Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3333303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ldjvnBqI1YWi/tcJa15X69j+tDtVceGSSQhi2xVv8Hs=
Subject key identifier: 3A:79:11:2B:04:7D:1A:79:5D:C8:80:4A:17:FC:B4:58:C7:CF:F7:A1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 12FFE91C0F6C3846C1D380F1481BBB35708A6292
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:20 +0000
ROA not before: Mon 26 Sep 2022 09:55:20 +0000
ROA not after: Mon 25 Sep 2023 10:00:20 +0000
asID: 59282
IP address blocks: 2400:d680:330::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:ff:e9:1c:0f:6c:38:46:c1:d3:80:f1:48:1b:bb:35:70:8a:62:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:20 2022 GMT
Not After : Sep 25 10:00:20 2023 GMT
Subject: CN=3A79112B047D1A795DC8804A17FCB458C7CFF7A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:d9:37:78:5f:7c:16:1e:2a:3e:16:cf:1b:3e:
aa:74:c2:8a:40:c0:38:1b:5c:ea:52:6b:6c:8b:14:
a5:48:69:72:5a:cd:3b:de:c2:da:07:d9:24:09:f7:
8e:98:2b:82:0d:54:60:a1:e6:27:60:e8:c2:c4:44:
e0:13:3f:b3:5e:2c:36:4d:cb:7d:d3:b0:e2:72:02:
53:f8:10:6d:d2:26:b9:78:c2:c7:23:6b:77:21:af:
61:7a:64:ab:20:5b:4a:3c:e2:86:58:50:85:cc:48:
7b:fd:44:32:af:f0:32:11:a6:28:d3:88:e7:2d:9f:
e2:c5:3d:d6:07:99:41:86:08:42:7e:aa:eb:9d:22:
18:fa:cd:35:7f:fb:ff:91:3f:ae:f9:8a:fe:99:0f:
4c:f1:c1:eb:53:78:56:80:8d:7e:b7:f9:30:0c:5d:
a7:57:bb:e1:1a:d1:9e:87:f4:b7:aa:fa:85:da:33:
02:5a:f3:df:40:e7:cf:9a:69:27:f4:1e:c4:e0:75:
5d:ae:db:56:eb:31:bd:3f:e3:98:4c:13:cf:9a:4c:
fa:3f:33:4d:a6:bf:70:ab:f4:6a:1f:32:0e:d9:84:
4b:dc:ea:2a:e5:bf:7a:01:8e:d9:de:09:db:71:a7:
ce:e1:35:62:ff:dc:41:1c:32:9d:49:79:35:1f:0e:
f6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:79:11:2B:04:7D:1A:79:5D:C8:80:4A:17:FC:B4:58:C7:CF:F7:A1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:330::/48
Signature Algorithm: sha256WithRSAEncryption
a6:88:ca:29:db:07:04:0e:67:9c:16:f4:da:72:c3:bf:76:5c:
89:31:05:e6:b5:c9:25:15:c0:fb:15:f1:6a:c8:6c:3e:c9:0a:
43:ac:25:bb:2a:76:9a:ac:6e:65:fc:f1:64:30:b9:40:a7:92:
16:fe:b8:8c:33:20:c5:43:0d:5e:b6:d6:9f:26:7b:7c:bb:b9:
c9:ab:65:81:12:fd:d8:e1:b3:7d:d0:f9:ed:99:c6:dd:55:aa:
5d:af:00:a8:26:49:a8:8b:9b:8f:63:44:ad:9a:2f:d8:2b:ee:
dd:fd:f6:c8:3b:fc:11:95:28:f1:7d:c6:e8:f8:2f:a6:83:d2:
4f:72:77:a4:5a:17:66:cc:f6:84:95:f5:d4:1b:af:ee:15:e4:
1f:ba:da:30:b2:12:f5:c5:6c:57:84:f8:69:76:c8:b0:cf:47:
24:30:02:95:77:c5:e9:be:b1:b6:70:82:65:bf:32:1f:20:32:
38:8b:7b:5d:21:d4:75:00:fc:6e:46:08:b3:ee:da:ca:8e:3c:
33:b4:6e:e0:ab:22:ae:a4:1c:81:3c:38:85:ba:1d:b4:bd:64:
4a:a4:e1:9a:f9:b1:49:f0:c9:16:ea:d8:66:c3:d8:60:1a:7e:
39:05:9b:de:d9:b6:b7:73:75:0b:fd:52:39:29:4e:d1:6d:d2:
03:e5:17:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:04:42 2025 by rpki-client