Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a34343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: TiK8YbHMMyTxh0IrxgCV/rKDaNmZmZzUXhypNbz7kfw=
Subject key identifier: 3C:EA:4A:3C:77:3E:A9:C3:39:AF:B0:35:5D:5D:18:D6:4A:1A:05:4D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 59C2F6DA3490F48AB05F41898122648BA611D7CB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:03 +0000
ROA not before: Mon 26 Sep 2022 07:57:03 +0000
ROA not after: Mon 25 Sep 2023 08:02:03 +0000
asID: 59282
IP address blocks: 2400:d680:44::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:c2:f6:da:34:90:f4:8a:b0:5f:41:89:81:22:64:8b:a6:11:d7:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:03 2022 GMT
Not After : Sep 25 08:02:03 2023 GMT
Subject: CN=3CEA4A3C773EA9C339AFB0355D5D18D64A1A054D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0f:0b:af:10:91:37:02:23:6a:02:dd:73:fe:
2c:87:48:6f:32:5c:94:8f:ca:53:24:b3:07:98:70:
f0:02:b4:b1:6c:08:56:e1:be:19:31:57:d1:8d:5a:
cb:cc:56:0c:fb:00:83:bb:3f:56:4f:08:8f:80:70:
23:d6:c0:dd:8b:a8:a2:3f:04:a0:49:f8:1e:19:f6:
fd:fe:95:a3:83:74:89:a7:22:a2:2e:3c:07:83:43:
45:ca:60:f5:dd:bc:83:16:86:f0:09:5e:b1:cc:c0:
11:57:b1:65:fb:3a:49:dd:b1:7e:95:0b:b2:e2:73:
84:9a:eb:0d:76:6a:7d:cc:38:a9:01:22:e9:3e:0e:
dd:c0:9b:13:b8:5d:9f:6e:b3:bb:67:e1:61:da:89:
1e:a7:f7:92:0c:12:5f:85:f1:86:99:87:11:20:ea:
72:78:77:7d:31:61:8e:38:b7:b8:75:55:a5:5f:58:
b5:db:b7:80:75:2c:7e:24:bd:0d:86:e7:1b:91:86:
c9:a1:c2:b1:a9:60:e5:09:6b:5e:71:f5:5f:2d:c9:
ad:5f:41:b7:ae:80:19:e3:22:cf:71:7c:60:a3:5b:
fd:84:cb:6b:e2:e1:a5:e3:02:23:7d:a7:ca:51:b6:
35:5d:ec:fb:94:cc:39:bb:6a:d8:97:65:44:77:14:
2f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:EA:4A:3C:77:3E:A9:C3:39:AF:B0:35:5D:5D:18:D6:4A:1A:05:4D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:44::/48
Signature Algorithm: sha256WithRSAEncryption
cb:dd:31:c0:fa:ab:92:72:ff:df:36:cd:bb:f0:d7:e8:9b:2e:
9f:b1:29:ae:0a:c4:f1:d5:71:b8:2e:44:8a:1c:f1:91:45:50:
2c:89:a0:21:eb:9a:2f:b8:a8:cb:af:d7:f6:22:5f:65:dd:f5:
c4:49:6d:f2:13:4e:9a:27:18:3d:12:37:45:08:63:5b:a5:93:
10:23:ef:f6:1c:b2:e1:77:04:2a:2a:6e:5b:b2:10:5a:3e:a2:
47:45:e2:a4:fe:3b:a5:ac:90:cc:a7:75:b7:42:83:e7:b2:aa:
03:60:80:5a:d0:9f:c2:15:34:3d:bd:2a:f1:f6:5c:10:ed:dc:
60:e5:b9:60:6c:ed:7d:19:29:d3:1f:c8:5f:18:ed:82:87:7e:
7c:9c:b0:5b:a3:08:a6:91:06:39:83:5b:38:f2:a9:0b:80:ed:
59:4a:b3:77:41:e5:54:bf:51:26:70:b3:e8:9a:f3:e5:77:df:
06:d4:3e:84:89:3e:c3:be:dd:59:d4:f3:a1:b8:61:c7:7c:be:
83:92:c3:a0:7f:87:a8:7f:8f:e0:d3:47:56:ec:fd:cf:51:b8:
56:24:c6:e7:0a:a8:da:d5:5f:e6:b5:90:70:b5:2e:85:58:13:
0f:c0:9a:2b:18:09:05:a5:4a:ed:e6:22:ed:fc:7f:81:1f:e6:
82:d5:f9:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org