Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3365353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: qQOwzTsKf7qevDwbfgU/2y4OFVrmpRGupX/cROdu7Ak=
Subject key identifier: 84:1B:7C:C4:79:40:AF:6F:AD:2F:B3:C9:48:F4:89:84:A7:6A:54:29
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: E5F1CD3F2B05AAEF8436FC2DC3E555EBC5DF01
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:31 +0000
ROA not before: Mon 26 Sep 2022 10:55:31 +0000
ROA not after: Mon 25 Sep 2023 11:00:31 +0000
asID: 59282
IP address blocks: 2400:d680:3e5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
e5:f1:cd:3f:2b:05:aa:ef:84:36:fc:2d:c3:e5:55:eb:c5:df:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:31 2022 GMT
Not After : Sep 25 11:00:31 2023 GMT
Subject: CN=841B7CC47940AF6FAD2FB3C948F48984A76A5429
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:7b:b3:dc:72:7c:73:06:55:ac:19:2e:56:b9:
a3:cb:4c:37:3a:4d:35:9e:31:11:49:b1:08:cb:91:
f2:78:61:cf:06:13:59:87:51:42:f4:fa:6a:5a:6b:
5b:8d:75:3b:ca:84:b2:99:0d:d6:07:8d:42:69:b2:
86:56:86:d4:8c:69:eb:40:6f:0d:27:78:eb:89:8c:
3f:c9:c1:25:46:98:90:2b:f6:cf:8c:de:0a:7e:30:
e5:b9:da:d9:02:80:c7:87:d5:28:d2:04:61:18:be:
34:4a:f9:15:c1:39:ee:af:85:42:1b:11:7f:e3:00:
1d:8f:f9:62:8c:19:79:0d:a4:77:67:52:4a:9b:2e:
d6:4d:af:c6:a5:b3:44:7d:3c:09:75:31:69:5f:82:
c7:cb:46:eb:68:8c:3b:06:b4:12:d3:c8:02:b4:11:
ca:14:67:23:2c:a5:ec:fd:68:ae:07:c5:85:4f:16:
a2:e6:aa:d2:29:6e:cd:4d:b6:34:e7:45:86:6c:b8:
8d:36:e0:e9:c8:15:8f:b9:52:2c:92:de:30:88:6f:
84:1a:97:e2:61:e9:e9:ba:8f:94:94:b1:c7:d9:be:
71:c0:59:a6:b6:3c:f1:7b:17:1b:dd:1b:c5:a4:28:
31:af:20:4f:1b:0c:a4:45:59:4e:e6:e3:e1:72:40:
02:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:1B:7C:C4:79:40:AF:6F:AD:2F:B3:C9:48:F4:89:84:A7:6A:54:29
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3e5::/48
Signature Algorithm: sha256WithRSAEncryption
03:72:96:d4:a7:b0:f7:b1:3d:6f:39:a2:90:6b:96:cf:f3:fb:
b3:08:52:f2:d8:8f:b2:b3:fe:52:79:20:fa:c0:a7:06:84:fa:
8a:fd:1f:22:de:73:8a:b8:41:06:9b:12:8e:ee:c3:4e:cb:99:
92:63:6d:2c:b2:f7:70:2f:b3:f0:ab:6a:3e:f7:fb:d2:93:3b:
40:7a:7b:f4:bf:aa:fd:d2:51:e1:19:8a:23:24:e4:7a:9c:b7:
0e:6f:df:2c:20:e4:23:11:e6:e3:1c:13:bf:d3:84:88:7d:9f:
aa:81:09:8c:fe:cb:d9:f7:c9:c9:76:e3:e5:c4:11:6b:9a:6a:
eb:2a:69:12:66:dd:2f:50:d9:3d:c5:ea:68:bf:19:a9:eb:b9:
cc:95:21:a4:b5:85:5d:88:91:f0:aa:7b:02:63:06:5a:a0:f0:
ec:33:cc:f3:7c:bd:cb:29:86:68:d8:f5:d7:73:09:fa:5b:26:
f2:20:6b:b6:5f:75:67:14:9c:34:ab:5b:9d:35:d2:b1:5e:45:
3c:66:6b:19:8a:e2:3d:57:d4:29:77:94:e1:c5:63:3d:4f:b9:
e7:b2:89:1b:58:68:06:ba:b9:66:fc:37:b0:4c:7c:34:fe:45:
3a:00:25:2b:c7:9b:fd:c2:d4:9b:bd:b4:0a:59:b8:7f:20:ea:
86:6a:5d:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org