Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3365643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: p1T5qdK0BJ06Z40F6biw0zK82aiUn1a5MfFD9E2/G8M=
Subject key identifier: 22:30:74:A3:0C:51:65:7F:C3:42:48:98:2B:B2:61:6C:C7:EE:7B:F3
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 01903E5936F1FC198101E96B525E90687F2D6327
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:51 +0000
ROA not before: Mon 26 Sep 2022 10:55:51 +0000
ROA not after: Mon 25 Sep 2023 11:00:51 +0000
asID: 59282
IP address blocks: 2400:d680:3ed::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:3e:59:36:f1:fc:19:81:01:e9:6b:52:5e:90:68:7f:2d:63:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:51 2022 GMT
Not After : Sep 25 11:00:51 2023 GMT
Subject: CN=223074A30C51657FC34248982BB2616CC7EE7BF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:4e:c2:53:f4:2d:05:3c:a9:50:24:b2:71:fc:
50:5a:86:b8:da:99:39:ab:06:89:55:56:44:51:e8:
d9:4b:db:ab:6b:dc:3c:0c:6c:6b:e2:e2:91:95:72:
e2:ba:1c:0f:9d:1e:c1:50:37:bf:4e:9e:be:9c:9b:
f9:9c:70:1b:a1:c5:de:58:2a:21:c5:47:bf:96:4b:
63:25:4b:7d:eb:6e:b8:83:40:04:83:dc:cd:27:64:
36:84:f0:10:85:45:89:7c:b3:f5:78:fc:0c:cc:17:
c9:31:38:2d:f3:46:b5:c9:c9:91:0e:65:3b:08:7d:
e5:e9:72:4e:52:5d:e7:78:bb:01:df:e3:db:1d:10:
a0:a8:57:ba:56:b5:4d:b0:9c:39:2d:3f:3d:00:26:
95:20:fc:6d:d9:93:59:38:ac:99:2f:21:2f:56:f0:
e7:f4:36:c1:43:0e:3a:8b:02:31:00:a8:c4:03:ac:
08:55:1b:be:b8:0a:e8:29:cf:87:21:57:1c:9e:17:
14:a1:34:3c:df:4b:72:b1:75:ed:78:59:f5:3d:1a:
51:04:ff:7c:3d:23:40:64:c4:4a:9d:02:d4:32:67:
6e:c7:01:88:aa:9b:18:ec:a0:ba:c7:8b:94:ea:9e:
a4:15:2e:30:81:90:d3:93:e9:12:84:68:43:0e:d5:
a1:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:30:74:A3:0C:51:65:7F:C3:42:48:98:2B:B2:61:6C:C7:EE:7B:F3
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3ed::/48
Signature Algorithm: sha256WithRSAEncryption
cd:1a:8c:4b:ae:12:60:b3:76:9c:49:a8:47:ff:42:ce:f9:89:
48:54:4f:bf:71:d9:92:74:fe:3e:23:a9:fc:8d:4c:1f:26:20:
15:26:2d:3e:2f:52:7b:b7:e1:7c:3a:59:3a:e0:e0:a2:ae:ca:
24:c5:af:83:42:12:da:99:3a:95:b7:f8:f0:f1:04:de:e0:d0:
64:4b:13:2f:fd:83:f7:86:4a:6b:ee:ed:47:87:43:8c:68:35:
a7:77:77:b0:08:d7:ba:3c:65:e1:43:e4:47:ed:0b:1e:37:c1:
1c:f4:b7:2d:98:3f:ae:fc:fb:93:80:68:8a:0e:a2:94:27:0c:
6e:4d:97:a2:31:86:4f:eb:49:d5:5d:ec:9c:a0:3e:b7:52:bb:
42:21:25:01:09:ca:86:c1:50:51:ca:c3:7f:f0:aa:ec:af:52:
6e:20:fe:71:11:6a:b2:e1:29:4c:a5:be:cd:f8:57:37:76:d5:
d6:e5:7b:83:01:ba:d4:7d:35:8c:f0:7d:b5:70:a7:46:84:ab:
13:13:0e:29:7d:d3:8d:15:d5:b6:da:0f:e1:56:71:c2:1c:97:
0c:9c:ff:47:93:7a:06:03:b2:49:cf:d2:7b:06:a9:77:43:5d:
18:7f:2b:36:f0:f9:b3:2f:e3:97:49:df:80:c2:dc:51:0b:e9:
09:dd:81:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org