Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a37303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: jwwCLKAmR7MSeRa5hfd83m9xnHpq577IKU8WS30CK1Q=
Subject key identifier: BE:58:CB:60:13:E6:3B:FA:47:B9:70:0B:F1:7D:C8:26:B5:03:7E:06
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 50D9EB516C2777D6EAA0BE5D62C18056C71B8473
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:40 +0000
ROA not before: Mon 26 Sep 2022 07:56:40 +0000
ROA not after: Mon 25 Sep 2023 08:01:40 +0000
asID: 59282
IP address blocks: 2400:d680:70::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:d9:eb:51:6c:27:77:d6:ea:a0:be:5d:62:c1:80:56:c7:1b:84:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:40 2022 GMT
Not After : Sep 25 08:01:40 2023 GMT
Subject: CN=BE58CB6013E63BFA47B9700BF17DC826B5037E06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ba:a8:94:96:8b:cc:75:95:ad:4d:dd:ba:bb:
c1:96:df:05:dc:6b:6a:b6:a3:f6:4b:af:2e:39:a0:
ca:4a:9f:a2:fe:d9:2f:76:c0:bd:9b:4c:58:ad:47:
82:14:85:a9:dd:0e:ea:e3:44:b6:a6:67:ff:da:7c:
93:5a:f4:e7:86:e5:0f:4a:4d:2c:2a:2e:2a:ae:1f:
2b:28:5c:e0:8c:8d:c7:fb:bd:e4:ee:1f:1b:9e:07:
0c:ee:aa:97:06:42:d1:dc:4e:6b:0d:55:37:b9:65:
72:66:da:0c:52:b9:a4:1c:70:29:c6:1d:06:d6:3d:
e9:ad:c4:71:7d:85:b3:0f:55:54:9e:29:b6:d0:33:
c8:93:bd:d8:c7:ae:f8:50:f3:96:d2:bc:51:02:39:
ce:dc:aa:14:48:63:ea:2f:ec:42:1f:45:b1:d1:36:
57:f0:d6:6c:cb:d0:2c:d8:76:4f:29:99:19:e3:a7:
70:89:1a:8e:84:87:86:66:6e:db:93:9b:70:f9:d7:
a9:e6:f7:8c:59:68:dc:28:ef:c3:dc:8e:eb:28:1b:
1e:00:1b:54:c1:78:89:ef:b9:fc:8a:a6:2e:a2:c6:
23:85:72:53:9d:56:59:3f:f8:c3:d1:7b:9e:18:06:
07:d0:e8:d2:ed:ef:cd:f6:b8:59:cd:a3:e2:f0:5a:
b9:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:58:CB:60:13:E6:3B:FA:47:B9:70:0B:F1:7D:C8:26:B5:03:7E:06
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:70::/48
Signature Algorithm: sha256WithRSAEncryption
06:c1:9a:cd:3b:fe:15:95:8c:53:46:48:a3:80:d7:54:fc:81:
50:e2:26:26:20:f1:3c:1e:c4:ce:59:f3:2f:36:fa:8f:4a:6d:
f2:1f:aa:ba:94:91:6b:e0:9d:81:65:40:25:f7:4a:e7:0d:e6:
c6:5e:49:07:14:4c:bb:e5:4b:4e:e3:31:7c:63:bd:4d:6c:89:
85:1b:16:66:2f:31:f5:ca:49:0f:8c:5e:ec:a1:0f:23:d5:cb:
1a:b0:2a:0e:64:04:b3:cc:a0:0e:de:aa:e4:61:f9:c3:c2:c3:
88:88:4a:60:38:48:12:e7:45:a9:7c:4b:12:96:3e:72:b4:46:
18:2f:b4:3a:81:8d:8e:97:46:31:e1:09:65:83:fd:76:aa:9b:
1f:f5:ca:f6:5e:cc:a8:9c:08:85:f9:33:f1:62:4b:70:97:e7:
14:ec:3c:e6:65:d8:e3:66:86:ce:a0:94:ff:fd:7d:ec:bb:e9:
e1:6c:82:ab:c1:65:db:d2:51:09:eb:52:4f:95:6f:68:07:d6:
4e:32:06:1f:f3:19:20:ba:48:88:4d:89:3f:02:1a:9b:a8:49:
55:ed:cc:6b:51:60:2a:5b:82:d7:91:d4:4a:91:a5:ae:67:7a:
ef:ce:a8:76:7e:ad:e2:61:35:2c:ca:20:0e:68:9f:9b:09:78:
1a:43:81:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org