Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3135373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: NfxvNLC9If5K4fqPaABrYzW4saDiEpog8OoIr/uhkWM=
Subject key identifier: 45:8F:36:F3:AD:07:DA:29:75:E6:6B:B3:B1:C2:27:E1:73:8F:6C:18
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 629362C51CBD27AEE5DB55A4753BE9FD44D8520D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:23 +0000
ROA not before: Mon 26 Sep 2022 07:57:23 +0000
ROA not after: Mon 25 Sep 2023 08:02:23 +0000
asID: 59282
IP address blocks: 2400:d680:157::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:93:62:c5:1c:bd:27:ae:e5:db:55:a4:75:3b:e9:fd:44:d8:52:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:23 2022 GMT
Not After : Sep 25 08:02:23 2023 GMT
Subject: CN=458F36F3AD07DA2975E66BB3B1C227E1738F6C18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:9b:1b:71:5f:4b:b6:89:0e:6a:db:e3:7c:c4:
1b:ce:b4:65:75:46:a2:7d:d3:4c:10:12:e3:11:b8:
7c:4f:e1:60:de:a6:7a:ca:13:d4:16:0f:d8:32:df:
eb:39:41:f4:b1:e3:07:33:90:4f:e5:7c:7b:70:4f:
87:f6:77:20:93:eb:e3:14:c7:fc:28:bb:7a:13:be:
1f:86:e2:85:d5:d6:50:0a:71:cd:45:1f:66:b0:16:
6c:6b:fd:1d:b9:ca:95:85:ee:e5:22:44:a7:55:f4:
f4:97:7d:09:64:4c:9d:9d:dc:95:7d:aa:af:a2:0f:
ff:a8:a2:c7:7a:7a:d6:4d:2c:2d:5a:56:c1:60:bf:
c6:96:2d:76:c2:f8:22:b2:30:ed:2b:e6:fb:29:24:
6e:dd:81:8a:7f:db:f6:d0:5b:cf:fa:e0:fa:f0:6c:
d1:fd:38:4a:af:8f:10:9a:77:3a:a5:d1:85:47:6c:
48:c8:76:ea:55:29:e5:20:bd:13:ca:38:d9:a3:5d:
b0:62:7b:55:de:50:b5:cf:69:52:20:55:df:a8:c9:
20:d3:25:2b:29:a0:4e:51:06:de:0c:41:ba:ab:dd:
8c:7e:33:75:b3:3e:cc:d7:9a:ce:68:0f:93:89:6d:
21:e5:30:98:10:21:a3:26:ca:59:7a:de:a3:19:8c:
a7:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:8F:36:F3:AD:07:DA:29:75:E6:6B:B3:B1:C2:27:E1:73:8F:6C:18
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:157::/48
Signature Algorithm: sha256WithRSAEncryption
77:90:90:35:eb:87:c3:8b:94:c1:f7:15:ff:5e:ae:d8:17:d6:
69:92:38:4b:6b:3b:dc:cb:de:7e:be:cc:9b:2d:a6:aa:3e:9d:
40:51:00:21:72:2c:4b:94:82:63:9e:5d:6a:01:f7:31:4a:f0:
02:1c:85:15:d8:92:c7:a0:2f:65:45:85:63:ed:0c:93:43:3c:
3a:f8:af:43:b7:0b:5d:1e:b6:4b:c6:6d:e1:8a:ad:74:62:80:
a9:e4:f2:ff:b6:e8:6d:37:8f:30:ea:72:ac:32:99:fb:57:fc:
5f:90:df:bf:5f:cf:a6:5a:34:ca:06:84:cf:46:61:a1:e1:60:
a2:83:f1:ba:35:b9:fe:cb:d7:2c:9d:43:57:2f:1c:00:4d:4c:
5f:ee:3c:fc:8f:7a:a3:ff:e5:94:d2:42:c7:21:fc:11:cc:da:
b6:8f:5f:f6:51:ed:2a:f0:84:7c:57:e6:76:57:9b:a4:e5:1f:
7a:f0:33:cd:37:ac:ce:a4:98:7e:45:21:cf:14:6c:b8:ac:c9:
03:ca:54:ab:4e:2a:d1:6c:cd:16:bc:21:0b:6c:9f:2f:c6:cb:
3a:c1:94:9c:85:ab:66:d9:5a:55:53:13:75:7f:76:e2:70:9f:
9e:d2:4c:9b:54:36:f1:0b:ff:4e:b7:81:56:d4:d2:ba:17:25:
fb:50:7b:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:03:22 2025 by rpki-client