Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3330633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: dNC0FG3nkrazbgcL5lmapQPtjr7gXVvjdKFDItGQ93M=
Subject key identifier: 09:E7:B2:31:51:B8:40:1D:CF:CF:90:48:74:BE:E0:F8:F2:19:F2:C9
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1B7D0CC57B655BC931B7D4E004B9D8024E834589
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:11 +0000
ROA not before: Mon 26 Sep 2022 09:55:11 +0000
ROA not after: Mon 25 Sep 2023 10:00:11 +0000
asID: 59282
IP address blocks: 2400:d680:30c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:7d:0c:c5:7b:65:5b:c9:31:b7:d4:e0:04:b9:d8:02:4e:83:45:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:11 2022 GMT
Not After : Sep 25 10:00:11 2023 GMT
Subject: CN=09E7B23151B8401DCFCF904874BEE0F8F219F2C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ce:24:99:5b:d0:06:6c:b0:00:cf:40:86:ce:
44:00:e3:47:6e:57:ba:b5:28:10:28:bf:f4:3b:30:
40:83:d1:4c:09:9f:bb:bb:0f:f0:81:06:79:d6:cc:
03:dd:b0:ea:3e:19:e5:ec:45:93:de:01:cf:ac:18:
28:0a:c2:cb:28:16:e8:c6:6d:c4:fe:ea:29:34:67:
72:f2:3c:47:2e:37:05:1d:53:7a:42:b8:9d:6a:9c:
6e:b2:2c:f7:89:b9:b2:45:ae:c6:21:5f:a8:19:f8:
90:0b:cc:a2:ab:df:7b:4b:34:58:20:1a:9c:f8:fa:
04:cc:4d:aa:45:af:52:6a:d4:96:21:2f:d3:ab:1b:
73:14:67:44:ce:df:97:6e:ec:90:3e:0f:52:5b:27:
7b:5a:64:3b:04:a9:45:d8:2f:2b:d8:e8:62:90:12:
68:c8:de:74:2f:b8:bb:5e:5d:7b:9c:f7:27:9f:77:
be:ad:d1:5d:3c:8b:31:b0:a0:75:f3:2d:f6:a1:4e:
ff:51:61:d6:ca:4f:81:ce:9d:2f:9b:2b:d3:2f:37:
f7:90:88:84:82:b4:3f:94:c8:68:c2:af:21:19:19:
37:1e:c3:70:c1:b4:27:56:1a:05:f3:aa:db:74:49:
69:8a:2f:5f:a4:0a:99:56:65:ab:a7:9b:40:b2:60:
84:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:E7:B2:31:51:B8:40:1D:CF:CF:90:48:74:BE:E0:F8:F2:19:F2:C9
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:30c::/48
Signature Algorithm: sha256WithRSAEncryption
b0:64:4b:d9:df:97:c9:12:e0:1d:ae:59:0a:c8:94:00:5a:a0:
5d:68:4a:32:ae:c0:fd:40:23:eb:7d:8a:fa:66:af:4d:01:ab:
0c:7c:50:4a:bf:46:84:04:7c:c0:c0:03:b7:10:13:72:4f:92:
b7:71:c9:4c:a2:2f:5a:b7:01:db:96:3e:79:02:f6:ad:9b:5b:
47:48:b4:96:a3:83:32:d9:59:89:8d:8b:1e:92:f9:3e:1d:36:
5e:0b:2d:8b:53:8e:91:0c:15:95:2c:52:c4:68:ee:e9:3d:78:
e6:22:e5:e6:5f:20:b0:e1:1c:8e:82:cd:9a:d1:f3:1d:0a:c9:
99:09:8f:56:cc:d5:dd:0c:06:03:eb:39:d2:2b:0f:4b:9b:bb:
13:64:6e:a1:2b:aa:b6:9e:49:af:ec:07:b0:90:15:2f:ab:75:
97:06:4d:28:3b:c1:56:36:26:fa:4c:a0:d0:cb:a0:57:a8:71:
ba:73:c6:ee:16:41:46:f3:54:74:32:6b:52:98:8a:cf:ea:b0:
c2:60:d1:48:98:a3:f3:c1:8d:d3:49:34:45:e5:6c:30:81:7b:
08:0b:15:3f:9c:bf:08:f8:71:6b:6a:ff:00:0a:96:d3:be:b7:
2f:94:c5:1e:9b:6c:4a:fc:1b:5c:16:05:76:67:79:4b:ae:ba:
7f:d0:ca:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:03:22 2025 by rpki-client