Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a65663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: sxGwp9fdgLLpdywEUKmhfQgDH4N6G+mdpBQfk5h5Bag=
Subject key identifier: F5:8C:BD:2F:5B:54:A7:0E:40:6D:76:14:0B:4F:15:29:78:BB:A8:E0
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1AFF65A12E90C3BA20FD44F8BF43EBC260285CA9
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:37 +0000
ROA not before: Mon 26 Sep 2022 07:56:37 +0000
ROA not after: Mon 25 Sep 2023 08:01:37 +0000
asID: 59282
IP address blocks: 2400:d680:ef::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:ff:65:a1:2e:90:c3:ba:20:fd:44:f8:bf:43:eb:c2:60:28:5c:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:37 2022 GMT
Not After : Sep 25 08:01:37 2023 GMT
Subject: CN=F58CBD2F5B54A70E406D76140B4F152978BBA8E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:28:97:2f:45:e9:74:c7:eb:17:bb:a8:97:5b:
1c:86:32:56:b7:b7:46:fb:17:7a:0d:c9:e2:b7:ec:
f8:1b:ca:b7:3a:d8:60:62:3b:70:d2:e2:75:88:4b:
4d:4a:ca:8d:da:b7:36:7f:35:70:fc:b6:b2:22:16:
ba:ab:6c:07:40:91:9e:f2:ec:e0:89:ac:92:ce:db:
a0:a5:01:92:64:9d:63:1a:96:1e:c8:01:a1:34:59:
63:cc:49:35:26:16:3b:a2:47:34:ce:3e:a6:1a:21:
92:64:79:3d:5e:fc:cd:13:16:7a:8e:79:fe:60:73:
32:8a:85:1e:c6:19:63:2d:7e:8b:59:69:8a:dd:19:
27:43:c9:3d:00:52:cd:c7:7c:e0:5b:2e:c9:7f:cd:
d5:96:6a:1a:5c:94:c9:4d:8e:f9:c4:71:af:71:4e:
bf:48:80:03:b8:f0:a6:0e:86:38:37:f7:a9:d6:ec:
68:c1:2a:4b:ec:9a:aa:20:e3:ca:be:f9:c1:7b:7e:
a7:13:4b:f5:9e:d6:a3:dd:8a:0f:88:bb:fb:5a:77:
0d:a8:f4:e9:24:06:20:bb:59:e2:65:da:2e:be:e7:
40:66:a1:2e:c3:0a:ff:14:fb:6f:cc:c0:82:09:ee:
0a:8a:6e:7d:f9:85:0c:98:91:aa:90:a0:d0:dc:31:
08:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:8C:BD:2F:5B:54:A7:0E:40:6D:76:14:0B:4F:15:29:78:BB:A8:E0
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:ef::/48
Signature Algorithm: sha256WithRSAEncryption
70:83:c5:09:5f:4e:de:a7:7a:36:55:ca:5b:58:f4:c3:e6:53:
66:7e:ad:60:c2:5a:16:d0:b0:11:46:4c:eb:b0:19:41:53:40:
d8:e2:03:ef:b9:a1:ae:44:4a:b4:57:5b:4d:3f:c3:a8:bb:ca:
97:2d:90:23:a4:46:92:87:d0:a7:2b:8a:46:f6:4a:9d:70:3a:
f7:cf:54:db:a6:9c:c7:c8:99:2e:4e:e8:7a:71:44:b6:5c:74:
48:13:62:20:65:ee:d7:50:cd:9d:59:8a:58:ae:c0:76:f0:d5:
84:92:23:8c:f1:9d:8d:a2:5a:67:45:7a:31:d5:1f:09:7c:ea:
d6:1a:99:f6:39:6a:2e:ac:e4:57:07:0e:a0:59:35:21:c7:d5:
3d:da:d3:27:5a:fd:b7:0a:93:37:58:14:e2:94:b2:52:7a:9c:
27:e9:57:b4:8d:aa:59:df:0e:ad:cf:7d:f1:31:86:c5:96:05:
8e:9b:d3:72:8f:4f:be:04:bd:a2:07:0a:0e:ab:81:9d:30:3f:
38:4a:a6:04:17:18:13:23:e3:78:4e:c1:a5:0e:8b:21:5c:8b:
8a:b1:62:a3:2c:5b:84:ae:45:ae:68:c4:c4:51:e7:04:08:6c:
04:4b:9f:47:02:94:5f:cb:f6:7b:61:9c:66:b2:d2:b1:c2:f8:
97:74:b5:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org