Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a38343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: oSY1lb1NsZAsava2tmExd5xQj28fR9XlwI6lo8BpkG8=
Subject key identifier: 93:2C:44:61:D4:09:F0:CF:44:0E:50:46:E5:F1:40:3F:48:59:43:1F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5A02330EB0FB9964EF14E474233F53AB02CD5B7D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:17 +0000
ROA not before: Mon 26 Sep 2022 07:57:17 +0000
ROA not after: Mon 25 Sep 2023 08:02:17 +0000
asID: 59282
IP address blocks: 2400:d680:84::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:02:33:0e:b0:fb:99:64:ef:14:e4:74:23:3f:53:ab:02:cd:5b:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:17 2022 GMT
Not After : Sep 25 08:02:17 2023 GMT
Subject: CN=932C4461D409F0CF440E5046E5F1403F4859431F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:9b:ea:c6:0c:05:0d:ab:1c:5f:42:69:0e:e2:
a4:49:c8:f0:8a:58:cc:12:4b:dd:5a:97:8f:07:95:
f8:80:94:ad:55:e3:4a:3c:5a:88:ba:d8:ca:d9:ff:
0e:cf:39:5d:03:44:00:a5:be:ae:6f:3a:f1:56:6e:
99:f6:23:44:69:79:06:df:33:60:d9:c8:5f:35:39:
0a:c1:99:51:e7:fc:2a:a4:d4:d5:d7:6f:e7:a1:94:
f9:14:9d:37:09:81:01:46:e1:6b:5f:63:59:41:3a:
50:1f:48:25:f1:94:e8:9b:a2:e8:35:0e:e2:53:14:
af:d4:11:58:87:41:51:86:7c:47:52:18:0f:38:98:
26:48:de:14:fa:6f:e3:81:65:4a:62:42:b5:9e:de:
74:07:94:cf:3c:eb:9a:b5:a5:6e:b1:4d:56:cf:cc:
6e:04:0f:1e:11:fa:5c:ce:ef:3e:c0:99:7b:ed:c2:
17:40:39:59:ae:4a:88:a3:0b:4a:52:6a:69:41:98:
93:20:df:55:08:40:18:cb:96:c6:03:f8:31:05:35:
0e:83:05:28:a5:a5:75:27:58:0f:08:d1:c4:a1:a9:
7d:54:6c:82:0a:9c:8e:1e:a6:90:66:3e:69:31:c9:
99:bc:c3:df:4c:76:c4:25:1a:91:32:d4:01:3a:c0:
fe:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:2C:44:61:D4:09:F0:CF:44:0E:50:46:E5:F1:40:3F:48:59:43:1F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:84::/48
Signature Algorithm: sha256WithRSAEncryption
63:64:9b:dc:41:b3:55:b4:d6:94:08:e7:4d:2f:50:68:22:e6:
fd:b2:7a:0f:79:75:7a:5e:72:af:bd:e6:22:c2:ac:67:b2:d9:
42:a1:03:37:f1:f5:dd:63:36:7b:23:55:87:df:9a:ec:1d:53:
a6:30:57:50:2d:a7:78:fe:af:20:09:ae:7a:c9:cf:b5:48:5c:
2f:ee:8d:e4:a8:c1:4e:af:29:f0:15:06:94:3b:9e:49:41:1a:
fd:d5:5d:46:c9:02:27:b4:2c:39:28:42:9b:d0:11:b0:95:f5:
91:6c:ed:2c:9e:7c:d5:6e:9e:02:f1:88:52:bd:cb:46:23:c4:
30:67:a6:13:1d:e8:6d:70:4e:36:4d:a5:e8:62:24:a8:82:b5:
42:e5:64:d1:3a:e5:be:e2:18:9c:38:6c:b4:b3:b6:b5:10:57:
67:b6:10:34:33:9a:74:8d:90:ed:6e:2c:08:cc:c5:ad:c6:28:
b5:c8:7f:bc:f5:ee:2b:69:ae:76:45:b4:db:b5:50:ab:eb:0c:
c7:a7:7e:58:d5:e7:a0:51:05:fd:35:99:5a:31:9b:fe:74:13:
eb:4c:0e:b5:fd:df:64:1f:95:fd:6d:62:86:14:90:d0:e9:40:
37:fc:12:37:86:b7:4a:8e:15:bd:9f:96:1f:d0:68:6c:bc:16:
ef:6c:51:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org