Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3363303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: TlQTRN1gjk0jxiMPxZWWcsqnLqzCsBMAZH8r0KMbBVo=
Subject key identifier: 81:CF:3F:D5:02:B9:76:CB:EA:E1:A7:26:43:E5:66:CB:A9:55:41:9C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6DFBDD4C217B19B17FAA19E3686B39A1DB34101B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:26 +0000
ROA not before: Mon 26 Sep 2022 10:55:26 +0000
ROA not after: Mon 25 Sep 2023 11:00:26 +0000
asID: 59282
IP address blocks: 2400:d680:3c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:fb:dd:4c:21:7b:19:b1:7f:aa:19:e3:68:6b:39:a1:db:34:10:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:26 2022 GMT
Not After : Sep 25 11:00:26 2023 GMT
Subject: CN=81CF3FD502B976CBEAE1A72643E566CBA955419C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0b:27:d9:ab:a7:b0:22:1c:41:c9:de:93:7e:
72:91:78:c0:07:e0:a6:ea:2f:c3:b3:d3:3e:b8:65:
cf:fe:e2:1a:a0:b6:26:44:ba:34:01:8e:77:7d:32:
e8:2b:f9:30:9d:1c:ca:a6:69:29:bf:78:72:a4:55:
09:c7:eb:de:63:be:49:fd:d6:14:ef:80:b2:c3:67:
83:4b:5e:f2:2b:16:d6:3f:d7:4c:0f:e1:16:23:cb:
d9:72:dc:c6:c6:85:36:89:51:99:69:c8:30:89:92:
32:ee:4b:4a:86:30:4a:98:93:90:c3:f7:0f:3e:ef:
70:bf:7a:aa:1e:c1:86:90:b4:2b:24:4f:05:ba:65:
3b:0e:a9:09:f1:6b:ff:22:1b:65:26:32:e5:15:21:
d6:28:bb:35:8e:f0:cf:e3:7c:3c:9a:17:a4:bc:43:
38:d3:8c:5d:b1:cc:bc:b3:b7:2b:16:09:ea:b2:42:
63:fb:30:68:76:c9:2f:f9:f2:ed:5d:42:5f:06:3c:
de:69:4c:d8:ea:b2:a3:34:35:d2:93:ed:c2:fe:90:
47:81:b9:2f:35:c9:19:e7:14:34:1b:78:79:0a:4c:
55:88:a6:62:c6:18:b6:1b:ff:a2:65:d6:eb:a7:cd:
c6:bc:d3:95:94:14:c4:d4:19:e9:b8:06:6c:d0:cf:
fb:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:CF:3F:D5:02:B9:76:CB:EA:E1:A7:26:43:E5:66:CB:A9:55:41:9C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3c0::/48
Signature Algorithm: sha256WithRSAEncryption
4f:3e:30:7c:f1:22:f9:ff:59:28:78:22:0a:90:f7:24:6c:4f:
f2:4b:4e:2c:67:6b:fe:9e:d6:56:b4:69:d7:4d:26:52:3f:30:
29:b3:c8:f7:b2:4b:98:ac:d4:ea:a8:15:84:2a:45:3d:81:bb:
62:ad:e5:bf:1b:a1:e9:17:f7:65:bc:8d:30:27:2e:a2:c4:b7:
07:77:3b:13:83:93:fe:6e:97:b2:12:fd:c1:b8:72:69:58:99:
85:79:2e:73:bb:5e:86:e3:32:9d:7f:f3:72:68:b9:82:c1:24:
36:49:6c:10:88:4d:32:3e:ed:6e:20:c2:b5:7f:2a:4e:5f:c2:
9f:4a:49:09:8e:5e:67:66:6f:09:7d:ac:5f:10:7a:ca:cf:20:
03:cd:dc:63:9e:bc:9c:7d:aa:75:af:cf:6e:f9:ca:d0:72:99:
c6:01:b8:22:b7:53:95:e7:d5:e4:0c:38:e2:2b:4f:f4:d8:c2:
4c:e7:ed:eb:7f:2e:59:3b:30:8b:2e:78:1d:e9:ff:18:52:67:
cf:2f:55:aa:d5:dc:9b:56:71:f4:b7:ce:f9:ba:cd:85:ea:4c:
6f:f6:33:d9:07:4f:3c:72:2b:4b:83:5a:70:87:fb:b9:9a:95:
01:32:26:68:ff:bd:4a:f0:06:78:b0:5e:e4:10:d8:56:b3:3d:
9d:f5:73:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org