Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a35663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: J/ICv4m3COtscGRVwQez41lNHg2/+lCY6rcieXVhlOg=
Subject key identifier: 08:E5:50:5C:A0:DD:52:90:3B:38:62:4A:CD:2B:99:3F:7A:4B:65:43
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 304E3346C5A82BCFDDBC5E91C2E3657609DDB8E5
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:24 +0000
ROA not before: Mon 26 Sep 2022 07:57:24 +0000
ROA not after: Mon 25 Sep 2023 08:02:24 +0000
asID: 59282
IP address blocks: 2400:d680:5f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:4e:33:46:c5:a8:2b:cf:dd:bc:5e:91:c2:e3:65:76:09:dd:b8:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:24 2022 GMT
Not After : Sep 25 08:02:24 2023 GMT
Subject: CN=08E5505CA0DD52903B38624ACD2B993F7A4B6543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:59:83:5a:6a:dd:65:44:a0:76:67:6a:82:42:
44:01:f8:ed:c4:0e:8c:d9:f4:c2:84:d8:7a:d4:bc:
eb:8b:7b:f3:03:18:b4:aa:a1:d3:b2:9c:64:fb:4d:
60:62:5d:24:90:7e:78:18:2c:04:a2:b1:18:2a:f4:
97:e2:5c:4c:2e:42:0d:47:bc:d1:fb:ad:59:d8:35:
ac:c2:e9:ee:18:45:24:c6:36:c7:76:a6:8c:d8:23:
8b:8f:1c:84:8c:1c:ed:30:47:05:58:39:c3:9e:9f:
c6:9f:52:4d:5f:0b:94:d6:64:c2:24:df:1a:c3:20:
a2:c6:76:19:9c:35:49:cb:4b:a9:59:e6:c9:6f:f8:
74:e6:7c:92:e2:78:d1:59:8f:b9:6d:77:7c:7f:b4:
04:47:2d:57:a2:8d:7b:c6:4b:17:23:d0:4f:32:34:
d6:1d:75:1a:91:3c:04:3a:d3:05:02:ff:d5:37:71:
70:8b:e5:36:ef:db:df:82:ff:49:95:21:83:ce:ad:
39:8f:b0:e9:72:ba:bf:79:78:fb:7a:75:76:fc:c3:
d4:aa:b3:c6:f0:b6:5a:f9:d7:16:6c:b8:c4:3f:7d:
ed:d3:e0:7f:5b:fc:cb:ae:63:92:f2:8e:68:24:8f:
11:3a:67:50:e8:66:47:c4:9d:51:02:41:99:e0:4f:
9d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:E5:50:5C:A0:DD:52:90:3B:38:62:4A:CD:2B:99:3F:7A:4B:65:43
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:5f::/48
Signature Algorithm: sha256WithRSAEncryption
58:b1:20:24:27:c2:ac:33:8a:36:c1:9c:74:f4:cd:27:bd:7b:
be:52:02:3b:a8:ce:48:89:c0:a2:c9:17:39:54:48:24:3b:ef:
45:44:9d:32:72:7c:6f:51:82:7a:36:c6:94:ac:19:79:56:1b:
ad:3f:d7:37:3c:2d:51:9e:54:c0:c1:c0:16:11:1f:7d:b7:c9:
7b:a6:48:45:bb:d1:21:40:7f:fe:ce:af:4c:0a:c5:a4:4f:f9:
95:d1:a0:ed:a5:e8:36:bf:20:58:f8:60:b3:d8:00:9b:34:ff:
0a:42:ee:e0:67:00:cd:54:dd:28:a3:5c:60:8a:1d:9e:05:26:
40:43:7d:a4:49:49:b2:ce:e7:4b:ed:9d:98:4d:ce:cf:5b:de:
d1:c1:7a:77:4f:a4:28:a1:13:f1:bd:ad:ed:e3:63:0b:38:11:
ee:21:a6:07:50:39:15:d6:d9:1a:8e:8a:a7:41:27:33:59:6a:
a4:e5:ea:2e:55:8d:9a:64:86:4b:5a:bd:b0:75:69:01:a3:00:
7a:83:91:e7:67:77:0a:4d:84:be:c2:ce:76:f5:25:31:8b:7d:
89:ea:84:27:06:02:8a:24:dd:6c:1a:35:70:2b:e4:19:a0:ee:
54:79:bf:b1:a7:5d:66:7f:56:0e:de:f6:1e:8f:11:3a:96:78:
2a:4f:c4:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org