Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3161623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: FbE/NfFaX6YxqIZPSWolAAl0z/9D/gQCVWCtkfAO+HA=
Subject key identifier: FB:D6:CA:38:DF:84:CD:E8:A6:D0:1B:5F:77:F2:A6:79:4A:5F:CF:97
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7A3B515518DFBD92C0904F57F2265BE0BFEBAAEA
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:19 +0000
ROA not before: Mon 26 Sep 2022 09:55:19 +0000
ROA not after: Mon 25 Sep 2023 10:00:19 +0000
asID: 59282
IP address blocks: 2400:d680:1ab::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:3b:51:55:18:df:bd:92:c0:90:4f:57:f2:26:5b:e0:bf:eb:aa:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:19 2022 GMT
Not After : Sep 25 10:00:19 2023 GMT
Subject: CN=FBD6CA38DF84CDE8A6D01B5F77F2A6794A5FCF97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1f:8d:af:db:6b:f3:b6:86:d5:68:d2:37:ae:
88:ba:04:43:02:10:e9:58:98:13:1d:36:d0:8d:4d:
c6:48:f7:df:b7:14:9c:29:2c:d3:96:b1:df:64:b6:
e9:35:44:08:27:7e:3c:15:9c:04:c4:e4:af:5c:e8:
3e:3a:df:74:46:c3:92:10:8b:eb:b0:02:86:4c:94:
e5:dd:89:30:a7:58:ec:c9:d6:d4:45:4f:a4:f7:33:
68:f7:4f:d7:e6:0a:07:45:66:3f:73:a3:98:86:ce:
a2:a2:61:d7:27:96:40:1c:54:8f:53:38:cb:a4:a0:
ca:61:18:cf:28:12:a6:99:51:83:85:2d:d5:99:73:
00:97:a4:65:bd:84:44:b2:82:01:4f:73:0c:9c:60:
ce:a0:d3:b7:03:b8:38:7d:91:4d:ad:a0:08:cf:b9:
7e:45:4e:4e:71:ee:2e:d3:af:af:6d:81:6f:e0:9e:
02:bf:15:f9:95:6d:25:31:11:dd:62:c5:25:c0:22:
33:5e:01:cc:58:9e:cb:c7:cd:69:13:9f:27:f7:36:
2e:b9:72:b4:ec:c4:c3:eb:0e:4d:68:4e:91:e8:7a:
80:07:ec:d2:55:a1:68:7f:d3:4a:2a:bb:07:6d:8e:
e5:ce:b0:cc:96:51:bc:3e:30:23:d5:36:64:42:7d:
6d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:D6:CA:38:DF:84:CD:E8:A6:D0:1B:5F:77:F2:A6:79:4A:5F:CF:97
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1ab::/48
Signature Algorithm: sha256WithRSAEncryption
d2:29:b7:fa:9c:17:cf:be:7a:1f:17:e2:f0:ea:13:61:04:fd:
a9:0c:a4:c8:be:2b:d6:1a:c1:62:dc:42:83:ca:6d:22:76:36:
62:2d:35:02:71:7c:13:67:d4:a7:36:8b:ae:87:ed:f8:2f:7a:
fd:5c:3d:0b:2b:5e:bc:90:a9:c0:18:73:d5:bb:09:99:fd:02:
51:d2:5c:b4:88:68:72:bd:72:b5:1b:8d:48:e7:f4:d7:a7:36:
ff:ae:1e:40:08:63:23:74:5c:72:eb:e9:d4:52:8e:5a:7b:58:
19:b4:5d:b3:df:63:d3:2c:c9:41:12:5a:a7:06:ed:aa:d1:12:
7a:4b:3c:cb:68:ed:cf:8f:24:ab:0d:a7:0a:04:da:08:05:96:
60:9b:9d:58:02:c5:06:cc:20:4c:f0:7a:14:fb:20:62:47:28:
8e:04:0e:0a:3c:57:fb:5e:68:f8:50:12:be:3e:96:51:69:c3:
b7:67:06:ae:98:da:76:f6:76:41:ad:7a:bc:71:8a:0c:36:61:
96:dd:13:93:31:0e:da:52:bf:6a:24:e1:d9:3e:77:38:2e:5f:
8b:af:d9:07:15:87:ca:14:c6:a8:e1:de:ca:4c:a0:5a:d8:36:
0e:4a:ce:ef:e5:d3:78:7b:b7:e4:47:a9:38:9b:3d:4c:6a:b0:
cf:d7:fe:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:03:22 2025 by rpki-client