Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3332313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: U1I6zsdmrpJTHn36wiAVbrA3cLEjHFMtKTJc9JGjpc0=
Subject key identifier: 9F:76:6E:5E:BE:A4:51:4B:59:D7:10:8F:C8:BF:1F:4A:D9:E4:07:BF
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7ED2010F5D7074EC052A3519B9B2EF6931D10127
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:20 +0000
ROA not before: Mon 26 Sep 2022 09:55:20 +0000
ROA not after: Mon 25 Sep 2023 10:00:20 +0000
asID: 59282
IP address blocks: 2400:d680:321::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:d2:01:0f:5d:70:74:ec:05:2a:35:19:b9:b2:ef:69:31:d1:01:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:20 2022 GMT
Not After : Sep 25 10:00:20 2023 GMT
Subject: CN=9F766E5EBEA4514B59D7108FC8BF1F4AD9E407BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f4:4a:25:41:2c:c7:3e:6f:42:86:37:2e:66:
63:45:2b:dc:1b:82:25:85:92:e4:54:0c:1a:1f:49:
ba:f0:62:c6:48:ca:ed:16:6c:4b:fb:52:77:4f:cf:
d9:30:e9:00:00:b7:6f:ba:6a:5a:5e:fc:21:e0:29:
fb:7f:02:d2:45:31:c9:19:48:b2:10:02:1e:65:27:
b8:d8:3f:36:ea:c3:cc:4d:a0:5e:a3:7c:bb:f5:be:
66:02:04:1d:80:ce:6c:aa:92:e3:d0:62:e4:84:57:
7d:70:97:ea:fc:4a:ef:4e:a5:ea:d4:44:3e:9c:00:
b3:14:c9:16:f9:43:17:39:e2:b0:d7:fe:3e:42:8c:
22:40:7c:5e:c6:9e:9d:e5:bc:35:22:65:cf:23:51:
83:69:0c:f4:35:65:28:f9:a8:08:64:9e:99:cc:b1:
b9:2b:fa:b9:26:cc:83:5b:05:3e:7a:52:a1:04:e9:
3e:25:d4:32:aa:72:d8:f4:ca:0a:56:4b:15:b1:bd:
06:b5:02:0d:49:98:6c:f7:35:ee:7f:c2:b4:0e:92:
c5:bd:d9:22:fc:02:91:cd:40:7c:6a:f3:e9:4f:93:
fd:ee:2e:7a:7c:da:52:88:b3:b3:bb:f0:b6:f7:3d:
c4:fa:cf:19:07:6a:ca:48:36:86:de:8b:1f:93:50:
ba:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:76:6E:5E:BE:A4:51:4B:59:D7:10:8F:C8:BF:1F:4A:D9:E4:07:BF
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:321::/48
Signature Algorithm: sha256WithRSAEncryption
5e:eb:30:c6:10:43:34:97:f3:6e:d3:4a:ed:0d:b5:05:ac:c4:
ff:aa:23:37:3e:61:df:51:55:bd:0a:cd:60:67:78:e9:29:17:
68:74:56:5e:83:96:58:6e:da:71:c7:70:ba:29:2e:08:eb:32:
ed:3e:35:a5:4f:bb:07:f9:46:72:96:93:e9:e7:78:26:cb:ce:
f2:64:a1:11:17:d8:8a:17:c3:c1:c8:18:8c:14:98:bd:ab:18:
11:4f:6f:59:04:cd:46:fd:9c:1d:53:d5:f2:98:5e:66:08:21:
85:83:45:7c:02:6a:0e:57:47:e5:46:88:4a:3c:e6:31:97:55:
24:7b:d1:b9:f7:39:c2:81:e0:51:c8:01:ad:e9:f9:82:8d:57:
d3:4e:32:e5:dd:d7:a3:0b:75:99:73:dd:ae:88:28:3b:f6:ea:
31:6c:4d:f6:ec:4e:69:7d:82:93:a1:c9:19:da:fe:9d:18:52:
db:97:76:ae:c3:d1:b5:d3:ab:29:06:a9:fc:db:57:b0:7e:00:
8c:e4:23:50:5a:2b:af:ee:e1:8b:d7:fe:f3:6f:c9:fd:02:29:
d6:c1:d2:42:28:3f:50:cb:f8:47:c9:6e:53:30:c1:11:95:5b:
ab:58:b1:a2:84:28:1c:d5:ec:ed:bf:3d:e4:c2:96:6d:19:85:
95:82:fd:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:01:48 2025 by rpki-client