Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a61313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Yd2pNJU0GwSvUl9On5TtD+AMeRDn3rTTWlc0gWvVC+k=
Subject key identifier: 8B:4E:39:A8:68:06:18:AF:89:07:A3:46:F0:46:8B:41:41:37:A1:86
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 12FB6DA575E65A29409DD8C1D93B72B086DEA1FF
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:39 +0000
ROA not before: Mon 26 Sep 2022 07:56:39 +0000
ROA not after: Mon 25 Sep 2023 08:01:39 +0000
asID: 59282
IP address blocks: 2400:d680:a1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:fb:6d:a5:75:e6:5a:29:40:9d:d8:c1:d9:3b:72:b0:86:de:a1:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:39 2022 GMT
Not After : Sep 25 08:01:39 2023 GMT
Subject: CN=8B4E39A8680618AF8907A346F0468B414137A186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bf:44:f7:c1:71:60:41:c5:ef:0f:c4:8d:23:
bd:df:7d:80:d8:f7:1a:d1:e1:d1:fe:57:46:94:4e:
fa:ac:db:94:89:2c:a1:65:86:f9:78:84:79:8c:ff:
3d:bf:2c:de:0a:b4:3d:30:7a:38:7a:54:5a:6d:9a:
c0:19:16:e4:9c:21:45:7f:f6:ca:c1:b1:a4:11:80:
2d:ab:46:43:66:24:80:83:02:99:83:8c:12:d6:8a:
b2:78:6a:74:56:0b:9b:32:be:c0:d9:0b:5f:32:43:
c3:72:1c:a5:ae:ce:e8:2a:eb:cf:c9:ea:22:9d:34:
69:62:84:5e:ae:54:46:7d:9d:55:2c:45:34:fa:84:
08:09:ca:d1:f7:8d:f0:9c:d0:7c:eb:97:c1:9c:a5:
a2:f4:4c:cd:a1:dc:72:f3:e8:84:37:85:40:1e:a6:
60:ae:e4:c6:c2:b6:6c:5b:2f:b1:33:14:fc:b7:fc:
5e:d1:ad:e8:3d:bb:9f:e8:51:bd:c3:ea:27:b5:9e:
0e:dd:b9:6a:3b:dd:80:f5:d4:89:a7:76:b3:b5:a7:
57:86:a1:d3:5b:a0:98:94:35:81:4f:a8:bf:b6:9c:
b8:e6:c2:d3:1e:b0:ab:15:46:ca:4c:81:7d:64:60:
a1:e4:ad:0c:76:24:17:85:ea:66:20:53:1a:2e:e7:
d4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:4E:39:A8:68:06:18:AF:89:07:A3:46:F0:46:8B:41:41:37:A1:86
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:a1::/48
Signature Algorithm: sha256WithRSAEncryption
3e:1e:a6:09:95:97:7e:ad:8d:93:7b:e5:b1:69:f1:01:8d:3f:
a4:a3:ce:32:36:1f:b9:4d:33:a0:3a:f6:bd:f9:7e:38:97:52:
b8:99:28:85:72:8b:93:da:bb:e6:bf:9f:b7:cb:06:cd:56:41:
6b:97:0d:37:fd:28:1d:53:bc:18:86:9c:eb:c6:9c:72:d2:af:
38:b2:58:71:ab:fc:3c:04:6b:82:7a:8a:20:b0:04:b4:b4:72:
1f:1c:33:bb:0b:8f:38:d3:93:e4:75:90:ee:2e:bb:13:32:12:
a0:37:6c:29:ed:dc:7a:dd:39:0e:50:58:fd:74:c1:6d:fa:6c:
ab:53:25:04:62:77:b7:fe:1d:54:69:92:fd:10:d3:61:d9:fd:
49:b9:50:3d:b3:c1:14:b2:04:39:ad:28:c7:1d:8b:67:86:d7:
53:1a:b1:7a:18:40:1b:b0:67:5f:a3:8e:fd:0f:e7:73:3d:0c:
07:d8:ea:95:ee:cf:14:89:f8:eb:f0:9d:c0:81:82:e2:9c:67:
b8:80:b8:fb:08:ab:24:08:e1:d9:89:fa:76:9a:13:41:97:d9:
ce:12:fe:02:3d:60:b5:c9:b0:a4:f0:b6:c4:f8:54:0a:e1:99:
20:45:7f:ae:5a:a6:ca:3d:c4:78:73:9a:89:f8:71:0a:bf:e5:
cb:cd:15:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org