Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3339393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: rvRJpBMHAEkegG46TTMm+8zEXIvR6Rok6CZzBIQz+X4=
Subject key identifier: 8D:01:F7:2A:5C:FC:B2:1F:35:CE:B8:B0:EA:B1:20:0D:8C:FE:CD:DC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 57FE304CA8789D520510E4DE6690BBB387884988
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:44 +0000
ROA not before: Mon 26 Sep 2022 10:55:44 +0000
ROA not after: Mon 25 Sep 2023 11:00:44 +0000
asID: 59282
IP address blocks: 2400:d680:399::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:fe:30:4c:a8:78:9d:52:05:10:e4:de:66:90:bb:b3:87:88:49:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:44 2022 GMT
Not After : Sep 25 11:00:44 2023 GMT
Subject: CN=8D01F72A5CFCB21F35CEB8B0EAB1200D8CFECDDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:55:d7:4d:82:93:06:37:4c:ac:f8:84:c6:be:
22:7e:27:4b:6d:75:44:ce:a8:3b:f5:52:c8:cb:49:
eb:19:10:16:de:7a:3e:25:cd:0e:d0:f0:5f:3a:f8:
22:bb:a4:23:8e:70:3d:a1:09:fd:ee:a9:7c:d7:a5:
62:64:98:db:dd:d7:33:c7:30:e9:65:8c:57:ee:4e:
94:38:dd:9d:3c:6e:8a:00:a4:f1:1d:25:63:10:bf:
da:dc:76:f4:b3:fe:51:a7:58:1f:fc:6c:6e:fb:d6:
0b:6d:da:df:cd:1c:59:9e:3f:9c:25:36:02:43:17:
5f:33:a3:95:26:e0:1a:73:4c:33:6c:00:d1:7b:73:
0c:d7:07:b8:8e:08:39:ad:96:be:d2:8e:97:96:c2:
c4:80:8c:04:79:60:2b:0d:c3:dc:40:1a:ce:95:6c:
aa:97:b1:69:6e:03:68:eb:52:70:e3:bc:b7:50:15:
1d:54:fd:35:d6:76:e5:54:bc:5a:63:75:17:31:5d:
c4:35:45:31:b2:5c:4d:6a:06:6f:b3:48:30:e1:20:
21:37:27:6d:89:af:54:51:85:75:f4:fc:e8:bf:4b:
a5:c1:a1:8b:64:53:e8:b4:34:c2:65:f9:92:b6:6b:
4f:46:a7:59:ce:46:db:be:b9:8b:c8:2b:5b:cf:f2:
da:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:01:F7:2A:5C:FC:B2:1F:35:CE:B8:B0:EA:B1:20:0D:8C:FE:CD:DC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:399::/48
Signature Algorithm: sha256WithRSAEncryption
9e:7c:c5:b4:6d:1b:83:66:bb:e6:1c:ee:bb:c7:1c:e9:38:76:
11:9f:5f:a6:8d:fd:b4:76:17:1e:0a:ed:e5:c9:be:16:e6:44:
dc:67:7d:66:18:ae:46:fc:8d:e5:23:22:39:ed:97:c7:8d:c6:
11:ad:85:e7:a0:c1:53:80:df:7e:72:26:42:2d:6e:b9:78:7c:
95:8a:26:0f:32:30:32:66:f6:66:f9:ba:45:d5:03:a8:ed:88:
7d:a9:99:67:ef:35:79:51:73:71:d5:39:35:90:c9:8c:6e:de:
77:e9:d0:3a:7d:85:31:7b:d0:fd:4f:2e:08:c4:d5:ed:f4:af:
bf:90:6e:7b:1b:69:c1:5e:8e:53:cb:02:34:72:1f:07:05:06:
79:4e:ac:38:4c:79:36:41:e1:a7:be:be:e5:69:cf:ae:4d:49:
1a:3c:4f:28:b9:af:1b:a4:a9:ff:a7:51:ad:6b:f7:84:21:f0:
38:80:23:26:ef:14:68:36:3d:db:2a:9f:e0:ae:73:60:de:cc:
c4:42:1b:a8:f6:7f:fb:ae:67:50:86:82:e1:6f:99:3c:ad:89:
70:7f:e0:f8:29:d3:c6:f9:ed:b9:f7:d6:21:b6:65:1c:82:9a:
7a:c2:62:02:34:20:1a:3e:8c:2b:09:03:07:0f:08:75:63:7f:
10:68:e3:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org