Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a66373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: bj3Uf4ODgfpF5pkl03MmQt2z+HUNb24o7cwnn5ShyeY=
Subject key identifier: C7:C2:26:BA:86:D6:F6:52:23:E8:26:53:05:94:1D:07:B2:1D:D3:6E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 04190272B33184544CA396DDA8EC01923879457B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:20 +0000
ROA not before: Mon 26 Sep 2022 07:57:20 +0000
ROA not after: Mon 25 Sep 2023 08:02:20 +0000
asID: 59282
IP address blocks: 2400:d680:f7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:19:02:72:b3:31:84:54:4c:a3:96:dd:a8:ec:01:92:38:79:45:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:20 2022 GMT
Not After : Sep 25 08:02:20 2023 GMT
Subject: CN=C7C226BA86D6F65223E8265305941D07B21DD36E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c3:14:47:2f:cd:d8:dd:85:42:74:11:88:30:
c0:67:78:32:4c:18:d5:c3:a0:62:5b:e8:cc:dc:10:
69:e3:f3:e5:f9:3d:68:71:fa:3b:1d:bd:ee:92:f9:
58:53:a6:28:e8:af:6a:e5:e2:9b:84:f3:a7:6d:94:
f1:c1:99:74:9f:0b:a4:d9:be:55:a1:1f:0e:7f:6b:
fe:ae:0c:49:b2:0c:b6:a0:63:fc:06:e3:bf:98:00:
78:c7:39:8e:42:f8:eb:6a:11:42:44:2a:bd:74:34:
6f:7b:51:cb:1f:54:02:3e:93:79:0e:12:3d:b0:52:
0a:bc:d4:df:80:a0:a2:07:07:10:48:d3:9b:3c:8c:
d9:2c:ff:7c:db:76:61:f5:38:35:5f:d7:39:cc:8e:
54:52:44:13:98:27:69:27:1f:e7:f9:a5:47:91:45:
db:db:e6:08:54:dd:9d:e0:23:41:89:eb:ce:0f:79:
05:0a:77:82:4c:c8:1b:ec:8b:21:51:54:a4:26:88:
fe:f3:5e:49:7a:fc:98:1a:34:fb:d5:32:9a:5d:c6:
ad:1f:11:d8:17:70:01:df:a3:37:88:ec:83:0d:4a:
89:39:d3:73:58:3b:47:7a:f1:1e:1c:71:d2:16:ac:
ac:f7:28:eb:d9:b0:51:9b:d2:1f:36:00:6e:69:64:
ff:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:C2:26:BA:86:D6:F6:52:23:E8:26:53:05:94:1D:07:B2:1D:D3:6E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:f7::/48
Signature Algorithm: sha256WithRSAEncryption
98:3f:5d:d0:91:fb:33:bf:74:5c:79:26:cb:c3:aa:63:d1:9c:
c8:59:59:1c:bc:27:d1:e3:da:08:14:b8:34:57:7c:24:89:f6:
45:e3:a2:54:e1:be:a9:7b:1e:9f:70:2f:ef:d5:da:c2:4b:51:
68:53:27:57:ce:da:4f:85:b5:52:2f:6c:2b:41:86:04:8e:71:
d3:e7:d4:45:db:04:45:94:11:a6:68:f4:ad:7c:e5:05:0d:1a:
ed:2c:c3:2d:e5:c2:b0:ba:c1:63:f5:0a:43:1d:6b:bd:d0:4c:
fa:db:81:3b:13:2c:e8:3e:2b:8b:ee:03:67:77:a8:09:2b:80:
c4:66:b7:e8:34:fe:c1:91:22:28:8f:c7:bb:cb:f3:7d:d0:ff:
26:71:37:93:f2:af:ed:18:78:27:ec:1f:91:ce:c9:78:6a:45:
81:1e:2d:24:30:1a:af:7f:ac:ce:04:8c:2a:ed:7f:83:58:f5:
a9:25:93:ee:6f:91:03:ba:a9:b0:d4:0a:9e:e0:7f:46:44:fa:
f2:89:f4:94:68:5f:69:c7:fc:91:dc:d9:ea:15:ba:f1:3d:a6:
69:fc:b9:36:f1:ca:12:dc:8e:96:4f:18:51:10:10:e5:63:b7:
ae:86:ea:ac:39:57:bf:fc:68:20:79:67:1d:b8:40:e7:77:67:
01:8a:b7:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org