Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3238613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: kQ9sLAxuUIHhqh/ZCnUGV5QUqQcfD7AmC8UKijE8udQ=
Subject key identifier: E7:ED:09:40:B2:AC:3F:4A:AF:F3:31:89:9E:FB:66:30:95:E6:E8:75
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 690E06D03862103DC69C2244869402E37A5F087E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:20 +0000
ROA not before: Mon 26 Sep 2022 12:55:20 +0000
ROA not after: Mon 25 Sep 2023 13:00:20 +0000
asID: 59282
IP address blocks: 2400:d680:28a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:0e:06:d0:38:62:10:3d:c6:9c:22:44:86:94:02:e3:7a:5f:08:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:20 2022 GMT
Not After : Sep 25 13:00:20 2023 GMT
Subject: CN=E7ED0940B2AC3F4AAFF331899EFB663095E6E875
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a4:9b:4d:a9:01:5f:c1:06:98:78:79:1a:0f:
df:0b:b8:ca:65:89:7f:6c:01:2f:8b:48:63:88:8f:
00:77:91:95:ff:b8:4e:63:96:22:89:32:d2:48:fa:
57:74:b3:4c:c9:51:5d:8b:6a:ce:48:6a:0b:43:56:
39:3b:a1:93:94:d6:fb:01:69:9c:e3:9c:8f:fc:bc:
4e:3e:9e:56:28:47:55:f0:7c:a2:a1:8c:a7:83:dc:
16:a0:20:2e:92:21:4b:12:9b:5b:f2:e6:77:f5:7a:
e1:d9:f9:a1:c6:89:57:9b:7a:20:21:20:e8:fe:5c:
cf:d0:0b:74:04:c7:3d:e1:f0:88:af:8e:8a:02:3e:
64:ea:8d:37:61:96:ef:3c:16:1c:9e:85:b7:00:91:
f0:e9:30:5b:5e:0c:39:6c:28:3e:c9:73:3c:72:3d:
b5:2a:ec:a5:05:2d:80:34:da:1b:36:d4:db:1b:0e:
69:33:18:67:af:97:d2:53:5b:89:94:c8:66:c0:f1:
e6:7c:48:4e:06:e2:c4:19:1c:67:c2:30:ec:e5:76:
d8:e3:03:7b:2a:d7:27:c6:f4:aa:0f:8d:80:64:b9:
c7:1c:89:0a:26:d4:1a:a9:3c:bc:7a:af:44:f1:60:
27:d6:5e:c9:17:1d:c1:9e:3d:1b:2c:76:a5:59:67:
be:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:ED:09:40:B2:AC:3F:4A:AF:F3:31:89:9E:FB:66:30:95:E6:E8:75
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:28a::/48
Signature Algorithm: sha256WithRSAEncryption
5c:6e:b1:1e:16:c3:2a:60:c1:1e:76:66:4f:9c:26:e8:0f:72:
59:99:63:96:09:a4:23:b2:e1:1b:86:83:a3:7b:2f:64:1c:03:
f8:65:43:33:db:bf:1b:13:6c:26:e7:2c:8d:4e:51:63:28:63:
15:1b:d0:87:d3:2b:d3:b1:c5:31:31:c2:77:39:25:a6:81:c5:
5b:03:3f:b0:02:9d:a0:7e:4a:4e:a1:6e:bc:83:c3:34:76:be:
7f:f2:c6:78:10:c3:7b:78:55:58:c4:7e:dd:68:01:72:3a:16:
e2:1d:d2:f4:81:4f:23:0a:80:36:65:98:a0:10:b1:b0:04:fb:
1a:3c:e2:06:80:c7:6f:0f:68:83:fe:0c:6d:ad:37:8f:0b:3e:
5c:6e:30:c5:60:a1:3c:f8:b9:48:3c:2f:00:b1:88:bc:2f:fd:
bf:00:8a:33:b4:fe:b9:df:e7:f1:89:9a:36:12:d3:e9:cd:41:
ca:a8:03:0a:76:4f:24:e9:c4:1a:70:8f:97:84:2a:31:4e:1f:
52:f7:a5:75:2c:76:3e:76:c9:67:fc:2e:c5:10:34:d6:63:1d:
2c:21:a5:1b:e2:8f:d4:3f:fe:3f:15:c4:b6:43:b8:7d:b9:42:
58:38:7e:97:f3:13:af:6e:9c:73:83:06:83:2c:32:41:15:0c:
a3:35:15:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:05:38 2025 by rpki-client