Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a39663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: fdGn5Mj/pFKVm5G5QfzSZH34MUnJgobvPdhqxQoAw+8=
Subject key identifier: 9A:66:86:4F:8C:E8:D6:AB:19:08:45:0B:F2:E7:D9:C3:FC:B8:3C:BB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2D8A3F3334DF4EE2A237CE0986CB14C26F7FC71C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:34 +0000
ROA not before: Mon 26 Sep 2022 07:56:34 +0000
ROA not after: Mon 25 Sep 2023 08:01:34 +0000
asID: 59282
IP address blocks: 2400:d680:9f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:8a:3f:33:34:df:4e:e2:a2:37:ce:09:86:cb:14:c2:6f:7f:c7:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:34 2022 GMT
Not After : Sep 25 08:01:34 2023 GMT
Subject: CN=9A66864F8CE8D6AB1908450BF2E7D9C3FCB83CBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:f0:c6:8d:b7:a5:e2:75:8a:c3:ca:ad:55:70:
90:b1:fe:8c:82:a4:95:f5:ee:0a:bf:27:34:03:00:
78:57:4c:ec:2e:5f:1b:cb:78:46:07:ca:2e:76:e8:
fb:c2:89:b4:18:33:fe:d7:4a:82:92:45:d7:40:a3:
a0:d7:fa:4c:a0:97:06:0c:39:ac:8f:20:e3:c1:52:
9e:51:80:83:22:cd:ba:10:af:96:57:2b:f2:02:9b:
ee:27:f6:10:fc:6b:f4:41:59:54:da:2b:20:13:1e:
a0:a8:91:09:5b:18:c8:7f:31:da:5b:f0:c8:0a:98:
55:57:e4:96:8f:90:89:66:0d:8d:9c:b6:80:ef:d9:
97:d7:1f:31:27:d9:fd:67:8e:52:25:d0:35:86:f7:
70:8b:76:6d:13:dc:4d:af:dd:ff:3b:a5:c5:f9:e3:
e5:79:fe:36:84:17:a3:fc:45:37:83:0a:94:e2:fb:
fc:7e:09:c1:46:ef:66:83:e0:e4:29:56:45:ac:69:
d3:f9:cf:04:b7:d2:35:ad:d7:16:5a:2e:43:bd:7a:
49:47:6d:a9:f1:0d:0d:51:ef:1c:96:1c:c5:f1:6c:
71:60:31:c7:96:19:be:a4:61:50:72:56:d6:32:11:
60:34:3f:5d:d8:f0:0d:fe:07:f5:da:22:1d:31:c7:
35:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:66:86:4F:8C:E8:D6:AB:19:08:45:0B:F2:E7:D9:C3:FC:B8:3C:BB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:9f::/48
Signature Algorithm: sha256WithRSAEncryption
71:74:f0:e8:e9:b4:0c:c2:b4:45:40:f9:61:84:a7:ef:dc:ef:
94:d6:e1:a6:96:cf:d3:80:38:c1:6d:d4:47:a2:0d:08:4b:60:
e2:95:00:df:ed:7a:39:13:b5:93:b4:65:ea:d5:06:fa:d5:1d:
62:9a:12:5c:d1:b4:eb:59:14:06:13:8e:c8:73:7b:23:87:85:
ad:9a:41:32:fa:13:5b:74:46:03:93:d1:bd:85:83:13:5e:74:
21:62:e0:94:32:bc:93:dc:c0:90:d6:bb:f8:72:d9:1e:f4:0b:
f0:4e:aa:e0:a1:53:40:fc:57:91:f4:f0:19:ce:93:c3:ae:71:
43:da:dc:7a:aa:5c:a8:46:13:a0:f7:f3:c3:60:6b:65:31:96:
97:a1:63:a7:58:1e:63:46:57:48:d4:4d:49:df:19:52:0a:3c:
3f:1f:e8:43:80:4a:76:c1:6e:9a:b4:ee:98:a0:1b:ea:2d:f8:
82:ce:14:40:7f:04:08:e1:22:60:8d:ad:6a:4e:81:4e:10:1f:
ab:97:b5:69:4a:e9:74:67:ea:87:89:1e:53:43:78:a4:a3:13:
f2:73:c5:d5:fd:32:fb:c0:10:b8:44:74:56:6b:39:9c:0c:ad:
57:f5:50:5b:8e:0e:ba:95:13:55:ee:4f:f2:2c:f1:b3:77:dd:
d5:4a:ac:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org