Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3361303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: rFkvX6iveH1Mtl3FSV2LIZ/JahpTzdjjN9Oj6xxfG5Y=
Subject key identifier: 06:FA:DC:6D:5D:13:75:E4:1D:37:D2:32:8D:BC:1D:09:A7:94:3B:EB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6BA7F7377182FF595BDF094A72C3B422050B60D3
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:37 +0000
ROA not before: Mon 26 Sep 2022 10:55:37 +0000
ROA not after: Mon 25 Sep 2023 11:00:37 +0000
asID: 59282
IP address blocks: 2400:d680:3a0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:a7:f7:37:71:82:ff:59:5b:df:09:4a:72:c3:b4:22:05:0b:60:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:37 2022 GMT
Not After : Sep 25 11:00:37 2023 GMT
Subject: CN=06FADC6D5D1375E41D37D2328DBC1D09A7943BEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:bc:c1:2a:ab:51:92:a2:27:3d:4a:b2:12:f3:
af:56:89:94:38:e6:8f:01:32:64:c3:c4:bc:7c:48:
91:4c:d7:ce:4c:ab:a9:b6:57:17:6a:17:04:05:3b:
62:cc:4f:46:e7:44:9d:18:46:a0:06:0d:ed:06:57:
a6:00:18:70:dd:1e:bf:10:b1:6b:66:03:61:28:7f:
99:b1:ef:ad:73:ef:da:a2:aa:53:2e:aa:35:05:d7:
92:9b:c3:41:98:de:38:19:4e:bd:48:88:4e:0c:3d:
40:30:55:d7:50:9b:b5:82:b8:89:52:67:03:84:9d:
c4:a1:ca:6e:d6:31:95:93:89:db:bf:47:dd:39:1c:
0e:36:53:ae:41:96:ec:e2:a7:2a:24:9e:f8:60:cf:
85:53:cd:c6:cb:6a:69:99:4a:74:f1:22:1f:c6:db:
1a:3b:a3:d1:e5:6e:3d:ca:75:45:a3:c9:d7:4c:38:
ad:9a:06:90:f6:a1:14:82:2f:03:2e:3e:26:40:e7:
76:fb:4e:90:e3:09:86:7b:8f:15:47:12:f7:1b:89:
23:a3:0b:2b:6e:e3:01:87:e1:e0:58:bb:1d:8e:06:
62:dd:45:0d:c9:63:da:ac:ec:36:72:a7:62:63:40:
35:9d:2e:90:a0:fb:c7:0e:58:91:a0:4e:2f:99:fb:
75:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:FA:DC:6D:5D:13:75:E4:1D:37:D2:32:8D:BC:1D:09:A7:94:3B:EB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3a0::/48
Signature Algorithm: sha256WithRSAEncryption
b0:71:79:7f:c1:a3:9d:51:83:90:e5:08:ae:63:84:8d:6f:7b:
18:cc:1b:dc:5d:89:69:81:c6:e4:3f:a7:02:28:14:15:98:67:
2f:47:d8:09:91:c1:44:cd:6d:2a:6c:0b:94:f3:17:c5:44:fc:
74:4f:5a:8c:10:6a:97:69:c6:3d:0d:c8:6b:e0:3e:b4:dd:36:
9b:50:9b:4c:f2:d4:51:88:b1:09:e7:52:46:74:c2:68:35:b3:
9f:95:c4:51:64:dd:d6:79:57:31:3d:e4:45:17:46:35:08:ab:
4d:14:b0:12:bb:e7:6c:f2:57:62:6f:07:41:db:13:be:61:16:
0b:83:7c:92:6e:1f:ba:c3:46:09:81:6a:99:fc:62:47:f7:03:
83:f9:e4:5e:af:0e:5e:f6:f4:02:a4:db:48:16:9d:9b:14:2a:
44:97:c1:be:25:bc:79:e0:88:65:c4:fd:c9:c0:cf:97:61:f0:
f2:ce:71:75:26:22:1b:2b:54:47:45:a9:42:22:31:8f:fb:76:
75:59:2f:55:02:bc:59:d0:2e:9a:3c:af:86:40:33:2e:ac:b9:
f0:02:e9:17:a4:b6:b8:15:e6:d1:c8:d7:bf:3f:d9:86:0f:c2:
31:19:f0:e0:df:c8:e3:cf:6d:08:88:49:77:8a:fd:5b:bf:50:
16:b2:f7:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org