Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a38383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: hemQ4oKGeaK0xZW2ugBaXW9pF/8y1fOaZCGOmZA6AzM=
Subject key identifier: 96:84:5A:41:11:8F:F0:58:0F:F8:67:2C:CE:7F:0F:E3:93:8B:F5:6E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 30A413D5BA3FF093C0DA57C8B72577EFDF1A4870
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:18 +0000
ROA not before: Mon 26 Sep 2022 07:57:18 +0000
ROA not after: Mon 25 Sep 2023 08:02:18 +0000
asID: 59282
IP address blocks: 2400:d680:88::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:a4:13:d5:ba:3f:f0:93:c0:da:57:c8:b7:25:77:ef:df:1a:48:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:18 2022 GMT
Not After : Sep 25 08:02:18 2023 GMT
Subject: CN=96845A41118FF0580FF8672CCE7F0FE3938BF56E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b9:a2:c8:19:19:dc:e4:97:2d:fb:1a:e4:b1:
1c:44:f2:45:5f:8a:27:2d:d3:46:f7:82:29:66:3a:
df:68:4c:20:0b:1e:c1:13:8b:7d:01:e5:3d:0a:4a:
d2:b4:7a:62:04:aa:4e:39:ed:a8:52:35:e0:32:a0:
15:30:c5:fb:be:ae:fb:18:47:90:5c:06:78:c5:5a:
4d:65:71:a7:cf:ac:66:1e:0f:44:7b:e6:f7:4c:70:
db:bc:13:05:80:ac:56:92:f4:b9:1d:a6:76:91:4b:
a4:84:67:3e:14:66:7b:f2:dc:bd:2b:e4:22:5a:03:
61:38:8f:85:2f:85:8e:3c:df:6f:99:94:8d:d6:92:
d8:e3:da:2e:9c:5f:66:43:fe:ed:4c:88:7f:c9:c5:
f5:c8:a4:e3:31:82:09:2a:a6:3e:20:6c:ab:cb:45:
16:3d:82:e3:8a:3e:75:14:b2:97:0d:71:12:c2:90:
17:44:fe:29:6b:f9:47:50:c4:f8:e3:15:68:14:a7:
25:e0:06:31:58:9d:64:da:02:02:88:67:0b:5a:1c:
0c:da:b2:7e:15:ea:46:8f:c0:dd:9c:a6:a5:97:3a:
5b:d5:2a:d7:f0:00:34:76:7d:46:b0:3e:ea:a0:6e:
dc:b4:c6:4a:37:20:01:47:fc:54:38:d2:8b:f4:26:
36:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:84:5A:41:11:8F:F0:58:0F:F8:67:2C:CE:7F:0F:E3:93:8B:F5:6E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:88::/48
Signature Algorithm: sha256WithRSAEncryption
73:74:c3:62:f8:9b:0c:6f:9a:02:10:b7:d7:7d:b5:52:ba:6f:
ed:e7:6e:11:c7:ef:c7:07:0d:46:07:da:67:c3:cb:3e:99:2c:
bf:81:f7:7d:3a:6e:2a:74:67:09:15:31:4d:b5:c6:e5:4e:85:
c4:9f:f2:3f:60:43:5c:18:84:3e:18:f2:c2:16:23:51:fe:1c:
38:84:8d:ec:42:09:44:cb:39:ed:f6:14:6f:46:5e:c4:86:c4:
23:70:62:14:13:1b:d9:e8:44:1e:0b:c0:14:12:01:ed:ea:5f:
56:1c:e6:94:4b:1f:47:fe:63:f6:17:82:0a:5e:63:f1:8b:c5:
b2:5e:c8:b2:94:79:52:a2:7a:89:dd:d0:49:4f:12:ad:2b:8a:
78:d8:c6:1a:24:8d:53:84:95:7c:83:68:9f:48:02:1d:51:b5:
b7:3a:c6:90:4b:d9:7e:5a:d4:6a:5a:d1:d1:11:e4:7c:fc:dd:
1a:58:48:b3:cd:c0:d1:33:d5:80:d8:42:88:c1:a1:5f:71:c6:
84:73:24:68:32:67:57:c8:43:d0:93:fa:8e:9c:44:68:6b:01:
db:36:5c:99:96:c3:fd:4f:60:23:c6:d4:03:bc:69:8a:36:18:
33:dd:43:cb:9a:94:d3:64:4c:43:0d:05:d7:f3:62:64:8c:9f:
be:cc:01:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org