Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a35373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: CMPqi88DC2ZKTBInlkx4enSJDmQ+KPIHg6TCcPj6tRM=
Subject key identifier: 60:71:67:AA:78:23:44:99:38:DD:22:BF:3F:70:77:8C:DF:16:E9:8D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0AC88E6E10F85F705E222B917910C1CDD097C4BC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:33 +0000
ROA not before: Mon 26 Sep 2022 07:56:33 +0000
ROA not after: Mon 25 Sep 2023 08:01:33 +0000
asID: 59282
IP address blocks: 2400:d680:57::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:c8:8e:6e:10:f8:5f:70:5e:22:2b:91:79:10:c1:cd:d0:97:c4:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:33 2022 GMT
Not After : Sep 25 08:01:33 2023 GMT
Subject: CN=607167AA7823449938DD22BF3F70778CDF16E98D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:96:50:46:5f:a8:50:2a:dc:e7:49:cb:c1:07:
d2:ed:73:0b:c5:f2:67:42:eb:f5:4f:6b:a3:1c:28:
09:a3:49:f2:48:68:6d:e5:5f:03:7f:03:39:fd:7a:
c8:27:e6:40:39:1d:30:fc:c0:21:c7:8f:23:4e:aa:
ad:df:5f:a2:80:2d:04:f2:b2:f4:70:e1:da:ef:97:
a4:28:67:52:0b:93:8b:34:6e:a6:c8:40:25:21:18:
99:0c:28:e8:3d:68:9c:00:cf:a1:1c:56:ec:46:db:
34:b7:01:ef:5b:24:db:bd:cc:67:b8:7c:5d:d7:84:
4b:d6:be:01:c5:22:73:25:a2:12:92:4f:f1:fb:01:
67:cf:33:8c:d6:a1:f3:3c:58:0d:b7:54:ef:fc:38:
17:66:66:ea:7a:98:bb:72:8e:79:49:62:17:1f:3f:
65:ab:04:bd:16:98:63:64:80:64:bf:34:e8:50:86:
9f:6e:70:d2:0a:79:cd:c3:b4:22:7a:b3:91:3c:cb:
21:ad:25:9f:fb:1a:b4:93:eb:98:76:77:0e:44:6b:
dc:ba:d9:0f:a8:6b:78:ac:4c:b4:c8:9e:bd:9a:70:
79:8c:8c:bf:8e:49:c3:f9:af:f5:11:48:76:83:76:
af:16:0d:c0:e4:19:39:61:06:10:d8:27:bf:bf:69:
27:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:71:67:AA:78:23:44:99:38:DD:22:BF:3F:70:77:8C:DF:16:E9:8D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:57::/48
Signature Algorithm: sha256WithRSAEncryption
11:da:93:65:20:65:f9:32:e6:ad:20:fe:bc:c0:5d:e0:be:4d:
7b:67:5d:9a:5b:db:44:8a:00:40:13:1c:97:b8:67:4c:3e:95:
88:a2:08:47:3b:5e:5e:b5:1c:92:77:78:19:cd:b5:63:c5:72:
66:e5:f1:a3:0d:af:20:cd:05:57:76:48:95:78:4a:ea:30:a3:
10:72:8b:fd:e6:e1:91:66:fe:37:5e:09:0a:83:2a:61:39:05:
7e:f8:28:8d:c6:5d:5e:ea:fd:36:6e:ff:00:a7:da:b8:08:d2:
d6:29:23:b0:b1:fa:54:0c:c7:65:25:22:71:d0:43:30:e1:44:
b6:b3:cf:6b:85:2e:0e:5e:f5:58:db:29:62:b8:ea:97:53:5a:
af:83:a9:36:7d:d2:95:56:af:56:71:b8:f4:58:39:d3:15:76:
b6:b2:7f:a5:c4:a9:e5:1c:6f:bd:56:41:15:83:ca:46:a1:b5:
d8:c7:dd:1a:7f:ec:af:cc:7c:54:7f:73:09:4c:d3:4a:b3:d9:
90:fc:b2:d2:d0:62:84:23:2f:02:9b:f2:6f:8f:a8:8a:c8:e1:
cd:f6:c8:3c:f6:5e:5c:4b:db:67:0c:1d:97:f4:e0:95:fe:94:
7e:32:c3:4b:f4:fb:69:c1:06:d1:5c:a2:38:e2:85:4d:ca:89:
de:a9:c1:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org