Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3361323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: rcglqIf6VLOxBUpmYbQSj9rwu/wiqWdMLc+KtGKAH48=
Subject key identifier: E1:E5:55:33:43:ED:9B:1A:6D:9F:B9:F3:E3:BB:4D:E2:14:9D:49:FB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 05AA26F51AEF0357F4E2E60D49C58DA20DFC4C38
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:43 +0000
ROA not before: Mon 26 Sep 2022 10:55:43 +0000
ROA not after: Mon 25 Sep 2023 11:00:43 +0000
asID: 59282
IP address blocks: 2400:d680:3a2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:aa:26:f5:1a:ef:03:57:f4:e2:e6:0d:49:c5:8d:a2:0d:fc:4c:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:43 2022 GMT
Not After : Sep 25 11:00:43 2023 GMT
Subject: CN=E1E5553343ED9B1A6D9FB9F3E3BB4DE2149D49FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:66:4e:59:01:9f:52:44:a2:67:2d:79:1c:05:
37:7c:86:ac:f4:55:bc:7f:e6:8f:3d:92:3c:67:f7:
33:62:c1:50:60:ea:0e:c8:a1:16:1c:d2:22:fc:75:
12:7e:1f:a2:3a:a6:c4:2b:43:70:a6:50:48:93:e7:
3c:64:e9:3c:0a:95:a2:00:f6:4b:b4:0c:e3:87:7c:
87:d5:1d:cd:31:34:27:dd:fd:ec:0f:de:14:ee:b1:
bf:79:32:25:ff:c3:91:e0:c2:57:68:5e:ff:ae:aa:
a1:2e:b8:08:65:a3:fa:1e:3b:f8:66:37:c5:9e:50:
63:41:7c:a1:6b:80:f1:65:d5:10:50:d4:ec:57:a2:
01:4b:b7:24:55:65:6a:30:30:43:f9:0f:5b:2e:1c:
da:ed:1e:2e:d8:7c:24:2d:76:c9:ce:8f:68:9e:10:
00:5e:5a:40:b4:7e:16:7f:f2:35:de:d9:49:ab:a8:
1b:02:bc:c6:d7:61:a7:99:d1:d6:e8:79:6d:be:21:
06:9c:9f:b7:e4:55:ed:3f:a6:52:34:84:3b:dc:4c:
21:86:29:22:5d:9c:46:09:63:db:90:2e:3a:7d:6f:
c4:26:3c:e3:89:c3:40:41:70:df:fb:1f:5f:49:68:
f0:b5:fe:28:c4:b5:80:48:03:1d:f8:12:45:12:16:
fa:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:E5:55:33:43:ED:9B:1A:6D:9F:B9:F3:E3:BB:4D:E2:14:9D:49:FB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3a2::/48
Signature Algorithm: sha256WithRSAEncryption
06:ed:b6:4e:06:0f:ae:73:37:a3:8e:8a:d5:f9:ba:e3:ae:5a:
83:dc:78:28:10:39:29:d8:71:e5:59:9f:9b:bb:52:53:b5:24:
61:89:f4:fc:36:77:15:89:13:00:b0:af:05:78:ea:b8:8f:40:
64:9c:16:8f:79:fb:3d:f9:c6:0b:8d:53:f2:ed:c3:1d:2e:9f:
7c:30:b9:b5:02:87:49:88:5c:0d:ee:85:2c:fb:9b:15:2e:ec:
90:a1:36:d1:56:7d:3f:32:50:4a:e4:e6:0c:15:61:7a:ef:1b:
1b:a0:5b:e6:28:46:9d:14:b0:52:16:b4:a7:62:66:68:46:94:
a6:b4:dd:d1:f4:65:5a:09:0e:3d:4a:4e:d8:b8:73:98:6c:56:
70:a4:a6:0f:f5:ae:9c:bd:80:97:65:f5:fe:66:e0:9c:95:ca:
10:96:c5:80:a4:00:d6:c6:9d:a6:91:de:08:07:a6:b5:7a:35:
b8:2a:9f:d1:1e:66:4b:44:dc:03:89:39:5d:34:52:64:c9:ba:
35:5f:2e:30:c8:4f:35:81:8f:7e:87:1d:18:06:19:21:ba:59:
bf:74:40:a6:28:b1:c5:88:f5:2c:8f:d5:df:95:fd:90:f8:01:
87:a4:2f:4e:c0:25:8e:d3:eb:1f:39:26:30:ae:62:c6:89:d6:
04:60:e1:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org