Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3363663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: zFgHejBYS49aMxCLwjuqTZH0fu0iiHwBKUVLJ6mekv8=
Subject key identifier: 77:D5:83:60:BE:F7:06:11:E3:BA:C9:B6:0D:C9:F1:9E:3B:6B:10:05
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6312DF7F7E02731DF1317093B7FBD485F4E13692
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:27 +0000
ROA not before: Mon 26 Sep 2022 10:55:27 +0000
ROA not after: Mon 25 Sep 2023 11:00:27 +0000
asID: 59282
IP address blocks: 2400:d680:3cf::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:12:df:7f:7e:02:73:1d:f1:31:70:93:b7:fb:d4:85:f4:e1:36:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:27 2022 GMT
Not After : Sep 25 11:00:27 2023 GMT
Subject: CN=77D58360BEF70611E3BAC9B60DC9F19E3B6B1005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:68:ad:00:5c:95:db:79:da:a8:63:41:75:b1:
4b:25:1e:f4:7c:6a:0c:32:74:f1:41:13:b6:ff:9e:
b9:e6:c5:dc:1f:75:27:c4:55:a6:ce:3d:e7:61:80:
4a:8b:6b:e4:59:b6:d9:87:75:a2:5e:be:0e:72:f8:
70:81:34:5b:f8:5e:98:73:9d:98:44:7d:8a:97:7b:
5e:44:bc:29:c8:2c:78:26:a6:09:68:2f:01:ba:20:
af:99:d4:7d:02:2e:80:f3:ff:2a:63:78:19:a5:11:
78:d2:b5:c0:34:d0:d1:9e:0a:75:f5:ce:63:bf:a5:
39:1b:ae:af:7c:1b:34:d6:3b:46:7b:e3:29:f9:37:
cf:18:c2:c5:0b:a0:5b:d2:1f:85:26:a8:65:97:a8:
80:b5:a4:dc:bf:53:5f:4c:27:14:d9:9c:2d:58:12:
1c:fb:c8:b4:7e:59:c4:3d:2b:fc:dd:5b:f3:4d:9c:
55:e4:87:c7:78:e9:b7:4d:a7:b6:17:05:27:b8:aa:
a6:68:8e:54:f1:ff:a1:f3:5b:47:f8:66:37:0d:4e:
a1:a4:85:5f:03:ff:86:16:38:b1:f1:67:1f:8a:11:
f0:39:4f:a6:a1:36:65:ad:3d:a9:76:58:51:79:e4:
a8:22:76:69:93:d9:3e:fb:4f:cd:38:e7:7c:cc:26:
b2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:D5:83:60:BE:F7:06:11:E3:BA:C9:B6:0D:C9:F1:9E:3B:6B:10:05
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3cf::/48
Signature Algorithm: sha256WithRSAEncryption
cd:2a:cf:56:86:57:89:25:bf:c6:ba:8f:ca:86:a5:04:ac:41:
ea:cc:c8:42:91:70:1e:bc:ab:c5:e7:2e:34:c7:18:c4:71:50:
4d:bb:33:40:e9:5a:bf:4e:21:a4:30:80:1a:b4:41:b8:80:cf:
1a:78:fa:b6:2e:cf:e6:f8:e0:14:72:76:bb:de:90:79:4b:8b:
48:73:cb:45:db:57:96:fc:17:0f:3e:da:77:00:1e:15:6a:f1:
0d:4e:a5:67:de:60:e8:1b:32:a4:02:2a:4f:c5:a6:67:02:ef:
b6:56:6b:df:7e:13:78:79:4f:33:1b:69:4c:ba:94:53:03:71:
d1:44:82:b3:9c:b9:41:3a:c9:17:0f:6b:29:5f:90:06:23:85:
37:54:80:b6:d9:cf:56:c9:bf:83:d4:a7:84:7d:90:ec:1d:48:
18:d2:53:99:fc:06:02:f2:80:5d:10:b2:e5:72:e8:7a:37:b2:
87:29:d6:33:a1:3d:3f:d1:0e:ab:51:b2:8b:a0:87:cd:e1:a4:
96:43:00:5d:d6:18:78:cc:38:fb:cb:55:23:98:dd:b4:92:13:
04:63:32:7a:95:d4:88:40:79:28:ef:78:37:11:0c:96:34:20:
87:e0:84:12:4b:b9:d4:a5:eb:f5:f4:5d:2b:58:32:68:61:01:
81:65:aa:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org