Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a39393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: nWVrBqOrZI8riAvojhxAjlohRhgPA+PWjkJGqBto688=
Subject key identifier: DC:32:DF:ED:9F:57:79:68:13:A9:E7:46:19:D2:3E:BD:C3:D9:E5:D1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 27BC16AEA5E4DD05962D6C20993423EF81A81424
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:43 +0000
ROA not before: Mon 26 Sep 2022 07:56:43 +0000
ROA not after: Mon 25 Sep 2023 08:01:43 +0000
asID: 59282
IP address blocks: 2400:d680:99::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:bc:16:ae:a5:e4:dd:05:96:2d:6c:20:99:34:23:ef:81:a8:14:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:43 2022 GMT
Not After : Sep 25 08:01:43 2023 GMT
Subject: CN=DC32DFED9F57796813A9E74619D23EBDC3D9E5D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:31:da:e1:92:15:0d:d4:85:b5:92:39:d3:6f:
02:7d:21:92:07:51:bc:85:0e:af:8c:7d:96:57:6c:
ae:69:b8:d0:f3:96:6e:32:b8:38:43:1e:5c:a3:8d:
16:df:f4:13:e9:7f:d2:be:bc:08:6d:0a:26:c6:16:
7e:b9:70:05:fa:9c:36:7a:69:57:2b:59:11:15:ab:
e9:c6:4c:98:4c:8d:34:0c:4d:24:86:11:25:e7:b7:
cb:89:7c:21:f9:04:d5:60:a8:19:ed:75:d5:db:b5:
c7:95:02:3d:a8:a6:38:26:7b:9d:2c:b6:63:e0:c5:
55:65:02:69:15:d5:ce:49:9c:74:da:a2:b0:f9:9b:
e4:0c:2e:59:d4:4b:0d:9c:c6:10:3a:3f:fc:b4:4a:
e0:e3:f5:7f:2b:a4:3f:bb:a2:83:e6:51:40:61:ba:
ee:75:3d:41:6c:c7:4c:62:a5:52:0e:ca:7e:ed:5e:
d0:01:aa:f8:e6:af:5a:00:b5:78:9b:d0:1f:db:20:
9f:68:ee:5c:1b:83:7b:dd:a4:6f:17:eb:5c:0f:85:
51:1b:25:08:31:b7:d5:02:de:ed:9c:7e:b8:50:98:
a3:80:99:73:8e:a6:59:dd:8d:17:06:94:f0:37:65:
96:e1:f0:51:2e:5e:b2:c3:15:f0:a3:9a:ec:47:46:
ab:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:32:DF:ED:9F:57:79:68:13:A9:E7:46:19:D2:3E:BD:C3:D9:E5:D1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:99::/48
Signature Algorithm: sha256WithRSAEncryption
23:31:e4:96:fa:e2:77:7b:52:e6:d0:50:3b:a5:1c:a0:a8:e8:
d1:e7:61:92:ef:f8:6f:9e:a0:71:39:89:43:4f:de:93:28:b9:
d6:c9:a0:c4:76:65:2c:67:0d:3e:9f:e7:be:30:da:a0:1a:aa:
e8:e6:42:03:6d:2f:01:4f:a7:58:fe:cc:3d:72:90:af:1c:e4:
e1:64:0a:fe:db:a3:51:1a:f6:32:8c:99:3d:99:e5:e5:79:c5:
40:4c:3c:19:2a:40:11:69:7e:3f:63:6e:b0:2a:b0:c8:8f:74:
3a:33:14:33:ce:e1:9a:16:ea:8c:28:ed:93:2e:2c:5e:a2:ab:
55:1b:38:1e:ec:23:88:28:0d:33:ab:6e:5e:30:9e:fa:6d:33:
90:16:1a:54:91:f4:cd:a9:0a:bb:91:47:e6:5c:f9:ae:f2:fc:
63:f2:b2:e2:b0:48:5c:b4:c3:b8:87:8d:22:af:91:67:47:6d:
6e:75:48:e0:20:15:10:2e:89:58:3d:8d:98:0a:8d:1d:14:3c:
39:3c:1f:50:64:3f:54:b4:1d:9d:93:d1:76:25:05:e5:8c:db:
f9:8b:b4:ea:09:d1:ac:8d:bb:0d:ce:d6:25:c2:4c:72:fb:cf:
f2:ee:b3:34:c7:04:d4:a4:ed:6b:74:9c:31:d9:c8:ff:4f:2b:
3e:16:64:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org