Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3230393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: FpUgX9+cKa6Kd5KjJvGd5tuE2hVneb0vwsky5AiYUPE=
Subject key identifier: 30:A4:0B:FE:2B:96:80:D1:CA:95:48:9A:BE:69:CA:14:4C:55:F6:99
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4AE14767F173960C1C576E8FC4F7D63AD80496AD
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:29 +0000
ROA not before: Mon 26 Sep 2022 07:56:29 +0000
ROA not after: Mon 25 Sep 2023 08:01:29 +0000
asID: 59282
IP address blocks: 2400:d680:209::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:e1:47:67:f1:73:96:0c:1c:57:6e:8f:c4:f7:d6:3a:d8:04:96:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:29 2022 GMT
Not After : Sep 25 08:01:29 2023 GMT
Subject: CN=30A40BFE2B9680D1CA95489ABE69CA144C55F699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:5e:8c:b1:22:ee:03:29:89:82:f3:73:32:e6:
5b:d2:c4:16:ac:11:7c:b1:18:df:9f:0f:d7:20:67:
60:92:84:27:1e:15:23:3f:cb:81:55:9f:59:39:24:
60:97:47:ef:f9:e7:5b:56:ad:80:89:5c:79:c7:b6:
e8:ce:d9:a6:81:16:8e:33:51:78:d7:46:e2:5f:bc:
5b:6a:09:25:6d:a1:6c:f8:2c:37:e5:b4:fc:1b:da:
a1:eb:fc:56:22:21:58:d8:74:72:f9:22:7c:71:ba:
0d:0a:69:d0:53:9e:b9:47:fc:4d:eb:73:ff:fa:de:
d1:9c:46:e3:0e:d7:1d:5b:2b:ee:63:09:eb:f8:be:
f3:6d:4a:95:6f:21:3b:37:1e:d3:5e:c6:6a:14:70:
9e:7b:a5:9b:7e:e7:5f:fd:b6:9d:30:71:21:8b:39:
df:17:60:45:3a:85:fe:19:9c:ee:86:66:34:92:20:
3b:8a:ac:a8:d4:62:a1:83:4e:04:2d:94:1c:a7:33:
f9:b7:57:da:ce:e9:6b:2a:6c:51:39:c1:33:9a:25:
9a:51:42:5d:96:e6:f4:45:be:ab:19:b9:b3:6e:d6:
74:02:e5:11:42:29:90:4c:e8:fd:f4:04:e3:95:90:
7d:94:c7:51:90:bd:32:97:79:9a:6d:0c:9e:8b:2d:
2c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:A4:0B:FE:2B:96:80:D1:CA:95:48:9A:BE:69:CA:14:4C:55:F6:99
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:209::/48
Signature Algorithm: sha256WithRSAEncryption
88:93:df:36:1f:3f:c0:51:fe:33:39:f0:43:b1:77:80:97:bb:
95:57:dd:56:99:db:18:19:d2:24:24:36:07:49:9a:df:c6:68:
a3:67:f8:0f:30:51:0b:ec:55:ad:5a:7e:be:6c:c1:09:06:28:
bf:38:b3:b8:1e:78:58:44:ac:e8:f6:b8:c8:96:59:fb:9e:d1:
10:b9:bc:8c:c9:ae:66:77:4e:51:c8:45:97:17:12:ea:d4:fa:
dc:4a:28:db:60:ca:6a:75:2a:ae:d5:c6:cc:0e:e2:f8:ac:38:
bd:d9:60:13:86:69:2b:63:4c:0d:4f:f4:65:fc:5a:86:a5:44:
1a:42:5d:5e:4e:77:18:82:50:3b:3d:d0:75:a1:ab:b3:6e:50:
36:87:35:68:17:12:db:f2:c1:19:96:49:c8:b5:87:17:1e:71:
44:c4:f4:4f:59:a6:da:7b:90:88:16:fc:9c:c2:6d:fa:03:ec:
b4:a0:7d:89:9d:fa:79:97:79:61:d5:a3:56:01:75:d1:81:bc:
ed:8f:aa:63:b1:80:03:36:70:19:5d:db:5f:de:ea:2a:66:d2:
e8:77:ae:f7:80:d2:95:31:f3:63:e2:16:4a:67:73:1a:ba:a1:
d9:05:90:19:8d:d0:11:7c:cf:cf:19:4a:7b:83:3c:0d:dc:04:
53:b2:bb:2c
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUSuFHZ/FzlgwcV26PxPfWOtgElq0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MjlaFw0yMzA5MjUwODAxMjlaMDMxMTAvBgNV
BAMTKDMwQTQwQkZFMkI5NjgwRDFDQTk1NDg5QUJFNjlDQTE0NEM1NUY2OTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxXoyxIu4DKYmC83My5lvSxBas
EXyxGN+fD9cgZ2CShCceFSM/y4FVn1k5JGCXR+/551tWrYCJXHnHtujO2aaBFo4z
UXjXRuJfvFtqCSVtoWz4LDfltPwb2qHr/FYiIVjYdHL5Inxxug0KadBTnrlH/E3r
c//63tGcRuMO1x1bK+5jCev4vvNtSpVvITs3HtNexmoUcJ57pZt+51/9tp0wcSGL
Od8XYEU6hf4ZnO6GZjSSIDuKrKjUYqGDTgQtlBynM/m3V9rO6WsqbFE5wTOaJZpR
Ql2W5vRFvqsZubNu1nQC5RFCKZBM6P30BOOVkH2Ux1GQvTKXeZptDJ6LLSzrAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUMKQL/iuWgNHKlUiavmnKFExV9pkwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzMDM5M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
CTANBgkqhkiG9w0BAQsFAAOCAQEAiJPfNh8/wFH+MznwQ7F3gJe7lVfdVpnbGBnS
JCQ2B0ma38Zoo2f4DzBRC+xVrVp+vmzBCQYovzizuB54WESs6Pa4yJZZ+57RELm8
jMmuZndOUchFlxcS6tT63Eoo22DKanUqrtXGzA7i+Kw4vdlgE4ZpK2NMDU/0Zfxa
hqVEGkJdXk53GIJQOz3QdaGrs25QNoc1aBcS2/LBGZZJyLWHFx5xRMT0T1mm2nuQ
iBb8nMJt+gPstKB9iZ36eZd5YdWjVgF10YG87Y+qY7GAAzZwGV3bX97qKmbS6Heu
94DSlTHzY+IWSmdzGrqh2QWQGY3QEXzPzxlKe4M8DdwEU7K7LA==
-----END CERTIFICATE-----
Generated at Tue Mar 11 05:01:49 2025 by rpki-client