Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a64313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: KXX9gX79UqZXs6PnOX0yHXYh44/WiwK62hVa0wJNVLM=
Subject key identifier: 14:F6:ED:3F:F7:2B:DE:6A:D0:43:FD:0C:CB:B6:51:4F:F2:FD:55:C0
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3ACC65CBF97B21720506D8FDFE12CC3A205D09BB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:28 +0000
ROA not before: Mon 26 Sep 2022 07:56:28 +0000
ROA not after: Mon 25 Sep 2023 08:01:28 +0000
asID: 59282
IP address blocks: 2400:d680:d1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:cc:65:cb:f9:7b:21:72:05:06:d8:fd:fe:12:cc:3a:20:5d:09:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:28 2022 GMT
Not After : Sep 25 08:01:28 2023 GMT
Subject: CN=14F6ED3FF72BDE6AD043FD0CCBB6514FF2FD55C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c4:64:a0:f3:5c:da:29:cb:8a:78:05:c9:55:
f1:f0:58:ea:57:83:2d:26:4b:27:e8:83:ad:80:af:
09:e1:0f:14:4b:e2:ae:27:76:2a:d0:b5:2d:f0:80:
04:02:5e:64:2a:0b:36:b5:26:bb:26:e9:6c:d5:f9:
da:9e:25:97:88:62:80:ec:f1:1c:fb:eb:b5:50:e3:
6b:3e:9c:18:d7:9e:86:54:72:62:b3:8c:e6:1c:97:
05:31:2a:33:44:6b:8d:14:e5:86:17:59:2f:9a:f6:
d2:9c:4e:14:77:53:dd:96:a0:cf:07:49:59:ef:c0:
6f:c5:cd:64:90:6c:5b:cd:5f:a6:40:92:69:5b:2d:
a7:8f:41:13:f0:a0:f0:a4:98:c4:44:fc:dd:4f:4a:
55:93:72:16:42:cb:b6:da:1e:21:f7:c2:42:e4:6b:
76:47:49:ee:81:1f:4d:63:1c:7b:7e:72:69:1a:cb:
17:46:2f:0a:7f:3d:fc:6f:ab:b5:07:84:a5:18:a9:
89:b4:f6:97:3e:8b:eb:aa:df:a2:68:eb:50:e5:53:
58:9c:33:1f:d8:e9:56:6f:2c:8e:68:cf:fe:f4:2b:
39:2e:f5:f3:2c:4b:5e:4a:9d:50:87:ef:b8:4f:95:
34:f2:10:ec:21:4a:73:f1:80:71:50:a2:78:4b:c3:
58:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:F6:ED:3F:F7:2B:DE:6A:D0:43:FD:0C:CB:B6:51:4F:F2:FD:55:C0
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:d1::/48
Signature Algorithm: sha256WithRSAEncryption
09:50:9f:20:1c:3b:a9:3b:54:21:0d:27:9b:93:41:6e:d5:b6:
b6:ca:67:51:0d:6d:c2:06:d5:3c:87:73:64:9a:e2:3b:64:e2:
d8:52:75:2f:39:c8:b2:19:65:6e:b7:a9:2e:ee:04:8e:ea:33:
06:8d:32:7e:fb:53:98:3c:1a:b5:44:fe:5c:e1:99:df:33:63:
c7:4d:a7:80:ca:0b:11:c8:29:c1:fb:19:cd:fb:be:8b:3b:98:
13:ad:b8:d4:98:06:8e:e2:3e:b0:6c:be:79:b2:9f:c6:2b:2b:
6d:95:d3:f1:eb:59:2e:7e:4c:7e:11:89:06:a7:d0:b8:85:ef:
e8:bf:64:57:81:03:ac:c5:7d:7a:e7:1e:2f:c9:12:40:c5:97:
81:04:d5:b4:1a:8e:67:25:dd:e9:5a:6c:5b:ba:c3:9b:a4:e5:
6a:88:c5:d1:6c:d8:2d:b6:9b:ee:e0:a9:17:2f:6f:7f:ec:f8:
02:82:80:d9:93:09:cc:d1:53:cb:33:30:fb:5a:fd:94:74:70:
0e:0d:61:e9:0a:92:d4:b8:aa:a8:01:2a:3d:9b:00:30:8d:a9:
c8:cb:1b:4b:d4:ac:81:35:0c:dc:14:b4:27:25:d5:36:31:98:
00:55:61:6d:5b:44:37:60:cb:d4:3f:6f:c5:a7:15:a9:87:9d:
18:6b:e9:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org