Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a33393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: tJ17M2bPqxpOsOXrZxHkC+nrUJynIMd6YHP7FZy/Ci8=
Subject key identifier: 18:D7:08:91:45:7B:F2:48:16:21:D7:AD:5F:85:D8:10:8E:13:E5:4D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 418D492BFE92F2396C3D0F4EF4CC2A8637C95A66
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:21 +0000
ROA not before: Mon 26 Sep 2022 07:57:21 +0000
ROA not after: Mon 25 Sep 2023 08:02:21 +0000
asID: 59282
IP address blocks: 2400:d680:39::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:8d:49:2b:fe:92:f2:39:6c:3d:0f:4e:f4:cc:2a:86:37:c9:5a:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:21 2022 GMT
Not After : Sep 25 08:02:21 2023 GMT
Subject: CN=18D70891457BF2481621D7AD5F85D8108E13E54D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:48:f8:84:0a:c9:68:7c:d3:4c:47:e6:eb:81:
db:50:d2:1e:ff:98:4c:b0:61:1f:e4:4c:47:13:78:
e6:78:55:ad:6b:f6:aa:43:3b:9e:28:e9:53:37:c2:
42:ae:32:43:b2:17:26:7b:4d:f2:ca:ff:c1:91:c2:
cc:8a:47:42:6c:e6:ad:90:f2:d3:4e:c3:f5:2c:3f:
46:28:f5:16:00:dd:b1:f8:5d:08:95:1b:01:42:a7:
43:03:0b:cb:c5:a8:90:f4:7e:d8:ae:43:2d:2f:34:
91:86:07:b9:3b:a9:6e:d8:97:20:7a:ee:6e:af:ea:
f2:6d:14:f2:58:e2:08:d5:98:1a:ea:cb:7f:7a:50:
17:2a:a2:80:7f:89:7d:45:a1:e6:d2:32:75:78:b8:
f8:3b:e1:72:bf:f0:cc:91:c0:41:4a:e5:2c:cd:03:
90:0e:ba:fb:20:9d:0c:8d:f3:24:5a:cd:61:23:84:
8c:c6:9c:14:fe:17:86:99:bd:d4:9c:42:cb:81:af:
b8:7e:02:f4:a0:b3:36:fa:2a:8e:21:bf:3d:ab:4f:
55:95:df:5e:84:ea:f8:9c:7d:95:f2:9d:b7:6f:5c:
d1:35:7c:58:75:97:72:e9:52:4d:ea:bf:3d:c3:73:
37:6f:cd:6c:2d:e2:62:5a:bb:74:d9:35:13:cc:c7:
54:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D7:08:91:45:7B:F2:48:16:21:D7:AD:5F:85:D8:10:8E:13:E5:4D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:39::/48
Signature Algorithm: sha256WithRSAEncryption
35:d9:76:2f:d3:b7:ca:74:13:d5:40:3e:71:64:49:57:72:dd:
de:b1:42:4e:58:35:80:61:e7:b8:38:2e:cf:f3:d8:56:b2:ff:
50:7a:ec:c2:c3:6b:37:dd:ff:51:f0:00:a6:ab:6d:84:dc:19:
14:2f:93:75:82:69:df:8f:24:ae:9e:cc:7a:ca:f8:6d:84:3d:
71:31:3c:f2:1f:72:71:16:b8:1e:20:55:92:fe:77:0e:7f:aa:
ff:ed:4f:e1:84:46:eb:36:be:a0:f7:d2:39:67:07:11:9a:4f:
ed:a3:e7:10:94:92:e5:86:85:5f:cc:f4:67:11:17:e3:29:67:
a3:0d:2c:4e:af:30:4b:82:5b:0e:87:42:bf:a6:cd:25:9b:06:
48:13:e6:80:0a:f0:0d:e7:4c:e2:98:21:8d:71:19:bf:54:2d:
a2:60:90:3b:bc:d7:6f:ad:7f:7a:f8:5d:c5:64:66:6d:2b:b0:
96:e0:04:9c:0e:0d:67:16:f8:da:cd:27:74:47:d9:0d:8b:ed:
fc:fc:ab:45:52:47:77:fe:72:4a:c7:86:cc:5e:14:8d:6e:4f:
53:d7:69:8a:3b:50:7a:6f:a6:c3:a6:21:50:aa:a9:ed:7e:a4:
55:31:71:2b:86:ce:9b:bc:b5:af:e1:0d:65:4c:6a:1c:62:9b:
c8:c0:83:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org