Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a32323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: yseg3x89Hkmy+y4iVQ9qFCmNGeHR+iz/X2zl4Aj9PU0=
Subject key identifier: 2A:E5:43:3F:36:65:D4:80:94:C9:62:66:73:92:66:FB:F2:A8:A2:44
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2B0D66787FD31AD36975E3FA0FBB29F6BFF9BC74
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 07:00:06 +0000
ROA not before: Mon 26 Sep 2022 06:55:06 +0000
ROA not after: Mon 25 Sep 2023 07:00:06 +0000
asID: 59282
IP address blocks: 2400:d680:22::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:0d:66:78:7f:d3:1a:d3:69:75:e3:fa:0f:bb:29:f6:bf:f9:bc:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 06:55:06 2022 GMT
Not After : Sep 25 07:00:06 2023 GMT
Subject: CN=2AE5433F3665D48094C96266739266FBF2A8A244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:58:ae:53:18:40:10:71:0a:32:f2:0e:54:f1:
84:f3:e7:4e:cd:b1:79:73:1f:17:80:ef:9b:83:3d:
b0:3a:6e:e5:ff:a9:ab:cc:b4:0e:c4:ec:ce:6d:f6:
a8:d4:ba:d2:3c:bf:3a:26:43:41:4d:ce:75:86:60:
3d:be:15:d6:b3:d0:bd:08:f2:81:7f:91:88:15:43:
54:a1:dc:0f:e3:fe:41:5d:79:f8:7e:70:32:02:e8:
60:f0:bd:ee:97:9f:46:6e:b7:a8:55:a3:9a:ae:0f:
76:b3:eb:95:71:00:59:a6:af:02:83:61:b9:55:55:
62:e2:b6:b8:36:f4:6a:50:d1:59:b1:9a:1c:8d:04:
ac:c9:db:92:f1:37:f0:cd:3e:88:fb:ed:c6:fe:cf:
33:58:f7:28:04:2e:14:db:ed:52:ff:78:68:a9:b3:
6c:7f:ed:17:9f:fe:ae:21:c9:49:6f:c8:e1:0f:80:
43:b4:a6:bf:f6:71:33:12:47:1a:5a:dc:d6:59:26:
5c:fa:33:79:6f:fe:97:d5:b4:6e:a4:8c:f3:d1:a2:
e7:ec:93:d7:29:b3:ce:c4:ee:fd:06:f2:74:38:53:
89:54:8f:5d:ac:ce:f0:dd:69:8c:c0:56:2b:8c:71:
8d:36:71:67:b1:30:0f:39:72:d8:e6:6e:71:cc:45:
c9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:E5:43:3F:36:65:D4:80:94:C9:62:66:73:92:66:FB:F2:A8:A2:44
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:22::/48
Signature Algorithm: sha256WithRSAEncryption
d5:04:f3:93:09:52:50:18:c6:cf:c9:a2:14:24:e8:4b:e3:87:
b8:e7:e9:d4:c5:73:e3:13:88:07:dc:9c:92:b1:3e:7a:d3:81:
cf:b0:08:66:28:49:33:97:ee:8f:f4:dd:cb:53:c1:95:cc:32:
ac:0e:dc:d1:0c:e8:72:da:94:46:bd:4a:ed:85:d4:6a:79:96:
4d:f7:1f:54:ed:26:33:a5:95:d4:c9:cc:c0:63:14:aa:bb:e9:
ad:e5:30:96:74:b1:f5:43:f9:72:8f:5e:a6:82:de:7b:85:43:
53:55:38:e4:71:0f:b5:0d:9a:bf:92:b5:b5:62:c4:a1:98:62:
c1:8a:e4:df:0e:4a:d4:dc:5a:3e:39:bd:a3:1a:27:13:e6:d9:
8a:4b:dc:1c:ec:25:57:bc:b7:33:8c:27:08:33:fd:f7:d9:84:
ec:dc:f4:41:cf:7c:31:9d:c6:e2:28:cc:9b:00:cd:87:7c:9a:
01:86:bc:8b:88:d5:ce:cb:0d:1d:ff:07:99:6d:19:05:3f:2c:
35:d1:03:85:a1:b0:3d:33:29:02:d1:9c:f7:3a:92:ba:1d:0a:
df:cf:e9:50:b8:4d:8f:4b:24:5a:6a:63:09:22:87:41:10:92:
2f:29:b4:8b:73:89:81:ae:48:8b:b6:0c:74:ee:a8:ce:c3:ee:
00:ab:28:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:05:14 2025 by rpki-client