Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3238363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Qvr947eBwItyLOUbU5RH+Zh5+ove16sN0JnneIRfNVM=
Subject key identifier: 10:73:39:AF:21:22:4B:3B:68:9A:7A:38:00:E5:06:6C:8B:D7:16:85
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4265B06C1207BF3BBBB7232E909C4B86EE985F32
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:08 +0000
ROA not before: Mon 26 Sep 2022 12:55:08 +0000
ROA not after: Mon 25 Sep 2023 13:00:08 +0000
asID: 59282
IP address blocks: 2400:d680:286::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:65:b0:6c:12:07:bf:3b:bb:b7:23:2e:90:9c:4b:86:ee:98:5f:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:08 2022 GMT
Not After : Sep 25 13:00:08 2023 GMT
Subject: CN=107339AF21224B3B689A7A3800E5066C8BD71685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:15:2a:8d:9a:09:7f:62:31:2c:40:6b:b9:3b:
c0:57:2d:1e:d8:28:b2:a9:22:03:3e:4a:3c:32:d8:
d2:27:30:c3:e3:22:85:93:23:15:f4:b0:8a:a9:c7:
60:4f:cd:ca:d9:50:e9:96:d1:a5:2e:74:63:55:83:
6a:ad:23:08:98:2f:ee:f2:b4:c6:92:e6:94:e8:cd:
f8:bf:b9:44:e3:87:75:d3:e8:62:91:dd:12:74:c8:
27:b9:88:e1:e8:da:5e:98:0d:cb:40:e3:f5:2b:e3:
e8:15:c1:a2:6e:11:49:e6:f8:e7:d7:88:56:ae:96:
33:7c:95:9d:57:c7:5d:86:53:bd:9b:06:42:2e:68:
e1:60:84:ba:ae:56:50:6c:ad:39:f9:1a:9a:63:b9:
5a:19:d8:7e:95:7c:81:1c:b6:9d:f9:b4:d2:21:19:
4c:68:3a:3c:16:4c:5b:89:83:21:ef:f0:d6:90:3d:
91:95:58:a0:a8:66:04:e8:59:4d:eb:ba:11:bb:3e:
43:97:cb:de:43:67:96:74:da:51:02:d4:c9:28:76:
8a:23:a0:38:f0:58:ce:68:4a:26:ef:44:69:c6:3f:
64:9d:01:b0:34:a9:83:ef:fb:49:aa:8a:e9:4a:eb:
17:1e:db:3f:c6:67:13:3f:0e:7b:3c:16:7b:32:ee:
80:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:73:39:AF:21:22:4B:3B:68:9A:7A:38:00:E5:06:6C:8B:D7:16:85
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:286::/48
Signature Algorithm: sha256WithRSAEncryption
44:fc:79:29:ec:8d:b9:3c:3a:2e:63:55:e0:de:45:f6:12:01:
ad:dd:b9:84:70:1e:67:e6:21:0f:a1:95:e8:42:5c:4d:d2:d2:
26:d5:00:b3:2f:f3:90:11:57:60:eb:ac:b2:4a:49:69:4b:41:
0f:e1:0d:47:d8:64:c5:11:50:25:08:95:f7:6d:12:d6:e6:be:
6a:02:7c:2c:7e:08:14:61:fa:c2:f7:d6:ce:8f:86:38:e3:e8:
2f:f6:31:f5:ba:d5:6c:5d:59:f2:29:be:8c:d4:12:50:36:ff:
94:33:58:dc:de:b0:a2:90:e7:1e:3e:27:b5:7b:26:de:e5:dd:
17:b5:d0:37:26:15:0e:d4:cb:6d:7f:e6:42:2d:14:21:50:a4:
a0:92:13:75:98:6f:3c:ce:53:95:dc:88:9d:a8:e9:93:d8:d3:
d5:e9:35:6d:4f:06:ef:d6:e5:72:44:4d:0e:88:b2:b0:c1:84:
04:12:4a:d8:c0:61:c2:a3:56:2b:a6:0c:b7:67:e1:9b:f9:8a:
59:17:b1:88:4a:0b:7d:db:2a:b2:54:db:ef:64:3b:83:08:10:
e8:bf:76:d8:17:1e:1b:5a:f9:dc:ae:45:ed:be:26:fc:c4:52:
c8:82:9d:6b:03:54:cc:3f:a6:45:70:cd:f7:c5:cd:04:49:32:
8a:79:a4:58
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUQmWwbBIHvzu7tyMukJxLhu6YXzIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMjU1MDhaFw0yMzA5MjUxMzAwMDhaMDMxMTAvBgNV
BAMTKDEwNzMzOUFGMjEyMjRCM0I2ODlBN0EzODAwRTUwNjZDOEJENzE2ODUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDeFSqNmgl/YjEsQGu5O8BXLR7Y
KLKpIgM+Sjwy2NInMMPjIoWTIxX0sIqpx2BPzcrZUOmW0aUudGNVg2qtIwiYL+7y
tMaS5pTozfi/uUTjh3XT6GKR3RJ0yCe5iOHo2l6YDctA4/Ur4+gVwaJuEUnm+OfX
iFauljN8lZ1Xx12GU72bBkIuaOFghLquVlBsrTn5GppjuVoZ2H6VfIEctp35tNIh
GUxoOjwWTFuJgyHv8NaQPZGVWKCoZgToWU3ruhG7PkOXy95DZ5Z02lEC1Mkodooj
oDjwWM5oSibvRGnGP2SdAbA0qYPv+0mqiulK6xce2z/GZxM/Dns8Fnsy7oC3AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUEHM5ryEiSztomno4AOUGbIvXFoUwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzODM2M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
hjANBgkqhkiG9w0BAQsFAAOCAQEARPx5KeyNuTw6LmNV4N5F9hIBrd25hHAeZ+Yh
D6GV6EJcTdLSJtUAsy/zkBFXYOusskpJaUtBD+ENR9hkxRFQJQiV920S1ua+agJ8
LH4IFGH6wvfWzo+GOOPoL/Yx9brVbF1Z8im+jNQSUDb/lDNY3N6wopDnHj4ntXsm
3uXdF7XQNyYVDtTLbX/mQi0UIVCkoJITdZhvPM5TldyInajpk9jT1ek1bU8G79bl
ckRNDoiysMGEBBJK2MBhwqNWK6YMt2fhm/mKWRexiEoLfdsqslTb72Q7gwgQ6L92
2BceG1r53K5F7b4m/MRSyIKdawNUzD+mRXDN98XNBEkyinmkWA==
-----END CERTIFICATE-----
Generated at Tue Mar 11 05:00:27 2025 by rpki-client