Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3366393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: gvFLMr4F8Gc7z6Sy5pGsFWKg43Oj+mLQs2QVIcwrwRc=
Subject key identifier: 9D:5B:C5:2E:2B:FF:1D:35:C4:39:7D:F2:FE:33:C6:32:F7:70:6B:7D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 54C6890D02CC461F4E551B8EEDD135C75DA669CF
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:39 +0000
ROA not before: Mon 26 Sep 2022 10:55:39 +0000
ROA not after: Mon 25 Sep 2023 11:00:39 +0000
asID: 59282
IP address blocks: 2400:d680:3f9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:c6:89:0d:02:cc:46:1f:4e:55:1b:8e:ed:d1:35:c7:5d:a6:69:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:39 2022 GMT
Not After : Sep 25 11:00:39 2023 GMT
Subject: CN=9D5BC52E2BFF1D35C4397DF2FE33C632F7706B7D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:04:60:0d:ee:f6:b6:b9:09:33:80:8d:d3:1e:
a6:99:6c:58:21:1f:9d:5f:e6:82:f3:8a:86:e5:3f:
b0:23:98:16:53:7e:a4:2d:8a:a0:02:d3:c6:44:76:
9c:d0:fe:bd:91:fe:c5:74:5b:fe:34:14:93:ac:21:
a2:58:55:10:59:a0:81:f5:8d:4a:15:07:59:5e:e0:
71:91:26:c8:e0:e2:5a:56:76:4e:41:89:10:3c:5e:
f5:ff:31:f5:ff:72:06:12:e3:2c:37:fe:af:b9:c1:
f8:a4:d6:2a:83:ea:a9:d0:4c:a8:c9:1d:0f:b6:5b:
f8:61:d7:64:92:d8:86:27:16:fc:8f:44:ce:cb:14:
5f:cc:cf:2f:b8:83:8c:b6:28:5d:69:c4:ed:92:36:
45:17:97:33:88:4f:9f:fd:e9:af:b9:9d:76:4b:3b:
05:96:3e:ac:71:b6:42:76:a3:74:60:10:4d:f8:34:
74:08:17:73:e2:a7:c1:f1:45:7b:8c:26:26:b8:79:
fc:e5:7a:d3:05:91:62:dd:7a:f0:59:0a:fb:e3:9a:
39:df:12:9c:ba:55:c3:51:b1:a0:3b:c7:87:b8:77:
53:96:85:88:12:71:e1:11:a3:8d:ba:0e:52:dc:75:
3e:63:11:c3:2e:c8:bc:07:53:b6:51:4e:00:85:22:
b0:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:5B:C5:2E:2B:FF:1D:35:C4:39:7D:F2:FE:33:C6:32:F7:70:6B:7D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3f9::/48
Signature Algorithm: sha256WithRSAEncryption
0d:b5:78:4a:01:8f:b7:d5:ee:41:33:c6:d3:82:dd:88:ae:b5:
cd:5b:cd:bc:00:b8:16:96:3d:e7:dd:50:d5:56:85:ca:91:40:
3c:fc:2d:e8:e7:d0:27:b5:fb:cb:fe:2e:c1:b7:3d:8e:69:61:
4d:6a:69:6c:6b:d3:e8:65:54:6e:af:08:7a:c2:9f:fc:2f:66:
4a:22:b5:0c:48:9d:f5:60:49:e7:f1:9d:35:57:93:9c:5e:28:
8f:51:6d:d7:0f:84:a5:a3:6e:10:40:94:af:16:2b:fc:40:eb:
c5:fc:19:30:cf:d0:ec:59:db:4f:8a:35:4a:76:d0:16:57:60:
38:4c:f8:89:46:67:23:d2:4d:c7:a5:90:3e:37:92:27:ed:ef:
67:e8:8d:9a:66:2e:91:72:65:97:51:27:0b:12:65:44:62:4f:
f2:c2:22:b3:d5:1d:17:84:53:99:60:6b:63:57:fa:ee:d1:28:
ed:1d:e4:71:e0:51:fa:7b:ea:ba:a9:fd:1e:5e:59:2d:a3:ea:
d3:ac:b7:8f:dc:7f:df:c6:8c:90:8d:f9:0b:31:10:ed:dd:e7:
eb:e3:05:e2:1e:f2:7b:fb:25:b1:d3:e6:c6:5b:e6:39:85:93:
af:57:8d:14:d7:df:68:8b:a1:64:9c:12:03:90:00:70:52:55:
38:4b:8c:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org