Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a37353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: l8A1x8FcjSlvlaiGY64vh7fh/n40rmgBt2bOO4oxCus=
Subject key identifier: AE:02:E4:B5:DC:89:07:8D:DE:43:28:B7:55:96:92:DF:06:6E:F9:76
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 72EE02003A7FA8016C54F2F172F55743D5DC297C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:32 +0000
ROA not before: Mon 26 Sep 2022 07:56:32 +0000
ROA not after: Mon 25 Sep 2023 08:01:32 +0000
asID: 59282
IP address blocks: 2400:d680:75::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:ee:02:00:3a:7f:a8:01:6c:54:f2:f1:72:f5:57:43:d5:dc:29:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:32 2022 GMT
Not After : Sep 25 08:01:32 2023 GMT
Subject: CN=AE02E4B5DC89078DDE4328B7559692DF066EF976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:35:58:96:ee:8b:d1:0c:a8:e2:12:c2:04:6f:
20:00:1a:d5:e1:a9:1d:46:bf:30:8e:a9:05:24:0c:
ab:c1:59:c2:96:e2:38:c6:4e:b1:0a:e7:c8:bd:a2:
44:3e:e9:0c:c5:e2:5f:92:ba:17:08:aa:56:1f:d5:
87:19:74:ac:32:e7:80:f8:6e:15:e2:4c:62:6b:28:
31:b5:3c:d6:9d:9f:d4:9a:f0:9e:f4:bb:4f:8d:f1:
77:e9:4a:81:41:91:74:34:f9:ec:39:b1:04:d7:06:
81:6d:bb:c2:01:d8:d3:43:5e:22:4c:ec:d2:ae:c7:
63:af:69:c1:08:f9:1e:aa:f6:df:5e:18:d7:be:0d:
a6:68:7b:bd:d0:f1:ec:75:8e:17:df:4c:5a:05:85:
6a:9a:86:28:9b:db:d3:c1:5f:e1:3c:9f:b0:41:38:
49:d2:73:da:f0:97:f4:83:83:13:4c:a0:2c:e6:ba:
fc:44:19:a7:f4:bc:41:9f:2c:d2:3a:f6:e8:2f:e6:
45:2a:3a:33:a1:e5:5f:4e:11:e8:f0:3b:11:c3:39:
ca:86:9c:de:02:14:66:c4:15:bc:22:70:25:a6:7a:
61:f6:fa:a7:03:01:52:0b:bb:84:ec:89:d2:5d:0a:
23:26:83:9e:6e:ce:a8:e3:ff:56:62:b5:15:c7:d9:
63:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:02:E4:B5:DC:89:07:8D:DE:43:28:B7:55:96:92:DF:06:6E:F9:76
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:75::/48
Signature Algorithm: sha256WithRSAEncryption
00:84:ef:64:5d:72:0b:2a:ee:ab:10:f4:2f:95:5d:9a:f9:e4:
97:b8:8a:4d:99:f5:c4:b8:90:30:2a:e3:33:e7:a2:5e:2e:16:
22:2d:0f:a2:74:7d:2d:e3:a1:61:8f:79:81:03:97:1c:b3:0f:
5b:3c:33:73:8d:6a:fe:48:71:bf:66:ba:5c:93:03:5b:9e:5d:
fe:c7:b4:4f:4d:fe:7e:68:75:ec:a5:5b:cb:56:98:cb:5e:9d:
70:ef:91:06:a0:60:c8:1e:b4:74:98:68:43:41:f8:a6:e3:e8:
dc:70:bf:ee:1c:63:fb:5d:05:13:43:fc:ee:27:d1:b5:25:04:
b8:56:a0:77:2c:29:97:41:d0:9d:7e:f9:25:c1:66:6d:43:1e:
80:93:7c:a3:6e:e5:ad:bf:8d:0a:59:ff:c9:20:91:5d:24:f9:
33:24:4b:f5:46:42:f3:b6:53:52:56:8b:30:dd:f8:e8:ce:11:
f2:11:f8:b3:43:c9:bd:c1:42:1d:b5:4b:0d:d8:91:61:2d:23:
a4:ef:68:1f:d4:74:55:40:92:b7:bf:34:13:fa:67:8f:d5:b5:
46:97:b5:e4:eb:c5:db:b2:05:dd:31:bc:a7:34:fb:cf:f6:df:
5a:ca:da:fa:ce:ff:0e:00:e0:75:54:1a:24:8e:85:1b:dd:40:
15:14:e8:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org