Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a34663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: i3A3+7pso/Sp9uYh1/h7MEuyUl3MsbWaseDUX9VtqN8=
Subject key identifier: F8:5D:CA:61:21:43:A1:B5:73:4A:8C:FA:24:20:7D:71:7A:49:3A:04
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 39D37DCE4BB0BFE0525D106D8DEE3F70F3B509FE
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:21 +0000
ROA not before: Mon 26 Sep 2022 07:57:21 +0000
ROA not after: Mon 25 Sep 2023 08:02:21 +0000
asID: 59282
IP address blocks: 2400:d680:4f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:d3:7d:ce:4b:b0:bf:e0:52:5d:10:6d:8d:ee:3f:70:f3:b5:09:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:21 2022 GMT
Not After : Sep 25 08:02:21 2023 GMT
Subject: CN=F85DCA612143A1B5734A8CFA24207D717A493A04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9b:52:b5:cb:9b:38:06:95:5d:c1:42:f1:5d:
5a:30:db:21:b4:42:9a:2c:b6:5b:a9:3b:6b:45:2f:
aa:27:3c:70:d4:cb:f3:d9:5c:43:12:b2:7c:81:3e:
ee:ae:87:7e:b4:62:30:ed:6c:81:4a:76:71:00:29:
24:f7:df:51:92:7e:21:e5:cf:31:65:0d:39:9c:fc:
b5:3a:66:69:23:e9:d2:ba:c7:45:f0:16:84:64:25:
64:de:5e:00:e3:30:88:e6:50:08:40:42:d2:26:aa:
ab:4a:3b:bc:c8:ac:da:ff:3f:a2:93:77:5d:03:85:
b5:3f:43:a0:06:bf:48:1f:1f:23:2a:a8:95:6e:ca:
c5:bd:8e:83:bb:6d:99:14:f8:91:ef:b8:c7:ad:6a:
2f:e8:9c:57:0e:35:c1:8b:05:88:f3:d4:db:88:0b:
c5:60:f9:5c:20:f6:3f:5d:c9:9a:b7:37:4c:2d:fc:
1d:de:ba:af:6f:f5:4a:a5:b3:39:b2:b1:1d:c7:67:
fb:4f:d3:25:d0:b4:5c:5a:0c:af:0e:6e:1e:ed:50:
69:03:0b:da:0c:99:95:99:62:41:b9:37:e5:55:4b:
ec:43:a5:8b:4e:a2:02:6e:62:f1:16:d0:be:0c:79:
c9:ec:3f:fb:5f:90:7e:15:b8:bc:57:21:21:08:60:
88:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:5D:CA:61:21:43:A1:B5:73:4A:8C:FA:24:20:7D:71:7A:49:3A:04
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:4f::/48
Signature Algorithm: sha256WithRSAEncryption
4f:9e:fc:ee:9a:e4:e1:ce:3e:f8:4a:0b:29:cd:64:2c:41:f9:
82:81:83:e8:c3:44:50:58:98:8c:1e:f8:3a:26:b5:9a:6d:34:
2d:c7:fe:da:60:41:e8:ca:b0:f8:4b:0a:61:ce:73:06:51:6c:
8c:e7:78:1d:d2:50:fc:eb:69:49:46:53:eb:a0:65:af:45:06:
a2:80:e6:67:11:62:4e:e6:a5:b5:5d:c3:ad:b0:9b:28:6f:be:
7c:d3:d8:41:44:3b:39:a3:e4:ce:6e:1e:fb:0b:e5:fe:95:73:
5a:ed:cf:78:e9:10:23:e7:99:92:ff:d4:9c:b8:9c:a3:32:f2:
1e:78:d5:4c:3d:bd:3d:b2:0e:ec:53:1f:55:dd:5f:1e:ea:fd:
5a:d6:70:95:c1:71:27:97:95:4f:da:c1:ac:2a:31:07:12:62:
21:00:22:10:22:0e:d9:02:b4:f2:12:ad:fd:e2:70:0e:50:3e:
6a:90:7c:f2:79:7f:31:4c:15:86:74:82:da:68:92:c2:12:2e:
4e:0b:ac:0f:09:43:89:fb:bb:6e:34:b1:ba:4d:6b:4f:34:53:
f3:77:b1:be:fe:09:d0:ab:0d:94:6d:74:b3:4b:11:f3:09:33:
8b:2f:88:05:78:9d:97:32:58:27:b3:d7:78:a9:eb:35:db:c1:
8d:9a:c7:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org