Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a32613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: OygSEoHEM5pCoPpg5N2NH86bzlpTTOxhop6hzE/KJY8=
Subject key identifier: 68:1C:F9:6D:59:5D:7A:4D:65:95:00:95:3B:85:95:81:F5:84:2C:B0
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1DE5BC5560425C608B1E23D7D89EC64622A11E19
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:26 +0000
ROA not before: Mon 26 Sep 2022 07:56:26 +0000
ROA not after: Mon 25 Sep 2023 08:01:26 +0000
asID: 59282
IP address blocks: 2400:d680:2a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:e5:bc:55:60:42:5c:60:8b:1e:23:d7:d8:9e:c6:46:22:a1:1e:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:26 2022 GMT
Not After : Sep 25 08:01:26 2023 GMT
Subject: CN=681CF96D595D7A4D659500953B859581F5842CB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:6f:0b:bd:2b:c8:1e:6a:af:37:e6:01:0d:4b:
df:21:75:83:82:b6:19:28:2b:56:a8:0a:fa:99:f8:
cf:9f:bc:04:1e:81:08:94:f1:70:f1:8e:7a:23:e6:
75:c0:a4:95:84:12:4d:2a:23:28:c8:e9:0e:73:b5:
d1:90:c4:b0:a2:41:2d:87:fa:98:20:74:bc:34:b3:
39:4b:90:e1:7b:bd:0f:43:5b:93:1c:02:71:ca:8c:
82:dd:d4:88:c0:69:39:4e:9a:ab:c0:df:c8:4e:b2:
3e:39:20:5d:47:d0:46:e0:d2:7a:c0:c3:bf:12:06:
90:24:34:15:25:0c:91:ec:a7:f8:97:7e:21:b9:c0:
ff:39:c7:9c:a3:f8:d0:68:10:27:a6:f7:4c:1c:5b:
28:99:4d:03:d2:5e:10:f0:1e:e2:6b:9d:4c:b3:5e:
52:95:bd:71:86:80:8a:03:7e:41:b1:9c:d8:a6:a7:
41:30:b2:27:31:5d:6c:f5:2f:68:b3:6b:7e:f5:ac:
7e:66:cb:df:7b:38:f5:74:4e:73:5f:e5:5d:68:ff:
32:c4:a1:b3:16:b2:59:b4:b2:76:73:98:ca:39:36:
f2:c2:22:47:63:84:57:f9:6d:f2:5f:2f:98:f7:51:
ea:50:5a:57:08:81:d3:09:d1:9b:01:c2:f2:03:f0:
48:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:1C:F9:6D:59:5D:7A:4D:65:95:00:95:3B:85:95:81:F5:84:2C:B0
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2a::/48
Signature Algorithm: sha256WithRSAEncryption
1d:b4:15:63:29:30:13:4b:89:ce:07:a1:28:b1:37:f0:d1:f4:
23:d3:48:58:36:f4:fe:ba:86:68:87:40:05:64:2e:62:77:08:
9e:01:ff:f3:31:13:af:5c:92:2f:88:f9:91:d3:58:b8:12:b1:
66:26:5c:35:c9:0b:69:57:36:b4:bb:41:a7:02:8f:83:cc:cd:
d2:41:16:44:68:d0:56:48:d9:88:91:9f:07:fd:ef:57:0d:9d:
d6:c3:35:b9:29:53:a3:31:76:8d:2c:8f:4f:61:2c:2c:c5:b5:
0c:36:aa:1f:63:1c:9f:12:75:f6:09:4e:c2:f7:b9:d3:8f:3e:
9b:38:44:b6:f7:54:59:c7:ee:23:32:0e:e0:62:a1:01:23:a1:
01:a6:91:2a:00:71:38:bf:e6:da:5a:a7:e0:58:b4:89:bb:22:
e4:a4:fd:4d:a8:20:a8:e6:40:85:ab:cd:d9:c2:21:ec:34:c3:
1f:40:d3:54:a7:72:c1:3a:7f:de:04:86:7a:f0:53:31:2e:6f:
e1:81:8b:8e:eb:66:9e:76:77:1c:de:bd:f9:f7:09:f9:c8:5d:
9a:dc:e4:89:54:c8:63:1c:fd:0c:c5:00:5f:e7:39:7b:b1:90:
6c:82:49:fc:00:25:3c:30:fc:29:7c:2a:67:88:8d:3e:e8:e5:
bd:58:3a:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:02:06 2025 by rpki-client