Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3339633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: t+vUCffk1FnV1GVOotlVoqR1tiP08tdeCJCpqmLWVxE=
Subject key identifier: CB:8D:C7:01:AE:67:A7:35:1D:BC:42:1D:00:F5:6E:13:B8:50:D5:EE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 130B2B04DDB0543E680C25E02E56AAED45492E4E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:36 +0000
ROA not before: Mon 26 Sep 2022 10:55:36 +0000
ROA not after: Mon 25 Sep 2023 11:00:36 +0000
asID: 59282
IP address blocks: 2400:d680:39c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:0b:2b:04:dd:b0:54:3e:68:0c:25:e0:2e:56:aa:ed:45:49:2e:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:36 2022 GMT
Not After : Sep 25 11:00:36 2023 GMT
Subject: CN=CB8DC701AE67A7351DBC421D00F56E13B850D5EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:fa:3d:88:a2:e1:13:a0:0d:86:52:c9:a8:5d:
aa:df:9c:69:8f:70:0d:1d:ea:24:c9:6d:3f:1a:ff:
bb:8e:ff:90:7c:8a:e8:05:05:27:33:1b:21:bd:b5:
44:00:f2:c1:f7:ba:99:66:a9:63:bb:aa:b1:df:d2:
a8:2c:ed:c2:ea:b3:e6:de:20:97:0c:5a:8a:e2:46:
f4:6c:88:d6:17:c8:03:17:28:fa:b5:9a:d4:64:c0:
2d:06:dc:fe:27:39:87:9e:44:fd:9a:4a:42:59:33:
b0:01:d6:23:c6:5a:cd:cf:aa:af:04:a5:f3:66:38:
6e:1e:c4:2d:e4:cf:40:34:c0:10:3c:74:eb:09:e1:
5b:29:f7:d3:66:0c:8d:a1:71:2a:81:c4:ac:02:92:
f1:0f:6f:bb:4c:a2:be:00:6b:a0:37:a8:3e:c4:83:
ce:e3:b1:29:4f:eb:30:66:8f:e9:ed:75:5c:2f:7f:
fe:c3:9f:65:8b:76:b0:2b:a6:85:31:17:fd:b8:41:
a7:b4:6d:15:30:b7:6c:5a:8a:99:ce:8e:d6:4e:6d:
a5:6f:ae:74:a8:3d:1a:41:27:85:8d:d5:80:53:02:
4f:c2:43:66:56:9a:53:dc:08:7a:b4:06:02:c8:cd:
1f:16:b1:0b:40:2f:e4:b0:28:8c:69:73:e4:90:88:
b0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:8D:C7:01:AE:67:A7:35:1D:BC:42:1D:00:F5:6E:13:B8:50:D5:EE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:39c::/48
Signature Algorithm: sha256WithRSAEncryption
81:9a:2a:0b:55:23:9c:59:85:53:f3:c8:a3:df:13:17:c7:df:
f2:8d:33:d3:0a:a7:72:0d:85:32:6f:e6:e6:7b:43:01:98:5f:
6f:7e:85:43:d8:e6:77:eb:fc:07:1e:b0:e1:fe:7e:80:79:01:
6e:55:64:7b:f2:57:3f:02:6d:50:23:8b:6e:96:98:74:9c:6b:
ca:db:9f:b3:91:e1:f7:c3:ca:e0:aa:d2:e5:da:37:6e:e6:6b:
fc:51:7a:d1:2f:f1:c5:e8:55:d4:fa:2b:ea:24:9e:88:1b:47:
f7:d4:95:6a:61:3f:3c:9a:2a:f1:3f:87:d1:08:4b:e5:75:87:
7e:86:27:d3:78:5f:8b:46:53:32:d2:88:a1:2b:f0:58:76:0d:
8e:36:e6:66:77:bb:8f:15:01:7c:a5:4a:64:5b:df:a7:0b:42:
45:aa:fb:c1:c7:5e:09:a3:b1:9a:91:60:43:85:2d:65:72:e9:
60:d4:eb:78:ec:5d:d2:3f:35:96:11:36:d7:36:66:60:c9:29:
0f:19:f5:3b:a1:c7:f7:9e:50:d2:60:0e:d5:a5:61:fa:ae:4a:
31:4a:40:9a:ab:a8:2b:c8:60:32:fb:b0:9b:8e:d0:e0:47:51:
b7:85:5a:f2:11:54:a6:b0:c2:cd:62:79:da:a2:ca:0f:22:a9:
43:44:46:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org