Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3362333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: KbyKyNGZI5ux4A4szTtoY2gIHnx17loo4FQ2yXi4Gkg=
Subject key identifier: 7C:D4:68:30:F2:10:5F:74:58:8B:81:8B:5D:02:87:F7:92:91:C9:52
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 25E62E48770B75BF8D46271CD28AD563EE0D2E33
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:32 +0000
ROA not before: Mon 26 Sep 2022 10:55:32 +0000
ROA not after: Mon 25 Sep 2023 11:00:32 +0000
asID: 59282
IP address blocks: 2400:d680:3b3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:e6:2e:48:77:0b:75:bf:8d:46:27:1c:d2:8a:d5:63:ee:0d:2e:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:32 2022 GMT
Not After : Sep 25 11:00:32 2023 GMT
Subject: CN=7CD46830F2105F74588B818B5D0287F79291C952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c9:9c:e9:c7:23:1a:b7:5a:9a:42:71:11:68:
96:f5:e0:5d:d6:f8:d5:4b:98:d9:e4:8d:15:2b:7e:
ba:dd:70:58:0c:b2:5d:59:c4:ed:57:86:ae:f0:fe:
af:bb:2e:34:d8:91:8e:23:47:a9:6b:6b:49:a5:b6:
8f:4f:b5:33:0a:ab:5e:0e:ca:53:46:91:95:c4:48:
36:34:45:e0:c4:0a:2c:d2:3c:5b:25:ef:8b:42:7a:
88:d1:fa:2d:6d:22:a7:58:b6:20:69:54:0c:a1:5a:
e0:e1:5f:e4:ba:fa:56:76:50:c3:0e:b7:8e:d8:d2:
c2:3d:c8:52:65:f0:e0:42:87:74:be:22:92:88:d7:
5d:8d:f4:01:d9:64:f3:c5:e6:6b:bc:58:8c:63:30:
58:f9:d7:6d:9b:7d:b0:f8:23:51:e3:80:a5:97:32:
30:04:0b:c1:fb:e4:bb:e1:fd:16:4e:d8:47:12:52:
a4:78:9d:d4:05:ed:a3:62:d1:d8:3e:04:64:6a:ca:
f6:62:0a:b9:1a:37:f2:23:84:37:e8:25:b6:4d:35:
e4:59:43:b2:9a:d7:3a:ee:06:82:13:94:97:aa:e2:
d1:fe:f1:b8:fc:21:b8:ed:8b:7f:d9:07:c1:9e:41:
e2:55:73:aa:d1:23:d3:01:46:de:8a:bc:a7:65:bf:
be:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:D4:68:30:F2:10:5F:74:58:8B:81:8B:5D:02:87:F7:92:91:C9:52
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3b3::/48
Signature Algorithm: sha256WithRSAEncryption
a1:a9:ec:a3:68:b8:cb:97:63:99:e1:0a:3d:1f:83:20:71:af:
9d:3c:a3:ad:00:c0:02:c3:01:ea:ca:84:a0:19:e4:15:79:18:
44:89:95:b9:1f:f5:46:44:94:14:67:f9:a1:1b:8c:e4:e8:ad:
74:3f:ed:6a:60:1a:86:ba:80:61:fe:65:82:ad:17:62:8d:73:
a3:f6:1c:5a:ec:55:a5:bf:f3:65:a9:c3:a4:8c:48:f6:ea:2a:
92:f9:fe:3e:9f:2f:39:94:3b:91:f7:4d:be:61:0b:a8:82:e9:
ab:49:1a:22:97:f4:42:aa:4e:51:bc:8d:43:20:c8:cb:1d:8b:
95:32:87:f7:34:0d:a5:35:a7:44:f3:d3:14:98:80:5f:81:7b:
24:b1:d6:42:70:c5:8b:5d:3f:c3:66:0b:a1:72:56:4c:da:e7:
13:81:6e:b2:5f:d7:60:82:20:55:35:a2:20:36:bf:9b:1d:96:
91:24:19:61:c4:b8:b0:6e:09:13:4f:f4:09:02:da:d6:36:ac:
78:f0:bd:ce:f5:4a:48:47:c3:e3:58:a4:47:8a:fd:11:db:e2:
56:72:a0:1f:60:ef:13:25:2d:17:3a:14:1b:74:03:48:95:34:
e2:d7:e6:68:e4:8d:50:cb:d7:35:5e:f6:9f:15:49:c0:5d:4a:
d6:ee:95:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org