Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3261613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 8dGMJUMs9LOVwTgCaRvJjZYgwrKpHVmE5vTGfd19F4g=
Subject key identifier: 91:9B:50:B4:DD:58:31:51:12:D6:2E:F8:57:52:C8:E2:57:EB:E5:0B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2118D08BCC119F0CFFF01E7CCE3A8F2400346C5E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:05 +0000
ROA not before: Mon 26 Sep 2022 12:55:05 +0000
ROA not after: Mon 25 Sep 2023 13:00:05 +0000
asID: 59282
IP address blocks: 2400:d680:2aa::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:18:d0:8b:cc:11:9f:0c:ff:f0:1e:7c:ce:3a:8f:24:00:34:6c:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:05 2022 GMT
Not After : Sep 25 13:00:05 2023 GMT
Subject: CN=919B50B4DD58315112D62EF85752C8E257EBE50B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4c:d8:31:8b:ad:d8:97:0b:c5:69:c3:c4:76:
de:95:4d:ba:e6:7d:2a:28:20:f2:77:bb:32:e4:ff:
97:7a:37:20:b6:ea:20:26:8c:fb:10:c7:90:af:82:
1b:50:ef:ea:79:2c:6a:30:9a:9f:9f:cf:e4:93:03:
11:9f:39:81:1c:81:a4:6c:9d:95:ec:a2:a4:22:c4:
35:35:e8:54:16:ab:07:f8:d2:2c:b5:8c:2b:80:f8:
14:b6:cf:56:21:25:ca:b0:98:36:9c:8f:7a:7e:8b:
cc:43:b8:75:80:de:74:35:85:a2:63:8d:b8:a9:c5:
90:cc:58:f5:69:7a:af:c6:5f:07:2f:b8:55:92:06:
56:48:49:43:92:42:08:4e:42:c3:a2:87:14:94:ef:
e7:c8:70:a9:69:40:92:ac:fe:e7:bd:87:b1:c6:36:
c9:26:66:ee:ba:2c:33:66:d8:97:97:85:de:ef:82:
fc:a2:2f:ad:32:0b:d2:c9:e8:91:6e:58:f7:95:d1:
0a:4c:58:8a:b3:48:79:a6:df:ab:67:01:0a:c7:c5:
ac:5e:fd:7e:ae:0a:b5:6a:54:6c:f4:bf:d8:25:fc:
af:fc:e2:4a:1d:c5:91:20:e9:11:12:d4:52:32:08:
e3:85:b1:ec:a5:fb:08:4b:91:fa:47:7f:8e:d6:0e:
04:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:9B:50:B4:DD:58:31:51:12:D6:2E:F8:57:52:C8:E2:57:EB:E5:0B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2aa::/48
Signature Algorithm: sha256WithRSAEncryption
71:1e:7f:44:78:3a:a5:37:b5:0b:12:6b:55:e2:47:c9:99:73:
15:a6:02:f8:a7:4e:c2:09:cb:e3:cd:b8:bd:96:e3:ef:c7:ca:
aa:11:ff:eb:41:8b:82:7f:e8:be:7a:35:dd:06:60:21:fa:b9:
2c:2b:72:5e:17:35:f7:1e:54:4c:a0:78:dc:57:a2:02:13:a2:
12:20:3a:20:15:a4:5d:0d:72:38:96:54:76:9d:de:3b:14:30:
b7:b7:0f:b9:99:dd:ef:31:83:96:1a:e4:1b:c7:50:4c:9c:55:
8a:99:33:be:ae:1a:d3:14:30:4b:2c:03:00:fd:69:0d:f3:cb:
08:d0:b8:ba:43:52:53:e9:66:a6:b0:7c:1c:ad:f2:a2:6c:5e:
e7:0e:a5:6e:8d:43:e3:74:ee:ee:97:86:9a:4a:a6:30:ed:66:
ee:44:f0:a7:24:93:d4:e2:45:5a:5d:db:34:9e:f4:8a:cf:85:
3d:4d:81:cf:99:36:20:53:71:ac:72:b9:46:f5:c8:35:1b:2a:
76:84:ff:6a:c3:62:c1:c7:3b:cd:e6:b4:5d:97:d9:67:ed:1a:
fb:c5:b0:a4:50:f4:74:ec:27:bd:8d:ed:e0:a4:8e:a9:ac:2f:
1a:4c:18:c4:3a:42:20:48:9d:78:75:c4:7e:07:c2:67:a1:0b:
a8:b5:38:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:05:38 2025 by rpki-client