Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3261313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: jeEM7JegnCyuGDL/TXiNKzUpafbwYEvkfQ9K/z9PoB0=
Subject key identifier: 1F:AE:9A:77:3E:19:A1:D7:7B:F4:E4:03:41:F5:AC:83:38:4A:B1:A7
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 44FF856FDFDFC22F5361C6E8BE322B32866E2639
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:10 +0000
ROA not before: Mon 26 Sep 2022 12:55:10 +0000
ROA not after: Mon 25 Sep 2023 13:00:10 +0000
asID: 59282
IP address blocks: 2400:d680:2a1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:ff:85:6f:df:df:c2:2f:53:61:c6:e8:be:32:2b:32:86:6e:26:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:10 2022 GMT
Not After : Sep 25 13:00:10 2023 GMT
Subject: CN=1FAE9A773E19A1D77BF4E40341F5AC83384AB1A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9d:5f:2d:11:11:ce:cd:ed:a7:4e:12:9a:d1:
bb:7b:82:a5:0a:39:39:ab:41:4d:6f:1b:23:7f:25:
8e:02:c6:84:92:16:02:69:9f:54:81:6b:fc:b5:33:
00:31:34:f8:90:e2:a1:45:14:e8:48:e8:be:28:78:
58:c2:5e:8a:cb:5e:6d:8f:fc:93:13:7b:1a:3e:26:
4c:9a:8a:7a:8f:fd:7c:71:74:62:b8:07:62:ac:5f:
c4:de:56:d4:5d:42:25:09:23:53:61:7c:bd:f7:68:
35:eb:d7:1b:30:ce:6a:ed:a8:8c:bd:39:3e:26:99:
d8:46:f1:bf:cd:1d:63:da:9f:e4:06:b9:b5:e6:48:
10:22:b1:59:c9:7a:f4:e2:54:2d:0b:9d:71:ab:4a:
90:9b:a7:b5:64:77:92:2d:a7:af:9a:ef:a8:aa:67:
bc:c7:01:d5:4d:c8:3b:ec:4a:f9:ae:c1:c8:99:47:
ef:b5:99:c5:94:94:78:46:0b:17:4d:8f:ab:5d:e7:
49:64:6b:a0:93:b4:56:ab:fc:4d:25:0c:f3:0a:1a:
90:0c:e2:d4:8a:97:b5:63:eb:6d:17:ce:f3:ca:95:
25:f0:bb:54:0f:7c:43:d2:88:db:e4:09:58:83:1a:
de:39:64:70:0d:1a:90:c0:2e:40:d0:68:00:f2:01:
ba:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:AE:9A:77:3E:19:A1:D7:7B:F4:E4:03:41:F5:AC:83:38:4A:B1:A7
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2a1::/48
Signature Algorithm: sha256WithRSAEncryption
8c:a4:8e:47:80:be:9a:60:67:7c:cf:39:16:b0:df:b0:5d:b5:
80:fe:a4:ed:6c:9c:fe:e2:b6:8c:d2:95:eb:19:f5:17:4d:1d:
62:fa:ca:88:e2:a6:2e:22:28:bf:13:0f:fe:d8:29:28:0b:3d:
2d:99:3b:01:e5:7e:e8:e2:3e:91:7a:93:ea:ed:20:d3:c3:18:
33:c9:b3:d6:a9:42:50:01:41:3e:02:ff:eb:ee:63:3e:69:a5:
60:81:af:3e:a9:8c:01:e5:d2:97:96:a3:6d:1e:dd:0e:b8:db:
ce:6e:1d:1c:0b:d9:5a:17:f5:86:fd:cd:1c:21:3e:73:3e:7c:
6a:f2:f9:b5:99:0e:8a:94:a0:94:d2:90:77:e5:58:d6:59:6e:
d3:8b:98:b7:bd:ef:92:78:94:68:ba:85:c1:83:56:5f:ce:41:
00:59:82:b6:24:2e:92:e4:d2:69:18:38:99:53:3c:6a:7f:40:
4c:4c:7d:80:09:c9:10:8e:31:cb:26:87:de:48:26:65:61:76:
23:26:6e:10:74:06:6b:c6:15:c6:75:4b:49:c2:04:f8:20:6a:
72:a3:cc:0f:96:35:02:c3:7c:4b:87:5d:f4:48:86:bf:40:2c:
64:17:b3:d6:64:03:b3:3b:b8:b0:64:8f:83:8a:e0:39:49:92:
61:00:d4:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:05:14 2025 by rpki-client