Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3361393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 4ma6PZYPIqtT5AQLEE5ccMfDDhmHT5WhsOUVSHofX2Y=
Subject key identifier: C9:73:5A:41:BC:B9:B8:9E:E5:D9:3F:7D:ED:BD:AD:2D:F4:1A:F7:79
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0DCD3C6FEBB0AF626A2623AF095E492106B67B34
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:35 +0000
ROA not before: Mon 26 Sep 2022 10:55:35 +0000
ROA not after: Mon 25 Sep 2023 11:00:35 +0000
asID: 59282
IP address blocks: 2400:d680:3a9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:cd:3c:6f:eb:b0:af:62:6a:26:23:af:09:5e:49:21:06:b6:7b:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:35 2022 GMT
Not After : Sep 25 11:00:35 2023 GMT
Subject: CN=C9735A41BCB9B89EE5D93F7DEDBDAD2DF41AF779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:da:e6:e0:0f:26:93:a5:e8:15:7b:74:e1:a6:
38:78:61:c6:d0:0f:8a:bb:07:bf:1f:86:d9:af:e1:
c2:12:49:21:7c:74:99:eb:4d:5f:38:23:7a:9d:41:
f4:db:82:45:b0:90:17:82:6d:89:3c:01:d3:ff:f6:
52:46:8f:7a:8a:bd:7a:b0:61:58:0d:ec:8e:7a:c1:
5c:13:72:92:9b:08:a2:f9:f0:4d:bf:ba:89:1e:b5:
c2:8c:65:c2:ff:b2:c8:36:ea:03:75:e5:ae:b0:b5:
76:a5:70:11:a3:ee:37:6a:59:78:fe:59:03:97:f5:
33:71:0e:74:fd:64:b1:8e:63:d3:63:1a:92:7a:96:
70:ed:e7:82:71:a6:91:dd:94:7d:96:d9:94:2f:8d:
38:5d:50:55:a1:f0:86:b3:0e:b4:07:9c:c8:9f:1d:
13:a2:2b:68:e6:0e:ce:f4:dc:e9:e8:1e:f7:3b:b6:
6d:50:8a:7d:af:46:12:22:12:4e:e8:29:06:44:92:
56:e3:3a:23:1f:b6:f6:75:76:a1:10:aa:09:af:2b:
d5:ac:ce:1e:b5:79:59:82:a2:d6:42:ee:05:ab:24:
1f:0a:0f:dc:d6:67:e0:59:6d:ab:d5:64:91:1c:82:
a8:df:cd:be:63:a5:02:11:4f:67:e1:b2:b8:4e:37:
65:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:73:5A:41:BC:B9:B8:9E:E5:D9:3F:7D:ED:BD:AD:2D:F4:1A:F7:79
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3a9::/48
Signature Algorithm: sha256WithRSAEncryption
63:18:a1:62:81:90:f9:4c:b8:04:81:b6:69:bc:d6:68:51:70:
38:7c:7d:4e:01:d0:14:d3:95:9a:88:be:2e:58:ed:96:c2:77:
71:8d:0a:49:10:0d:86:38:ab:6a:85:21:ec:db:bd:05:8b:e4:
2b:45:82:00:5f:32:e6:dc:1d:9f:e6:77:78:20:a1:da:09:b0:
30:d7:f3:a4:41:52:78:8b:08:b8:fb:7f:1f:21:2b:4a:dd:9a:
0e:09:43:16:3a:39:a9:a7:b3:de:2a:e3:7e:df:ac:8d:1c:fe:
a9:2f:ef:5f:a8:97:0e:ee:16:3e:53:64:b5:b7:08:2b:5b:ca:
e6:a9:50:17:85:30:10:84:b5:b0:b3:b0:97:91:b7:f2:a7:88:
3b:b9:5b:23:93:8d:4f:50:ee:e3:21:42:41:78:c6:57:29:df:
0b:ef:ec:a7:9c:f5:49:88:4e:2e:78:d5:00:52:3c:b5:d3:b1:
27:5a:70:03:53:f6:fb:50:02:34:2c:4e:46:2b:30:54:d3:7a:
ae:e9:76:3f:61:28:f7:5f:ab:4a:a0:01:32:13:db:ea:19:4f:
0d:46:15:f8:04:7a:67:63:6f:73:87:d3:32:24:8f:84:4d:15:
2f:62:d2:b1:df:0e:c9:05:c9:91:38:b9:ce:60:c9:b9:43:dc:
31:a2:73:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org