Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a62393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ysEWAn+zGSwJqMHIJkRgiYxihqJXXfMBQMp+JK/Qc8c=
Subject key identifier: 84:86:06:69:85:BC:EB:C5:EF:E1:17:B0:3D:FB:F0:EB:23:96:8B:A8
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 615BDA09CC18E4DE2946B661A6085F21964C38EB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:37 +0000
ROA not before: Mon 26 Sep 2022 07:56:37 +0000
ROA not after: Mon 25 Sep 2023 08:01:37 +0000
asID: 59282
IP address blocks: 2400:d680:b9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:5b:da:09:cc:18:e4:de:29:46:b6:61:a6:08:5f:21:96:4c:38:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:37 2022 GMT
Not After : Sep 25 08:01:37 2023 GMT
Subject: CN=8486066985BCEBC5EFE117B03DFBF0EB23968BA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:e7:74:8b:88:e7:23:30:6d:1f:8a:85:cd:85:
df:ff:32:0b:20:3d:f1:08:52:8f:6f:9e:b8:2a:47:
de:10:31:f6:82:f6:46:cd:a2:c8:d7:93:21:2f:60:
a7:b7:38:c8:76:51:ac:b7:14:6f:18:e5:eb:a5:cc:
b0:81:a5:07:06:4c:52:b9:44:41:42:16:a7:63:4c:
21:18:81:d4:48:1f:8e:be:8e:3a:97:b0:39:6c:2b:
54:2d:2e:90:cc:11:88:10:18:61:a7:a5:20:5f:09:
ce:65:dc:a6:45:1a:7c:8b:90:b1:cc:cd:45:57:61:
ca:2b:bc:48:62:cf:29:98:b0:aa:ad:3b:1d:9a:d7:
20:ff:b9:26:15:39:17:d4:4c:44:07:6b:e6:01:1b:
94:c9:f0:4f:91:f9:23:0f:21:98:cc:70:e8:41:98:
bb:cc:4b:65:5e:64:69:70:e4:6d:40:a0:39:ef:2c:
e7:df:82:cf:53:15:b6:a5:4a:06:29:7a:5a:fd:6f:
e0:2d:27:5d:d1:df:74:70:e1:76:45:b9:93:a3:5a:
d0:00:29:e7:8c:d1:40:75:b8:b3:67:26:bc:f2:12:
cd:f6:d4:09:01:6e:ef:65:fa:f7:37:fd:00:0a:5f:
9e:85:90:e7:69:ee:c7:71:66:34:99:0f:02:7b:9b:
52:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:86:06:69:85:BC:EB:C5:EF:E1:17:B0:3D:FB:F0:EB:23:96:8B:A8
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:b9::/48
Signature Algorithm: sha256WithRSAEncryption
1a:52:0b:ac:66:bb:9c:37:24:32:cc:b5:01:21:f7:ae:61:7b:
8c:f8:22:0f:db:9c:1f:ae:3f:09:8d:e7:f0:f9:5d:9e:18:1f:
c6:b3:cf:2d:a4:c1:9c:05:38:49:82:18:98:d6:77:4f:18:2d:
00:b7:6c:55:cf:f4:a4:80:fd:00:22:4a:86:22:0c:09:86:61:
75:d5:b3:69:43:7c:82:fa:67:a7:38:42:fe:32:fc:c5:0d:f3:
be:30:9c:45:8a:2e:1a:8d:f3:a7:d0:0e:33:3f:6b:3b:56:be:
0b:13:56:99:5a:f5:f2:b6:9b:7a:48:6f:bb:ee:7e:c6:86:24:
f8:07:98:ad:20:63:16:7b:43:83:07:02:cb:80:88:a3:2f:b3:
ee:7b:5e:3e:c7:7c:8a:b5:52:92:8a:67:04:7e:c3:58:18:d3:
98:f3:7b:f6:81:d2:14:6f:57:77:ea:be:94:e1:23:79:2a:ea:
de:bc:10:1d:71:96:af:7e:6d:27:ea:54:64:d8:f5:a3:9e:b6:
58:2b:0c:f3:ee:60:50:41:9d:46:1e:f2:a4:0a:2d:85:d8:d6:
ae:7f:06:0f:9e:97:72:63:e5:7b:af:75:a3:0f:58:83:2e:31:
35:c2:51:5a:b3:29:72:a7:cd:04:6c:a0:f0:3d:f3:1f:21:46:
1c:08:a1:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org