:22:ea:9c:f7:d9:6f:70:d6:1e:64:06:15:76:
96:cd:87:17:4c:b2:8b:fc:28:e2:ba:a6:d5:3d:b5:f0:4b:48:
7d:da:fe:1c:0b:42:73:ce:f1:39:ce:7b:9d:68:33:1f:73:90:
ae:f7:69:13:48:34:62:ca:d2:82:e4:ac:26:2d:1d:35:d0:b0:
3c:41:61:85:74:02:82:3d:7e:46:95:ee:32:25:02:f8:20:49:
44:80:99:b6:9e:a7:71:2f:7b:65:89:3a:b8:84:38:09:6c:b3:
82:3e:4f:60:6b:f5:b3:81:b3:ad:fc:56:9e:4f:90:9e:f1:fb:
f2:71:5a:e6:58:43:48:24:a7:ea:e4:8a:39:56:4b:4f:d5:66:
7b:de:45:e7:2d:0a:47:c0:90:30:e0:f1:80:54:ac:c0:90:bd:
a1:5a:d0:46:d8:d7:af:ba:c0:33:41:92:e1:27:20:c4:26:50:
f7:22:2d:49:22:e4:4b:f8:86:3c:5a:b4:1f:13:5d:0a:3a:1e:
45:ec:15:47:e2:f8:dc:54:50:07:25:f6:18:ff:0a:ab:1a:6c:
88:84:e2:8c:cb:92:4a:e6:fe:b6:d6:07:ac:5d:63:5d:7e:91:
c3:1e:6e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org