Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a66353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 1cCkHBpc0Z7fQzfhbPUPKqC9x9TMMq+V/uBWfwx5PUY=
Subject key identifier: 9F:4F:ED:9A:B1:C7:C0:25:CA:80:A3:24:0A:15:10:A2:4D:52:5B:88
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 21253EA29D458B7A63A2900F7CA5D46E46437AAA
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:11 +0000
ROA not before: Mon 26 Sep 2022 07:57:11 +0000
ROA not after: Mon 25 Sep 2023 08:02:11 +0000
asID: 59282
IP address blocks: 2400:d680:f5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:25:3e:a2:9d:45:8b:7a:63:a2:90:0f:7c:a5:d4:6e:46:43:7a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:11 2022 GMT
Not After : Sep 25 08:02:11 2023 GMT
Subject: CN=9F4FED9AB1C7C025CA80A3240A1510A24D525B88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:53:b4:cb:68:0b:f1:8d:d2:68:e7:45:d9:32:
17:a2:ac:c7:d7:58:01:a6:6f:51:a9:c0:e3:bb:79:
96:2f:3b:c5:7a:79:20:8b:fd:82:46:1f:bc:52:28:
9f:b3:36:61:82:e7:c8:1e:35:29:76:90:d0:0c:33:
c1:8a:c5:a6:e7:1a:f9:95:a2:80:0e:bc:b1:fc:87:
19:f7:70:35:4b:47:c5:19:aa:87:93:75:61:18:8c:
34:05:69:88:2a:4d:61:b9:cb:1a:99:e4:1a:ba:98:
57:52:60:9c:21:ba:b4:86:c2:ff:1c:3e:d0:de:06:
67:9b:5b:8e:45:80:f9:d0:61:08:ff:d1:ee:a6:37:
b0:76:d7:fd:17:cd:3b:27:61:dc:6f:6a:1b:dd:63:
c3:74:32:5e:4f:7c:20:df:43:54:9c:da:c9:57:d7:
44:e3:18:c0:0b:06:b5:bd:e0:a4:85:27:56:54:a8:
ad:81:73:9e:27:ce:6a:bc:39:c8:83:32:aa:c4:28:
80:b8:0b:77:de:11:ac:e1:39:d6:0f:a1:e9:e6:a4:
18:a1:ab:bc:c3:9c:3e:6e:03:01:cc:7b:7e:ee:6e:
53:9a:7b:3c:a1:f1:a6:b6:4f:25:be:7c:d6:03:4c:
bd:97:71:b2:16:32:39:e2:bb:14:81:11:19:e3:4e:
22:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:4F:ED:9A:B1:C7:C0:25:CA:80:A3:24:0A:15:10:A2:4D:52:5B:88
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:f5::/48
Signature Algorithm: sha256WithRSAEncryption
31:30:c9:2d:47:2f:07:61:9a:83:c1:b8:17:3a:e2:b2:2b:77:
ad:c6:f3:e9:6f:ca:ca:16:11:a8:1a:01:2b:5a:59:a1:f3:57:
29:71:b7:e1:a6:0e:c3:1c:a6:ab:41:fd:9c:2e:17:07:3e:80:
7c:92:8d:83:86:38:b0:fd:31:1a:3f:ae:07:49:2a:9f:e5:bb:
3a:d5:dd:6c:c3:4f:dc:51:8b:b6:03:00:14:74:ea:b6:e5:08:
ce:b9:63:3f:b2:2f:f0:01:ca:fd:8f:57:36:d2:95:3b:48:2f:
7c:dc:51:37:1b:7c:a6:52:6d:5c:db:46:b5:7a:cb:00:d7:d0:
8e:90:c2:36:29:65:02:fb:c5:26:d1:59:31:c7:28:e8:52:ba:
25:4f:ee:23:5a:4a:34:90:11:7d:fc:13:10:a1:39:4c:0f:a2:
c4:ad:d0:68:3f:14:1e:91:7a:12:73:50:cd:54:84:04:3e:42:
b5:23:6f:ad:d6:44:9d:4f:73:f5:92:26:75:d9:a9:44:bf:fe:
03:ea:57:92:d7:b3:c8:f8:3e:bd:e0:c1:b2:da:7b:ae:0a:c3:
2d:3e:42:f6:3e:a5:c5:84:cf:1b:2a:d0:0c:36:50:b0:63:02:
98:02:f2:96:ce:86:9f:cc:e7:64:70:85:4d:ab:36:bb:39:a4:
66:62:49:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org