Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3366323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: hndKM4YJ5cdDsDMC64H62etfVq1Tox86AMGHwe3dFEY=
Subject key identifier: 68:49:2A:34:F0:11:8C:88:E9:E7:90:D3:6D:8A:24:31:3B:C3:ED:3D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1486BB18B0A7DEDF8AA68700D2B294644E544F2D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:29 +0000
ROA not before: Mon 26 Sep 2022 10:55:29 +0000
ROA not after: Mon 25 Sep 2023 11:00:29 +0000
asID: 59282
IP address blocks: 2400:d680:3f2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:86:bb:18:b0:a7:de:df:8a:a6:87:00:d2:b2:94:64:4e:54:4f:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:29 2022 GMT
Not After : Sep 25 11:00:29 2023 GMT
Subject: CN=68492A34F0118C88E9E790D36D8A24313BC3ED3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:81:b5:21:97:b1:42:0e:a7:1c:4c:9a:c4:8c:
b9:09:78:7e:f7:f9:2f:28:02:f8:12:8b:f0:c2:87:
b5:7b:98:60:6c:2e:93:45:36:ce:26:b6:4b:94:ad:
b7:4a:9c:e1:d5:1b:99:6b:c3:45:9e:d1:76:47:6a:
46:33:b6:1e:69:0d:be:af:46:6a:2f:dc:76:eb:10:
4b:1e:39:c8:e3:33:90:0b:1e:3d:c0:15:ff:93:ac:
fb:07:96:2b:c6:2b:d8:bf:d6:9b:40:01:ac:7e:34:
0b:ed:6f:11:ba:58:f0:5d:d8:7f:c3:ee:6c:0f:a5:
c6:e6:bc:c3:a6:13:e6:e7:51:89:af:0e:f0:7b:3b:
3c:40:88:b2:2d:10:30:93:46:5b:70:c0:ab:74:af:
fe:08:aa:a5:12:0a:fd:cd:1c:5a:9a:28:c7:3e:a9:
89:34:b4:f7:80:04:52:ed:e6:b6:1c:aa:08:c7:e8:
56:12:5a:74:89:7b:e8:39:70:14:5d:91:05:6d:67:
92:24:0b:58:ff:2f:23:7e:64:6c:42:23:84:51:53:
90:f4:60:6b:ec:ad:c3:c5:1f:af:5a:0a:e5:bc:18:
7c:6a:f4:55:08:a8:64:db:d8:f0:71:70:13:c4:49:
a5:e2:6e:0e:19:04:b1:14:8e:51:4d:74:ee:e1:ba:
ed:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:49:2A:34:F0:11:8C:88:E9:E7:90:D3:6D:8A:24:31:3B:C3:ED:3D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3f2::/48
Signature Algorithm: sha256WithRSAEncryption
c6:17:b4:d3:e2:5d:42:08:77:c2:77:f7:f2:c7:26:f4:30:76:
19:52:f3:7b:1b:0f:74:0f:8f:81:08:aa:89:bd:e8:bd:b6:70:
10:52:a8:f5:71:08:10:5b:06:72:8b:dc:43:e1:93:b6:24:f7:
4e:4b:48:04:cc:49:33:41:72:80:dc:07:75:f4:38:48:99:7d:
b1:6d:d2:0a:73:c1:48:21:d5:e4:43:7d:d3:f7:e9:38:80:c4:
0e:19:b8:5a:98:f7:8c:f8:ee:a5:76:96:2a:94:57:14:d4:89:
2e:63:29:6b:14:ee:ec:36:d3:49:1d:26:45:9e:75:68:e4:92:
37:b9:36:1c:19:b7:50:91:89:56:9d:01:b3:8b:59:fe:29:0d:
b4:77:2a:6f:e6:f9:d5:d9:0b:1e:02:d0:45:48:37:60:53:f8:
1a:5b:a8:68:5e:34:68:37:61:0b:3d:46:99:ea:72:2a:bd:94:
9b:c6:56:a4:7a:c2:a0:0f:6c:11:a6:c5:05:87:f7:22:31:dd:
d0:0a:61:c9:5b:cc:74:79:7f:be:92:7f:a0:b3:9d:47:fe:37:
a8:99:cb:b9:c6:12:87:e0:3a:b3:16:54:9b:9a:a4:cd:79:51:
2b:89:96:19:87:b1:3d:8c:53:00:e7:43:c2:b9:b0:28:e3:b4:
e1:88:79:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org