Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3364623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: cusoF0b2RIHCvSmteeXGwzjntne64c/t3ipKh8Eti90=
Subject key identifier: B8:71:2E:ED:EA:9B:03:FB:E6:FB:14:6C:AF:72:A4:88:55:53:41:3F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 29FDFB430398A11591CA56BCA104C2524425B977
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:24 +0000
ROA not before: Mon 26 Sep 2022 10:55:24 +0000
ROA not after: Mon 25 Sep 2023 11:00:24 +0000
asID: 59282
IP address blocks: 2400:d680:3db::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:fd:fb:43:03:98:a1:15:91:ca:56:bc:a1:04:c2:52:44:25:b9:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:24 2022 GMT
Not After : Sep 25 11:00:24 2023 GMT
Subject: CN=B8712EEDEA9B03FBE6FB146CAF72A4885553413F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:36:ca:6c:1f:a5:de:81:90:c5:8f:e2:06:74:
bd:46:71:74:cf:2d:e0:0b:bf:f4:60:4b:e6:3f:df:
a7:ab:62:93:85:87:48:b7:6a:e2:dc:5f:01:d3:27:
e1:14:d5:b4:47:e4:e9:74:43:47:2f:7c:cd:ac:a8:
07:29:2c:96:35:b9:4f:21:b5:ea:7d:d7:32:e3:fd:
35:9c:c3:9f:b5:53:96:17:c8:8f:90:b5:90:3f:45:
50:a0:b0:5d:4e:4a:3c:60:57:23:40:5d:ac:2a:00:
fd:49:70:12:e3:4c:13:ed:1f:d5:a0:cf:7e:82:06:
bf:7f:bd:85:a4:ef:7c:b9:2c:f7:43:e0:cf:60:54:
78:bb:8e:6e:39:98:83:5b:c8:88:f3:47:c9:6f:08:
5e:e9:7a:39:8d:59:cd:42:7f:65:0d:81:0e:18:71:
f2:4a:08:73:c4:95:90:dd:53:34:fb:27:f2:ab:4b:
0f:19:61:c6:f8:a4:cb:6c:35:3b:ff:6a:03:f0:39:
ea:80:b6:cf:69:f1:1e:f6:b7:94:7a:84:ff:9c:03:
ae:2e:be:11:6a:92:3e:f6:09:63:c2:e0:9d:b2:a5:
b6:59:78:3e:eb:e7:e1:55:29:91:e2:5b:f2:d7:ef:
2c:82:1b:77:88:0a:0f:72:84:06:36:e7:03:db:01:
eb:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:71:2E:ED:EA:9B:03:FB:E6:FB:14:6C:AF:72:A4:88:55:53:41:3F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3db::/48
Signature Algorithm: sha256WithRSAEncryption
4c:f8:75:ab:50:97:a5:87:1f:e6:42:b2:be:aa:d1:29:07:96:
ff:ec:2d:fb:50:eb:35:28:60:18:8a:5c:b3:3c:eb:40:e3:0a:
50:6c:2e:e5:57:34:a1:fc:35:ec:f2:82:de:26:02:96:4d:54:
18:cc:83:4c:28:75:e9:e8:bb:01:0e:d6:98:4d:4f:46:e0:8c:
04:d9:38:f9:e5:97:08:12:b5:52:f5:15:2f:48:ce:7d:e4:46:
78:01:87:9d:36:07:2f:ca:1c:16:0b:67:42:7c:ac:7a:ce:9d:
0f:5c:a7:fa:d2:5d:8f:61:8a:bc:6b:09:40:b2:a8:a0:6e:d8:
e3:23:cb:4a:51:64:65:8e:b9:6c:f3:8d:4d:f0:50:ac:6e:34:
df:0c:b3:e3:86:a6:27:33:69:37:4d:b3:02:23:75:62:c9:24:
9c:56:8f:ba:9f:98:2f:5d:03:61:63:b0:06:35:8b:b3:91:08:
8c:61:1e:a9:52:e8:2f:b2:32:57:e4:c8:4f:92:ac:d6:cb:8f:
0d:11:0c:93:6f:ec:13:fd:b6:7f:d3:8e:1a:30:00:a7:26:f7:
27:c3:01:7d:94:cb:e5:6f:17:b3:b4:3e:86:7b:ec:57:d3:0b:
0b:cc:4e:d0:5e:77:ea:75:ef:10:8d:ea:f8:06:ff:f1:10:3a:
b4:43:3e:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org