Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a63363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 5ZcapI1osmczgskjb4m34rkhGfC3jg07v5sM9OnaYXg=
Subject key identifier: 89:DC:F5:0E:6A:56:93:08:4A:D8:5C:DC:7C:A0:FB:43:E9:17:3B:E5
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5DCD8F0BD454702049F11172C4126F885F18A960
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:25 +0000
ROA not before: Mon 26 Sep 2022 07:56:25 +0000
ROA not after: Mon 25 Sep 2023 08:01:25 +0000
asID: 59282
IP address blocks: 2400:d680:c6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:cd:8f:0b:d4:54:70:20:49:f1:11:72:c4:12:6f:88:5f:18:a9:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:25 2022 GMT
Not After : Sep 25 08:01:25 2023 GMT
Subject: CN=89DCF50E6A5693084AD85CDC7CA0FB43E9173BE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c0:49:09:cd:b9:3c:f7:d5:39:7c:e3:d6:f1:
3b:da:dc:b2:6f:1e:f0:1f:d4:cc:4a:5b:1b:81:da:
f1:18:58:f2:0c:20:bf:c4:70:59:e3:e4:1e:97:31:
ad:e6:82:fa:4f:dd:7d:cc:3b:24:8b:19:2a:bd:d5:
db:19:34:e2:1e:d5:4f:51:f9:99:be:4f:ab:1b:27:
fb:20:3e:e7:10:2f:8c:2f:93:cf:17:2f:ad:57:ac:
1e:98:ca:09:02:aa:cb:28:a6:72:69:ca:32:df:ef:
46:b9:d2:31:8b:97:d7:d7:75:4e:b9:57:f4:98:d0:
74:16:67:4f:3b:3a:07:d8:e9:19:62:d5:45:5d:b4:
44:11:dd:dd:65:21:bf:05:a4:24:d8:cb:47:d4:2f:
b2:cc:d7:f1:47:62:c3:90:8c:17:37:ae:54:33:65:
e3:82:af:06:51:34:37:8d:dc:a7:f2:0c:84:e4:4c:
0c:d0:81:23:75:70:a8:c5:9a:8d:7f:24:1c:6f:cf:
c3:6e:6c:99:b9:5e:61:64:c1:9a:1f:44:cc:36:11:
10:16:d7:38:f3:15:47:95:6c:cf:d1:49:4c:d9:00:
12:bb:b4:8e:be:d3:ad:d7:65:a0:ac:dd:2d:9c:c3:
6c:77:8b:63:37:28:ae:a5:5c:a6:59:21:4c:45:47:
c2:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:DC:F5:0E:6A:56:93:08:4A:D8:5C:DC:7C:A0:FB:43:E9:17:3B:E5
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:c6::/48
Signature Algorithm: sha256WithRSAEncryption
87:96:97:10:bf:0c:c9:d2:87:5c:f1:35:cd:45:d3:ba:80:75:
58:2b:ff:80:19:8e:27:3e:e3:22:3a:c9:d6:ad:7d:bf:61:8a:
1c:66:a9:f6:91:c6:46:38:3a:fd:eb:63:0f:0f:49:c6:24:6d:
28:da:ef:ba:c3:0e:b5:0c:a5:a8:23:17:53:72:a0:04:75:2a:
74:0e:41:4d:af:ab:9f:a0:9f:80:ed:d7:c8:8c:ed:e7:f0:06:
af:d5:87:49:61:81:d7:82:6e:e6:e5:bb:02:a3:7e:8a:fb:ab:
bf:d2:12:35:d3:eb:48:18:8d:5f:55:00:0b:5e:ab:57:0e:2c:
ea:e5:a1:e4:10:52:31:3c:fd:f0:60:b7:d9:b0:ad:d6:4d:dd:
ac:bd:4b:b0:30:6b:ac:a3:ae:2a:ff:83:fa:1e:d1:8d:a7:30:
16:98:57:8a:26:c3:b8:e8:7d:ab:47:83:e0:99:93:8f:19:4b:
7e:5a:36:6d:f4:62:ed:3c:a5:3d:4a:56:0d:0b:ff:ee:61:fe:
a3:3a:2b:eb:bb:96:52:78:30:67:bf:a7:26:8d:31:bc:ee:c1:
f0:f8:61:3a:18:0d:67:a7:6f:cd:55:c3:0b:01:8a:d9:c0:2d:
6f:b2:63:9b:8b:83:ac:47:89:c6:f8:f6:16:f7:c7:c4:41:ac:
1b:10:7a:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org