Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a34363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: W6oqXi2pxl/lOOoqQVz/7V+m0RDyPxvKFUJrg5OaKUw=
Subject key identifier: 72:BE:21:18:2C:48:2F:06:B3:A9:E2:4C:5A:E3:80:DD:E5:31:27:4C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5807F7F914D71D18721F4E213CFF73C89ACA8925
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:17 +0000
ROA not before: Mon 26 Sep 2022 07:57:17 +0000
ROA not after: Mon 25 Sep 2023 08:02:17 +0000
asID: 59282
IP address blocks: 2400:d680:46::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:07:f7:f9:14:d7:1d:18:72:1f:4e:21:3c:ff:73:c8:9a:ca:89:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:17 2022 GMT
Not After : Sep 25 08:02:17 2023 GMT
Subject: CN=72BE21182C482F06B3A9E24C5AE380DDE531274C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c3:48:43:17:10:ae:28:49:ea:2a:00:bd:cb:
47:d9:c3:ec:d2:68:f1:9c:3b:d1:19:a6:c8:aa:91:
42:40:42:5c:1b:40:87:c3:51:b3:19:9a:f6:72:4f:
a7:6f:af:95:f6:42:01:55:99:14:0f:8d:56:85:fc:
c8:df:66:da:58:15:36:10:dd:d5:18:46:90:ee:cb:
3b:44:69:f4:d6:74:20:c9:b3:5c:71:69:16:30:17:
72:01:76:d8:64:16:3f:f3:9c:8e:71:ea:d2:e9:fc:
be:61:f8:29:99:5c:3b:84:46:65:aa:53:4f:b4:13:
64:ad:11:15:2d:2a:fe:c5:4c:48:55:0d:ab:47:1c:
ef:fd:20:ee:5f:b5:8f:fb:6b:9d:d7:5d:7e:9e:6e:
34:e1:fe:2d:e9:46:47:f3:08:40:42:5b:9d:33:04:
16:75:09:fb:33:bd:e6:27:fd:0b:f9:a8:7e:0e:98:
06:4d:bf:48:dd:7a:c3:b9:fd:72:a5:22:9c:d7:ac:
c0:7d:9e:48:6b:a0:fa:61:27:04:81:3f:a1:a6:af:
94:f8:cf:97:e3:e1:0d:21:4f:5c:4e:4f:05:3b:ba:
1e:bc:98:63:d9:85:e6:a5:82:c4:13:b5:b2:8d:58:
99:5b:0e:ea:aa:08:93:2e:27:4b:9a:a2:06:2b:19:
6e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:BE:21:18:2C:48:2F:06:B3:A9:E2:4C:5A:E3:80:DD:E5:31:27:4C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:46::/48
Signature Algorithm: sha256WithRSAEncryption
95:8b:6d:bb:9c:3d:4a:2f:60:ea:b9:f7:56:20:bb:0f:28:ba:
09:8e:63:47:db:ee:f5:02:27:8c:f0:09:4f:19:9d:1c:09:4a:
6f:8f:30:c1:a7:36:b6:65:24:32:ff:26:c8:d6:35:b7:86:f5:
57:9a:08:5c:5b:e9:e6:be:ce:5f:10:f9:8d:f0:84:bc:8b:d0:
54:2e:59:a5:a5:a8:89:77:b7:93:45:e9:21:0f:d7:89:87:ad:
28:6e:a0:2f:bc:db:07:d8:03:81:f0:c2:0f:06:12:04:35:36:
f4:d6:76:c2:55:78:eb:96:16:88:9d:c4:d9:82:8b:e8:49:93:
91:f6:7d:50:7c:d0:ce:c5:a2:c4:7c:b6:cf:8a:07:20:67:a4:
b3:08:3f:7e:af:3e:9e:84:0c:89:bc:5e:0f:c2:30:43:71:da:
53:8e:b5:3f:58:56:e4:eb:21:be:9c:0e:0f:9e:eb:c6:5b:fe:
c8:c2:84:bf:f7:a5:86:76:06:c8:91:a5:94:a0:0d:90:b5:c7:
3b:2b:31:87:98:c2:86:d0:13:c4:99:2e:df:fc:43:d3:ca:7d:
78:41:57:20:03:5d:ec:61:5a:6f:80:57:47:05:cd:30:93:15:
80:03:ac:08:be:00:d5:34:6b:7e:5e:b1:39:47:b8:ab:d2:90:
ea:07:0b:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org