Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3366623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: kxxTQuFuZS5+ohlqKsNk1Oww0phRYSYGb13juJesHao=
Subject key identifier: 49:D6:CE:D9:B3:CF:92:C9:2E:BE:31:0B:7F:D3:8F:B9:BE:E3:42:EC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 57172F9E68F20F4083ED77DDB4598C0E26ECA1BC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:50 +0000
ROA not before: Mon 26 Sep 2022 10:55:50 +0000
ROA not after: Mon 25 Sep 2023 11:00:50 +0000
asID: 59282
IP address blocks: 2400:d680:3fb::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:17:2f:9e:68:f2:0f:40:83:ed:77:dd:b4:59:8c:0e:26:ec:a1:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:50 2022 GMT
Not After : Sep 25 11:00:50 2023 GMT
Subject: CN=49D6CED9B3CF92C92EBE310B7FD38FB9BEE342EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:7a:2c:5a:75:d7:af:5a:25:60:ef:28:32:31:
41:f4:a1:07:0c:6d:22:a6:ce:e5:48:c5:f4:4d:2b:
df:41:11:36:9f:0c:11:66:9c:22:83:b3:d6:a5:ac:
c7:11:cb:32:03:92:57:11:0b:78:6a:e3:e1:c4:67:
9a:ed:ca:7f:f4:e3:e2:47:94:05:82:3a:5f:c1:00:
03:7f:ad:98:70:ff:1e:23:40:9f:cb:e9:51:de:22:
ee:7d:5f:1a:39:5c:0b:ec:d5:b4:bb:34:87:61:c9:
8b:7a:a2:a3:f2:35:32:93:4b:4b:ed:61:98:9b:d6:
65:22:6a:9d:56:7e:91:16:7c:8a:18:c8:bb:ef:b7:
cf:76:a2:5d:2f:17:6e:05:5c:85:20:83:fe:56:94:
f9:c9:71:e5:85:5c:15:87:d4:73:f2:cd:6f:e2:7e:
c2:dc:e2:a0:6f:97:8b:30:16:e3:50:55:91:a3:25:
ba:08:e0:27:b9:d4:50:6c:2e:2c:98:cd:46:f2:8e:
41:6d:0b:e5:cc:d8:6f:3b:2f:35:d5:db:1a:8c:e6:
26:47:44:71:e5:f4:33:8c:b5:e1:bf:39:8e:11:d8:
de:a5:f2:50:15:f7:05:57:10:ad:00:a2:ef:f3:9d:
d1:0a:04:44:1e:95:c8:61:70:b2:b1:8a:99:e7:7a:
76:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:D6:CE:D9:B3:CF:92:C9:2E:BE:31:0B:7F:D3:8F:B9:BE:E3:42:EC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3fb::/48
Signature Algorithm: sha256WithRSAEncryption
32:a0:21:af:50:37:ee:56:42:43:a1:45:99:12:f2:90:e4:60:
5a:a7:57:1b:6c:0d:4a:e1:b9:06:11:e6:36:7d:e4:58:30:4b:
1f:85:c2:06:c2:0c:5b:87:0c:de:25:dc:60:bd:35:65:a7:7e:
b6:a5:cd:24:c3:df:2a:88:75:ae:32:b5:a9:57:41:33:ed:bf:
b4:e2:20:fa:d4:60:e5:4d:e8:16:70:78:d9:7a:27:f1:c5:01:
c7:c2:0f:7e:3e:99:0c:eb:e6:7e:3e:b2:84:27:10:18:22:b8:
68:39:fa:df:36:20:58:4d:25:ac:7f:a7:39:c8:02:e7:fe:9e:
b5:16:6a:4f:af:64:c0:27:97:c9:7e:a3:2c:d7:74:6c:7d:2e:
f2:2d:09:55:d0:c8:2c:11:99:46:1d:5b:5b:95:1d:03:9c:ba:
b3:48:3a:ca:48:84:8c:1a:00:d6:35:1d:5e:d8:70:3e:14:ea:
0a:35:6e:3e:4d:a0:a4:e4:51:25:2c:b3:d4:11:15:34:2e:03:
6e:ae:72:09:64:ee:a7:c9:c8:06:04:b1:06:bb:39:80:fe:4f:
99:93:5b:10:81:0e:c2:7a:0d:45:42:e2:20:19:03:0b:dc:30:
15:13:43:ef:58:37:74:87:68:24:b7:fb:3c:55:07:b0:a3:8e:
95:db:ff:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org