Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a33653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: i5/4t9kY8kg8o9vzerqbFy170BsMco7SLSrxpo3B0bU=
Subject key identifier: 38:D8:1F:A0:27:A3:D5:47:22:FC:A5:37:F2:B0:15:1C:AB:81:07:84
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 240AFFBD039B648170B82A9159A12CD72E5FB254
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:22 +0000
ROA not before: Mon 26 Sep 2022 07:57:22 +0000
ROA not after: Mon 25 Sep 2023 08:02:22 +0000
asID: 59282
IP address blocks: 2400:d680:3e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:0a:ff:bd:03:9b:64:81:70:b8:2a:91:59:a1:2c:d7:2e:5f:b2:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:22 2022 GMT
Not After : Sep 25 08:02:22 2023 GMT
Subject: CN=38D81FA027A3D54722FCA537F2B0151CAB810784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:15:fb:c3:3c:85:d0:04:8a:4a:62:a6:d7:c8:
60:85:4d:ff:45:01:bd:bc:02:07:79:a5:29:78:cb:
57:75:71:dc:38:04:be:42:1e:cf:36:ab:f8:f7:58:
13:7a:9b:69:df:1f:15:b0:1e:bf:1b:9c:e9:d3:d6:
fe:0c:9a:52:2e:87:f8:af:be:bd:06:11:f9:75:f3:
d4:fe:12:64:b2:f3:bd:90:46:8c:06:88:3c:1f:ee:
21:6f:f4:da:c5:84:ba:4e:47:45:fe:04:8f:a8:e1:
92:14:40:57:59:2d:73:7d:77:78:ae:0c:50:18:7b:
47:a8:47:4e:e7:47:d2:fc:cd:b6:be:cf:df:88:55:
f2:d8:12:8a:16:6f:32:f6:dc:9d:bc:c5:a9:e2:3b:
a9:72:20:af:51:a8:b9:04:f6:02:08:2a:7d:1b:7a:
84:d1:32:88:c0:e2:9d:07:68:7f:e6:59:3a:e8:b3:
2d:b3:af:f2:42:d9:c7:8e:08:05:71:5f:d0:91:00:
b9:ee:6c:92:c7:e1:be:4f:f0:df:6d:d1:ac:9f:82:
bf:f6:a7:c6:94:5a:14:f7:b9:6b:8a:ec:bd:b9:d0:
26:27:95:60:8e:2a:6a:92:ae:a2:80:a9:93:9f:0b:
a4:94:6d:93:d4:f9:6e:ae:fa:47:5c:6e:59:3a:dd:
67:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:D8:1F:A0:27:A3:D5:47:22:FC:A5:37:F2:B0:15:1C:AB:81:07:84
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3e::/48
Signature Algorithm: sha256WithRSAEncryption
1f:e0:1f:5a:2c:f8:1a:76:d2:79:ce:9b:7b:39:5a:60:6a:51:
85:28:ae:87:58:ca:e5:9a:24:5a:d7:ab:16:f6:bc:36:9f:28:
47:27:a4:82:f6:bd:58:f0:35:11:e9:d5:2a:c1:9e:67:53:d0:
52:35:f4:5b:52:3b:e5:05:65:6d:e8:99:86:8c:79:30:d4:d0:
55:76:2b:2d:23:3a:52:0e:5a:ff:d0:df:a8:d2:25:b9:8a:d3:
c5:3c:cc:d3:9d:80:6c:f7:f6:d0:95:65:84:a3:cc:8a:e5:72:
02:b1:8c:a3:cd:3a:01:0b:cd:37:ef:86:86:81:e7:21:18:15:
a5:c0:da:ff:0a:7d:a1:02:62:05:f7:2f:8d:26:e9:64:d0:40:
f1:1b:0a:54:78:98:13:79:48:82:72:74:75:ab:76:cd:39:6d:
98:47:31:12:39:dc:56:7c:61:79:12:7e:a6:85:de:76:3d:11:
96:ad:a8:f1:80:65:3b:1b:97:a9:83:71:90:0c:ce:a6:06:9f:
8c:b2:00:1c:ad:40:4b:8d:fc:e7:90:de:2b:b3:94:da:30:e5:
53:01:95:54:7d:68:1a:9d:de:b8:a8:69:60:c4:87:b5:d5:2e:
2c:aa:10:d7:6a:23:75:31:7f:55:a4:5a:2b:9d:59:ab:e8:9e:
14:05:8c:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org