Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3362373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 7byB4VpsXgBFmwODzH37zqz8Ktyyrp+jxIQ5oBWNLJI=
Subject key identifier: 25:31:C5:70:BE:EC:29:1C:3D:07:93:E6:16:B6:9A:44:81:5F:87:F8
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 41B7C54A9BAE0FBC4371A32A03A931CA5F798A7B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:49 +0000
ROA not before: Mon 26 Sep 2022 10:55:49 +0000
ROA not after: Mon 25 Sep 2023 11:00:49 +0000
asID: 59282
IP address blocks: 2400:d680:3b7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:b7:c5:4a:9b:ae:0f:bc:43:71:a3:2a:03:a9:31:ca:5f:79:8a:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:49 2022 GMT
Not After : Sep 25 11:00:49 2023 GMT
Subject: CN=2531C570BEEC291C3D0793E616B69A44815F87F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:61:b8:70:32:15:52:ad:de:a5:dd:9e:94:fe:
51:5a:52:01:46:98:45:de:41:6b:eb:e3:22:56:67:
b7:3d:ab:d0:7c:31:4c:81:c7:a7:f5:bb:52:95:65:
5c:c6:cb:15:59:1f:db:ad:ec:97:92:4c:0a:31:76:
d0:20:32:bf:a4:23:73:82:27:aa:a3:86:4b:d1:17:
6f:58:41:55:19:72:b6:26:ec:40:16:0a:ac:61:02:
48:3b:c0:08:06:ae:39:61:06:a9:4c:a5:3a:8b:c8:
81:9f:31:63:7d:7c:b9:4d:fd:3b:4c:e8:c7:af:2b:
58:53:e3:d8:c8:bd:f8:ef:e2:85:4a:28:28:bf:81:
08:51:f4:93:24:e2:e7:08:64:42:61:14:33:43:36:
7f:94:7f:dd:36:7b:0f:ea:54:3e:3d:84:9b:e3:3b:
55:23:e8:ba:1e:5b:ff:12:94:5d:ac:07:d3:f4:76:
88:a5:fa:e0:28:49:fd:6d:9d:4b:cf:62:0c:16:78:
e7:00:5b:3e:0a:b2:0e:80:ba:36:99:ef:93:7a:c0:
f7:5e:5e:1c:fb:11:56:a7:32:3d:3f:e8:d0:4b:2f:
d7:f4:22:35:c5:d0:ef:e6:55:78:2a:2f:55:1f:d6:
15:3b:32:74:b4:17:b9:78:b5:06:47:9a:0a:a4:39:
15:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:31:C5:70:BE:EC:29:1C:3D:07:93:E6:16:B6:9A:44:81:5F:87:F8
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3b7::/48
Signature Algorithm: sha256WithRSAEncryption
2e:77:e6:66:be:22:ba:ad:b6:d3:3f:fc:a9:d1:ab:1d:3d:6b:
e1:70:60:17:03:42:4b:b1:75:fb:0f:ff:29:6d:59:0e:17:29:
0d:4b:af:6e:8d:c5:aa:cb:fb:39:9b:a6:d2:48:75:99:ec:23:
6a:20:09:dd:48:a7:9c:9c:80:8d:74:07:20:d7:7e:3e:e0:d2:
2c:07:2d:58:96:5a:87:1e:39:5b:c2:4e:b5:11:8b:8e:e5:2b:
af:66:6d:26:cf:d5:51:0a:6d:3e:0f:51:0d:47:f3:39:80:15:
19:8d:0a:ab:60:4a:6f:5b:12:e8:a1:a6:80:41:d6:f7:43:90:
d7:6b:57:16:b6:e8:14:6f:38:71:79:f5:8a:a9:67:40:6e:dd:
1b:25:40:8e:ce:87:97:de:8e:ba:4a:98:b3:31:6b:85:30:17:
3f:bf:f1:5a:06:f3:64:bb:b8:1d:0c:8c:ee:45:c9:23:72:9b:
a0:16:87:36:77:3d:5f:6a:de:00:37:11:45:c7:c1:4c:ed:e8:
9a:05:74:88:b0:48:cc:4b:e4:e8:1b:16:55:6e:de:53:35:db:
52:9a:28:05:72:3a:d4:f5:81:64:d4:a8:0c:21:ff:fa:75:bc:
14:5d:49:a4:b6:8b:df:d7:7e:2f:17:b2:5c:11:3c:ce:a6:8f:
a7:00:aa:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org