Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a39633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ejIx1sAcCh/wfcsYAIT7u67X0VODNVJL5bF/Fyq8lhE=
Subject key identifier: A9:9D:2D:75:41:2D:CE:6C:72:66:64:26:71:AE:EC:D0:27:AF:B6:93
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2E0BF5274D0904D26241C21425C4273B88DF7BBC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:44 +0000
ROA not before: Mon 26 Sep 2022 07:56:44 +0000
ROA not after: Mon 25 Sep 2023 08:01:44 +0000
asID: 59282
IP address blocks: 2400:d680:9c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:0b:f5:27:4d:09:04:d2:62:41:c2:14:25:c4:27:3b:88:df:7b:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:44 2022 GMT
Not After : Sep 25 08:01:44 2023 GMT
Subject: CN=A99D2D75412DCE6C7266642671AEECD027AFB693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:08:53:40:15:32:16:4f:ba:71:09:f4:5f:d3:
d7:0c:ad:95:b8:4b:da:ce:99:ae:a7:5e:12:34:fe:
27:26:3c:5f:44:e5:71:94:db:85:dd:f3:16:73:49:
0f:11:fb:b1:e5:2a:32:84:58:bf:2b:9d:b0:a5:75:
60:e7:4c:7b:b4:5a:aa:4f:2a:89:c2:5a:54:72:f4:
5d:8a:8f:68:b1:1f:f8:16:e2:0d:64:96:d5:b3:f5:
2f:f9:11:94:cd:d5:5f:5f:2e:aa:ab:53:df:1b:f7:
5f:df:8f:a6:56:60:44:ea:ce:86:6a:e7:25:7b:1a:
cd:98:c7:bc:a8:67:04:08:4f:4a:eb:fb:0c:92:44:
c9:01:25:d0:16:94:38:25:2c:93:95:86:d4:a2:7a:
67:d6:ad:f6:e2:5c:23:54:cb:b4:e4:c1:bf:c1:1b:
e5:94:94:4d:0d:23:bb:9c:e2:07:fd:03:74:0a:a1:
70:f2:ad:49:9a:86:9d:23:a5:50:35:a4:a7:61:a1:
97:4e:d0:54:70:ab:6a:c8:ad:48:ad:73:ad:50:69:
35:bb:10:2e:55:ca:47:95:c6:e0:d6:2c:d7:23:be:
d2:be:d0:3e:96:81:10:ba:0d:b9:d4:ea:98:f6:6f:
0d:f3:5f:05:e4:f5:02:c6:b5:5b:fb:f4:53:b0:3e:
df:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:9D:2D:75:41:2D:CE:6C:72:66:64:26:71:AE:EC:D0:27:AF:B6:93
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:9c::/48
Signature Algorithm: sha256WithRSAEncryption
83:32:0a:4d:62:07:c2:c7:a8:8a:04:c2:4d:70:be:89:34:76:
5a:f3:8b:2a:b2:df:98:b3:33:9e:00:03:6d:e5:ec:4f:80:53:
4e:8a:69:5a:18:a2:3e:b6:05:19:90:35:21:36:cd:9e:16:b6:
71:ef:e7:d5:51:34:98:14:64:9c:cf:a0:12:78:aa:34:19:bf:
d1:00:14:99:e8:71:5b:fb:21:08:44:e0:1c:4f:26:9b:c1:25:
ff:74:0b:7d:7d:74:f1:5b:da:72:5c:a1:61:c0:2f:29:6a:06:
ac:63:4a:64:9f:19:ce:23:eb:77:7c:3d:ca:18:d7:44:eb:b4:
c5:5a:1f:e0:e1:86:0e:7e:cc:db:2f:35:66:6f:51:8c:0d:32:
f1:25:bc:74:d7:b9:7a:89:68:22:9a:cb:c3:a1:f9:9b:d2:e5:
bf:a4:53:0c:85:a7:b1:81:37:73:56:cd:76:af:73:2b:4f:28:
cd:af:2f:5a:35:99:16:c8:5e:df:6a:a8:37:16:63:46:44:22:
62:41:49:59:b1:90:a6:cd:19:c9:96:24:52:46:18:72:84:06:
02:3a:97:39:d4:dc:c3:93:87:0e:3f:e3:6c:be:5a:51:a5:61:
cf:da:3f:dc:c4:d5:db:62:c7:68:ef:f1:07:0e:44:62:4d:6c:
66:cf:2b:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org