Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a62313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 2TzdVSpvN+Tm8DkxMJv64zqa1Jp/E5wyuuLuNlqtGWY=
Subject key identifier: D7:7B:49:DF:88:71:75:77:91:9B:E1:39:36:CC:FE:0E:92:42:DD:9A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4AFC7AA4E54BC85A8EADF113B758885C7DE250A5
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:16 +0000
ROA not before: Mon 26 Sep 2022 07:57:16 +0000
ROA not after: Mon 25 Sep 2023 08:02:16 +0000
asID: 59282
IP address blocks: 2400:d680:b1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:fc:7a:a4:e5:4b:c8:5a:8e:ad:f1:13:b7:58:88:5c:7d:e2:50:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:16 2022 GMT
Not After : Sep 25 08:02:16 2023 GMT
Subject: CN=D77B49DF88717577919BE13936CCFE0E9242DD9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:ea:67:14:f0:0e:88:9a:b1:b7:53:f5:84:02:
91:38:8d:56:74:34:10:98:96:ad:e5:0f:0a:74:d5:
2c:33:7b:59:b4:e8:4d:02:42:68:83:ca:78:6d:46:
fe:e7:c0:7e:bf:bb:70:a5:06:3d:f6:5b:03:af:b3:
f9:01:17:c1:17:a3:e3:83:1d:60:65:39:d8:77:41:
e1:89:81:58:b9:c5:f0:4e:4b:f4:82:46:d4:aa:40:
fd:c0:b0:1d:d5:15:df:09:2f:e5:1d:e7:42:6c:dd:
91:f1:25:19:ac:8c:0d:fc:b8:59:63:8e:50:fa:0f:
45:35:a5:66:3b:0a:e9:1b:01:a1:de:cb:eb:3d:a5:
c6:60:df:32:83:70:69:56:12:f9:f7:65:7e:07:f5:
05:9e:21:3a:f2:ac:8a:1b:cc:1a:dc:05:26:f4:8d:
34:c9:0e:4b:79:1b:ff:8e:dc:c3:ac:07:4a:29:32:
7b:2b:b3:df:c7:42:b6:5e:98:63:0a:fd:60:34:55:
c5:ec:a5:04:22:60:19:a4:5f:97:c3:e6:fd:89:ee:
a4:f5:f1:06:6b:42:03:e1:51:86:16:5c:c7:1e:8a:
3f:d8:6b:c0:b6:78:4c:c9:e7:ec:d4:2c:4c:39:1b:
fa:60:37:eb:4a:f8:c4:00:61:97:65:c7:1e:a7:10:
4c:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:7B:49:DF:88:71:75:77:91:9B:E1:39:36:CC:FE:0E:92:42:DD:9A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:b1::/48
Signature Algorithm: sha256WithRSAEncryption
1c:0d:0b:3a:b2:5e:9a:13:62:ad:5f:14:3e:ec:23:ed:9a:5e:
b4:7a:20:5a:f6:f3:f9:7d:12:04:11:6f:c7:8f:6a:57:e7:68:
11:7f:c3:83:14:d4:11:db:de:20:46:76:fc:92:5b:5d:67:8a:
47:08:e0:f0:24:41:c8:5f:c1:09:ed:d0:da:39:bb:3f:73:d0:
b2:f7:f3:fb:3b:10:85:fd:e2:fa:fd:a6:c5:57:c4:fe:56:ea:
23:e5:d9:93:49:7b:35:82:4b:89:7f:57:db:a6:6c:11:6a:25:
0f:1b:8e:fd:36:27:54:0b:a9:b3:a5:5a:92:6b:4e:3c:8e:e4:
7a:4c:b9:04:3e:67:8f:42:88:9c:b9:ca:c8:81:a0:77:a3:6f:
8b:5e:fe:9d:16:c9:25:7c:7b:05:ac:90:37:7a:ad:23:ba:d6:
1e:ef:2a:aa:6e:06:9d:89:f9:ac:a3:6b:50:94:17:15:95:c8:
e7:60:ac:ac:d9:ba:62:0f:bd:0d:be:d6:11:bb:a2:27:0d:93:
8f:f7:23:2a:f4:27:26:ec:f8:32:1f:8c:64:e9:68:52:03:5d:
f8:40:7a:b4:ef:61:1f:b1:c6:6e:16:03:85:e1:7f:05:14:e2:
4b:02:49:86:4b:66:89:f8:46:d9:9c:fb:33:fc:f6:78:86:3b:
2b:a9:36:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org