Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a64393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: G/ddu3s1DlMOdJFQ0KmIO+Pit9GKishUZR28rCLsMqc=
Subject key identifier: 77:25:12:54:9E:9E:E2:53:E8:84:15:E2:81:D0:87:86:B2:4E:29:28
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 196FC3CA328ED90FC0256C0CDC9CA7EED8A11366
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:17 +0000
ROA not before: Mon 26 Sep 2022 07:56:17 +0000
ROA not after: Mon 25 Sep 2023 08:01:17 +0000
asID: 59282
IP address blocks: 2400:d680:d9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:6f:c3:ca:32:8e:d9:0f:c0:25:6c:0c:dc:9c:a7:ee:d8:a1:13:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:17 2022 GMT
Not After : Sep 25 08:01:17 2023 GMT
Subject: CN=772512549E9EE253E88415E281D08786B24E2928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:32:57:3b:9c:07:fa:e1:d8:31:01:16:a4:70:
bf:08:b3:2c:2f:94:4b:c2:18:6a:f6:03:1a:c9:ad:
dc:9f:0e:0a:b1:58:12:6f:4a:f4:a2:c2:b8:ee:02:
57:46:47:0d:57:0c:1e:ae:18:e7:89:97:f4:14:2b:
35:30:29:ae:e4:35:a5:ab:72:77:d1:28:2c:54:46:
a4:a3:05:ff:dc:91:13:e7:04:fa:d7:19:31:89:4b:
a6:15:f7:44:41:ce:f9:9f:47:82:af:cb:c3:7c:76:
1b:e9:f5:2b:cb:7f:17:22:83:94:73:56:64:ad:0c:
28:34:9c:b1:a5:b0:44:a0:05:07:c1:17:c7:8f:b8:
89:53:c3:b5:09:1a:53:8d:94:f8:da:cc:4e:a7:9b:
10:34:69:45:48:5b:17:4d:17:c5:c6:2b:27:d4:34:
54:50:cb:c2:f4:93:99:53:bb:9a:57:7e:a8:0f:79:
d4:e8:c5:a7:e1:af:75:33:77:33:85:e3:2c:2a:17:
96:cb:1f:77:75:78:ef:51:32:f6:89:ba:71:88:65:
b8:34:03:d9:96:f5:a8:59:dd:a1:a7:e4:57:88:72:
41:fe:98:ac:4e:27:ba:07:c1:1e:c2:85:7a:5e:30:
13:88:d2:d8:70:0a:c7:ae:15:33:e5:a8:08:1e:da:
8f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:25:12:54:9E:9E:E2:53:E8:84:15:E2:81:D0:87:86:B2:4E:29:28
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:d9::/48
Signature Algorithm: sha256WithRSAEncryption
10:54:38:4f:d0:b0:9a:42:93:47:f9:cb:da:77:08:26:33:b1:
36:3f:c4:87:11:05:41:77:2a:8a:f9:ef:6f:aa:d9:33:ed:ae:
a4:62:12:5d:c4:c5:a3:69:c0:ec:a2:60:02:bf:58:82:d6:e4:
60:fc:fc:bd:f8:92:51:03:bf:7e:55:69:69:5a:f3:1e:0c:e6:
df:2a:8b:ae:53:19:7a:0e:91:42:f5:92:2f:46:9c:8e:13:ed:
4e:d5:77:3d:9f:60:b6:c1:af:da:bf:24:e0:57:0d:c3:db:9c:
04:f0:16:76:70:28:4a:61:56:2a:12:b5:d2:57:2a:4b:8f:8b:
14:bc:98:09:b0:25:7b:d1:de:81:27:9d:82:ae:8a:3a:00:6e:
c2:04:21:15:02:33:12:a9:da:a9:df:70:9d:fb:fe:0a:95:ab:
ff:e2:80:2a:f0:13:df:ab:4d:a4:bc:59:e5:87:88:65:f3:ae:
b6:4f:8c:e6:3b:00:22:b2:62:6a:f4:f1:62:ce:bb:cd:62:95:
15:9c:a0:35:b8:1c:76:4a:12:8d:03:29:62:b5:3b:8d:26:3a:
cc:84:ff:56:57:cc:76:92:84:31:10:23:0a:9e:40:da:dd:d5:
fb:68:24:45:41:ea:d9:0d:35:86:86:f6:ac:39:41:7c:c5:3f:
b5:78:16:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org