Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3233333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: rCakn3Z3rVNCZifms0jYbiERnF0hQlFExPEuy3CaEuE=
Subject key identifier: 4D:B1:56:9F:C7:B3:3E:FD:A9:27:BF:E9:C4:47:E3:AB:96:09:47:E9
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 25AE07E12420B862CF63A083E4D85D3BB2AB1B26
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:35 +0000
ROA not before: Mon 26 Sep 2022 07:56:35 +0000
ROA not after: Mon 25 Sep 2023 08:01:35 +0000
asID: 59282
IP address blocks: 2400:d680:233::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:ae:07:e1:24:20:b8:62:cf:63:a0:83:e4:d8:5d:3b:b2:ab:1b:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:35 2022 GMT
Not After : Sep 25 08:01:35 2023 GMT
Subject: CN=4DB1569FC7B33EFDA927BFE9C447E3AB960947E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c1:a7:c0:85:28:db:8f:b0:31:c3:61:7a:fe:
40:c3:c5:ef:19:ca:ec:ec:23:49:2b:95:ee:c5:5b:
cf:91:ed:cb:81:af:b6:51:80:7a:05:f6:93:3c:8b:
41:3a:23:27:18:43:92:b6:ae:af:a6:dd:92:45:5f:
f0:dc:d2:ff:9d:d2:d3:17:76:17:75:e4:e4:0c:8f:
af:a5:84:31:ed:0e:4c:22:05:1f:aa:fd:9f:a5:66:
a3:6b:2f:cd:93:72:61:dd:70:6f:a3:64:d8:1a:6a:
0f:13:21:72:2b:ed:eb:62:86:20:46:cc:c1:92:35:
86:2b:96:72:34:9e:cc:1e:af:13:4a:e5:14:47:e7:
a3:de:6b:86:da:a0:ac:cb:6b:d8:ba:0d:55:f8:29:
19:63:e4:7f:a1:2a:ca:b4:07:c1:ee:83:68:db:95:
0d:b4:2c:c5:c2:cc:88:84:bd:17:04:59:cd:72:03:
08:c2:06:77:27:6c:d6:28:80:7d:95:7f:fb:30:ca:
d9:4b:18:97:f6:ac:59:97:08:af:bc:26:26:89:21:
ce:ce:1d:cf:e1:f3:c1:18:29:bc:47:fe:62:9b:72:
22:9a:9e:83:f9:58:3b:03:29:64:db:24:cf:8b:22:
bc:04:3c:57:ae:94:ca:da:01:aa:b6:44:be:ca:b8:
de:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:B1:56:9F:C7:B3:3E:FD:A9:27:BF:E9:C4:47:E3:AB:96:09:47:E9
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:233::/48
Signature Algorithm: sha256WithRSAEncryption
1b:64:df:13:e7:c4:20:e7:7c:e4:35:ca:6c:4e:13:b5:7e:c3:
49:e7:ec:84:b5:19:4c:07:15:e1:09:4e:7a:6d:ee:dd:aa:78:
05:15:2f:c9:33:ee:8b:f7:1a:ec:fa:30:1b:97:ce:97:79:1d:
16:54:61:70:a5:29:5a:22:c3:2a:a8:de:88:cb:94:43:1c:30:
bc:f9:3c:9a:13:56:5c:a7:e3:c7:0e:2a:9e:4c:db:a8:c0:6a:
ac:0e:02:01:f0:9f:21:2d:39:e3:88:bc:71:6d:c7:21:14:e3:
9c:72:04:c3:46:c5:b7:83:0a:c2:c0:2c:45:53:5e:82:f1:bd:
d8:fa:a2:d5:3e:74:0b:8c:00:d6:1f:47:c5:55:ea:6d:ce:d5:
22:7d:92:bb:04:4f:99:6b:2d:f7:87:3c:4c:1c:f5:ed:4a:42:
52:e6:0e:5a:bd:6f:32:81:d6:2d:19:e6:7b:c5:6a:7f:d8:5b:
10:3b:61:e7:c1:46:56:4e:bd:78:ab:ca:94:69:db:03:a3:bc:
7c:99:83:d7:2d:42:59:e1:ef:11:30:d4:da:12:ec:80:64:b5:
b0:16:53:83:2d:63:4a:aa:d0:84:53:dd:37:47:dd:f9:b6:91:
0e:b0:24:13:3a:b3:cb:ad:51:8f:b6:77:79:dc:8a:30:56:ba:
74:c7:e2:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:05:17 2025 by rpki-client