Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a3a2f33322d3438203d3e203535373031.roa
File: 323430353a623930303a3a2f33322d3438203d3e203535373031.roa (raw, json)
Hash identifier: jUlL/fyQ0hTjA2Bkq5MeaE46f35O8g+43zj2mMGPMg0=
Subject key identifier: 2A:10:39:B5:94:17:81:07:04:F8:17:D4:D3:0A:B5:8B:2B:90:3A:41
Certificate issuer: /CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A
Certificate serial: 2202F85359FA4DADDA7FECD9FFA5915A17173712
Authority key identifier: 8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a3a2f33322d3438203d3e203535373031.roa
Signing time: Sat 25 Sep 2021 22:03:45 +0000
ROA not before: Sat 25 Sep 2021 21:58:45 +0000
ROA not after: Sun 25 Sep 2022 22:03:45 +0000
asID: 55701
IP address blocks: 2405:b900::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:02:f8:53:59:fa:4d:ad:da:7f:ec:d9:ff:a5:91:5a:17:17:37:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A
Validity
Not Before: Sep 25 21:58:45 2021 GMT
Not After : Sep 25 22:03:45 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:83:b6:87:8c:59:d0:74:7c:77:d8:40:cb:66:
7c:5b:04:04:cd:ec:89:92:8c:dc:8a:2c:a4:3f:2b:
ef:2e:64:5f:2e:b1:2a:e7:40:c8:f5:07:7a:0a:74:
60:fc:2f:6c:46:a7:f9:30:8f:f3:27:49:04:af:45:
4f:b4:c3:4e:cf:5d:82:4c:a9:ac:6b:2c:6d:c6:d4:
44:f5:3c:f9:b0:69:bb:ad:b6:b3:c3:52:0b:54:50:
13:ec:3f:ef:0d:5a:6a:32:d9:63:df:95:b4:78:da:
2f:a8:af:ad:58:2d:ff:fa:01:84:c1:34:89:3d:cd:
4f:e0:38:09:81:de:4e:d1:4b:ac:17:d0:a4:2b:25:
4c:4d:ff:fe:33:39:94:d0:bc:61:36:ea:bb:07:90:
1d:c7:02:d2:cf:53:18:8d:c1:1f:9a:4a:c8:1d:02:
58:94:16:33:08:17:11:a9:27:32:de:82:c0:4e:f0:
e7:3d:7b:71:0f:25:56:71:94:06:2d:4c:3f:ba:5d:
da:b6:4a:e8:a8:49:77:17:41:57:ff:6e:02:17:89:
51:6d:7e:db:5a:6a:41:c1:79:e7:56:ee:56:c1:41:
d6:39:5f:2f:44:7b:44:37:94:7c:9d:b2:51:e3:ee:
c9:e1:6a:a7:49:aa:96:5b:24:50:6b:c7:8a:a9:08:
c5:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:10:39:B5:94:17:81:07:04:F8:17:D4:D3:0A:B5:8B:2B:90:3A:41
X509v3 Authority Key Identifier:
keyid:8F:84:D6:FE:EA:F8:C5:D3:C5:D1:3F:10:1B:C7:0B:75:8B:F5:0F:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8F84D6FEEAF8C5D3C5D13F101BC70B758BF50F6A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/27d9f851-7e73-4384-950e-8be8e15fd3ee/0/323430353a623930303a3a2f33322d3438203d3e203535373031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:b900::/32
Signature Algorithm: sha256WithRSAEncryption
27:33:e7:94:d8:5d:4d:0f:01:6e:2e:dc:03:1c:2d:d0:4f:7e:
68:74:72:7a:1c:16:9d:5e:16:27:9e:4e:39:dc:e2:66:8b:43:
a9:ab:a7:e0:51:50:33:a8:07:a3:08:65:da:3e:9d:43:a2:55:
88:b4:26:6e:cf:44:53:bb:2d:bf:63:45:fe:95:dc:c8:37:88:
2c:ec:45:8a:7b:c3:05:3f:49:b9:7f:c5:82:94:e3:1b:38:bf:
54:5e:68:e6:15:47:8f:0d:7f:5e:75:49:d2:c1:09:59:ce:51:
e0:2a:06:3e:df:ef:7e:f3:b5:a3:88:50:66:eb:a8:8d:fe:b6:
64:93:62:df:29:9c:b3:61:67:48:9f:03:4b:12:09:07:1f:fd:
7d:b9:98:ae:87:0b:d4:88:e9:10:bc:79:f0:bf:4b:bb:96:3f:
39:6f:25:97:2a:22:53:74:1d:a5:69:58:ff:d7:9b:3b:9a:f4:
df:b9:7c:df:17:ac:08:ba:66:88:82:04:5e:8c:38:92:7d:19:
ec:7c:a7:0c:76:61:6b:35:4e:fa:5e:27:26:76:95:c5:32:72:
39:18:04:74:14:a8:d7:7a:f2:70:4f:08:1e:d6:65:cf:02:fc:
17:04:ad:c8:65:72:74:2a:42:cb:ea:fb:47:84:f6:65:3a:22:
f9:6c:17:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 1 00:36:26 2025 by rpki-client