Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3361663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: cv0wYhtR2HbOhC07rnpXfpxky9wMh34ivk3Sb/mFtG4=
Subject key identifier: 58:67:BA:09:BC:74:D9:3C:77:B3:56:E3:FB:C8:C1:72:3D:27:A5:E6
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 15252CB989C37B7022CD6D43DA8957FAA3201CFA
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:26 +0000
ROA not before: Mon 26 Sep 2022 10:55:26 +0000
ROA not after: Mon 25 Sep 2023 11:00:26 +0000
asID: 59282
IP address blocks: 2400:d680:3af::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:25:2c:b9:89:c3:7b:70:22:cd:6d:43:da:89:57:fa:a3:20:1c:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:26 2022 GMT
Not After : Sep 25 11:00:26 2023 GMT
Subject: CN=5867BA09BC74D93C77B356E3FBC8C1723D27A5E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:cc:3f:60:1a:0e:93:d1:8f:9a:12:9d:5b:fe:
f3:31:ff:e1:03:d4:6f:1a:56:5d:61:95:c2:5a:0b:
6b:64:f4:06:eb:ca:26:58:55:0d:07:4a:df:ec:4a:
b9:04:a8:0d:d4:9f:c3:ff:70:c2:68:15:20:3f:81:
2e:9c:8d:56:ce:84:3e:12:63:11:56:6f:e5:18:51:
12:be:8a:b7:e7:c5:ea:2a:dc:3b:9e:6f:5a:f4:7e:
92:f3:6d:05:13:09:a6:d2:34:5f:d9:16:a5:f9:92:
02:7a:b6:b8:2f:58:84:99:2e:99:8f:a8:f7:b8:e0:
a1:b7:09:96:5a:fc:d8:73:91:7a:ee:7e:43:82:24:
f5:02:5e:74:09:83:cb:16:40:95:55:52:df:3a:ca:
48:f4:0a:5a:f8:55:3e:09:02:36:21:e4:4f:a3:bf:
83:da:43:04:5e:53:3a:b7:08:40:b8:3c:1e:ad:17:
36:17:03:73:5d:d8:92:5e:f0:53:82:03:66:71:92:
e8:65:d5:3b:1a:7a:e3:10:5c:04:23:43:cd:85:40:
71:68:dc:59:89:d4:96:15:66:f1:ca:d2:38:db:9c:
81:bf:e9:cd:6d:2d:05:20:9b:66:33:26:32:9b:78:
f6:c1:dc:b3:b9:6d:ce:bc:6c:9e:b0:06:0f:27:79:
8e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:67:BA:09:BC:74:D9:3C:77:B3:56:E3:FB:C8:C1:72:3D:27:A5:E6
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3af::/48
Signature Algorithm: sha256WithRSAEncryption
18:b9:b8:0b:ae:10:d9:86:eb:8d:73:4a:6b:69:04:75:5f:8b:
97:b0:8e:fa:e9:ea:9e:3f:1e:f3:c5:cc:fa:0b:b7:ce:65:57:
74:0c:db:ce:7a:32:d8:e7:b5:65:9f:75:46:22:6a:ff:b5:d9:
d4:26:14:5c:85:66:c4:db:89:0b:d5:d1:ed:71:57:49:7f:05:
66:d5:1a:a3:17:ba:25:ff:61:73:94:71:29:ad:0a:ec:5b:d6:
be:ad:c1:4a:17:8f:f4:0e:c7:00:79:22:e9:73:ef:fc:21:b6:
eb:27:bb:e9:8d:4d:5e:b8:2c:5f:a7:3f:ef:c9:38:bf:4c:81:
38:22:38:4d:8f:6a:41:39:33:2b:d3:35:c2:4a:75:08:96:b5:
b6:a9:33:55:79:ef:e3:9c:87:eb:ec:a3:1b:c4:e6:8f:29:cc:
3f:d0:63:2d:35:0a:93:9d:81:4d:9b:35:51:7b:aa:75:5d:34:
31:7a:75:dd:8b:32:82:d7:98:36:6e:b7:a4:57:13:78:7d:fc:
2f:cb:dd:2c:9a:26:2b:38:2a:eb:88:f3:84:f1:5f:8e:18:d2:
8b:b9:03:44:d5:de:92:87:98:9c:eb:db:96:9e:40:5a:2b:4f:
36:30:27:cb:9d:31:7d:8f:37:d7:9a:69:80:0d:bc:67:bc:87:
a4:ee:25:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org