Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a62643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 58P82qhrvuvkJIiUBe4B8miY8qFWFvXgcAlKaAFdhzc=
Subject key identifier: 86:ED:1E:25:DD:13:AA:48:F3:1F:18:FB:DB:D1:FD:50:40:F8:BF:F5
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6CF9E723A2503F5BE3AD4BA3515B16AE413BDE5C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:46 +0000
ROA not before: Mon 26 Sep 2022 07:56:46 +0000
ROA not after: Mon 25 Sep 2023 08:01:46 +0000
asID: 59282
IP address blocks: 2400:d680:bd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:f9:e7:23:a2:50:3f:5b:e3:ad:4b:a3:51:5b:16:ae:41:3b:de:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:46 2022 GMT
Not After : Sep 25 08:01:46 2023 GMT
Subject: CN=86ED1E25DD13AA48F31F18FBDBD1FD5040F8BFF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:5a:38:e1:75:8c:f4:34:25:a0:db:0a:4d:1e:
6c:33:2b:2d:a7:f0:bb:8e:88:2f:87:60:83:fe:ad:
8f:14:08:48:87:03:ed:b6:b2:48:0c:cd:6d:ed:90:
5c:be:fd:a9:f6:8f:b1:3e:42:bf:ca:69:8a:f6:14:
03:b1:d2:a2:2d:0f:0a:9b:77:6a:12:ce:c5:86:e3:
25:c1:54:68:a4:e1:af:6e:50:81:63:a2:71:6c:63:
8a:6c:95:a2:8d:da:53:ac:b0:16:72:11:b4:29:0c:
a9:2d:e6:ab:b7:1f:3a:8c:68:95:74:5a:d7:4b:a5:
6f:bf:3b:5d:89:b2:45:82:7e:01:68:75:a4:dd:ff:
25:ea:d3:e0:f7:61:45:b2:82:49:6b:5d:ec:22:28:
59:5d:40:8e:25:9f:84:72:f1:ba:a4:ee:91:6b:28:
98:97:c5:29:aa:c3:6e:6a:b9:66:d5:42:a1:c1:fc:
32:37:70:48:5e:41:dd:8b:f3:cd:ca:99:6b:d8:1b:
86:ed:b4:c7:4f:0e:64:4f:80:13:6b:73:af:43:7e:
2b:02:0f:13:62:56:b5:dd:46:48:99:a7:cd:61:e2:
8d:c6:61:4d:22:c6:ce:60:e2:34:5f:97:8d:ac:8f:
cf:c0:43:5b:6a:0e:0d:64:55:52:73:2f:86:34:91:
bd:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:ED:1E:25:DD:13:AA:48:F3:1F:18:FB:DB:D1:FD:50:40:F8:BF:F5
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:bd::/48
Signature Algorithm: sha256WithRSAEncryption
07:7a:3f:71:c8:aa:48:f7:85:bf:0f:e5:06:90:8c:66:01:eb:
13:15:f9:36:ef:3f:ba:95:c7:22:d1:7f:f4:da:85:b9:fa:41:
2e:bd:22:d2:5f:91:00:a6:a5:a6:66:23:a4:d7:a3:3e:51:7a:
cd:2a:39:58:20:bd:27:c2:1d:cf:06:d3:67:c3:2f:dd:5a:43:
4d:93:19:fe:ca:1e:9c:64:78:4e:23:f2:92:a9:4b:96:95:70:
64:53:48:0c:43:c5:b0:a0:21:f2:51:74:6e:05:16:fa:bd:23:
bb:ea:ce:f2:18:c2:09:e0:01:14:a0:72:80:b6:51:84:09:df:
bc:8b:7f:c3:a5:ea:a5:f8:2e:0a:0c:ce:93:06:7f:e0:37:21:
c2:c8:2b:de:db:34:2f:ac:5e:8d:5f:c0:5a:89:66:3b:3b:80:
69:66:82:3c:34:e2:9d:ff:de:8d:2f:55:b2:bb:8a:0a:50:16:
93:2b:70:7c:6e:2c:52:6c:b6:2f:9c:bc:75:31:ee:64:cb:ed:
65:e6:f0:1e:ba:dc:1a:7b:e9:09:db:16:3d:f5:8b:b2:47:12:
f7:db:34:a0:5b:2e:04:0a:b5:2d:41:a6:7a:f5:e8:94:99:30:
17:f3:74:0e:91:97:2d:a5:cc:b0:a0:50:63:7a:25:98:fc:f6:
07:49:e6:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org