Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3336623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: /QWgklNKEcCrIjQIMLt8fbo3NeI1QBQIgomVF6qmYks=
Subject key identifier: 10:3B:46:DD:57:47:26:96:EC:2E:85:15:2E:AA:6F:6D:A2:22:CB:FF
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 285EAEE2A3476CD3C80E14F03FE08084AF00322E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:51 +0000
ROA not before: Mon 26 Sep 2022 10:55:51 +0000
ROA not after: Mon 25 Sep 2023 11:00:51 +0000
asID: 59282
IP address blocks: 2400:d680:36b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:5e:ae:e2:a3:47:6c:d3:c8:0e:14:f0:3f:e0:80:84:af:00:32:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:51 2022 GMT
Not After : Sep 25 11:00:51 2023 GMT
Subject: CN=103B46DD57472696EC2E85152EAA6F6DA222CBFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:75:c6:ed:52:12:65:c0:4b:5f:7e:af:f1:b7:
dc:05:98:12:bc:98:69:03:57:79:97:cb:e7:ab:9f:
04:bc:d3:55:f2:0b:76:c6:ec:51:6b:85:d0:19:06:
85:34:4b:04:1a:05:d2:38:59:52:96:b1:f3:f7:06:
03:46:a8:1f:2f:a2:6c:8b:9e:dc:fc:5a:8c:06:c0:
04:35:f4:9b:77:2c:7c:82:f9:c0:05:e7:8b:41:af:
e8:e9:a3:7f:2f:9d:eb:e0:94:2e:7d:e1:22:3d:c4:
0a:96:fc:01:13:63:7d:79:66:b7:10:ac:04:ee:74:
3d:da:56:c9:0e:59:46:00:b8:f5:21:a9:20:1b:4e:
a1:58:74:07:20:aa:58:24:32:31:c7:2a:cf:52:57:
05:70:8f:8d:a0:9b:36:11:84:3e:f9:5e:08:d8:a2:
e8:f5:77:a6:ef:f5:7f:62:97:23:78:6d:6e:1d:84:
1c:07:ac:dd:65:4a:cb:80:6f:4e:f3:4b:fb:26:96:
68:01:cb:90:ad:b7:22:8e:1f:6c:9a:47:2e:05:d1:
fa:fc:51:3c:61:ac:b8:65:82:2b:13:8e:d2:95:a0:
92:a2:01:7b:c9:1e:04:d9:c1:54:89:ed:2f:e7:64:
81:ba:7f:b6:57:77:2f:c7:d9:ee:c4:c1:d8:cb:f2:
04:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:3B:46:DD:57:47:26:96:EC:2E:85:15:2E:AA:6F:6D:A2:22:CB:FF
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3336623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:36b::/48
Signature Algorithm: sha256WithRSAEncryption
1e:ab:5c:e4:36:01:3f:23:de:38:f8:d7:bb:b1:92:0b:84:9d:
4c:28:4c:81:fd:5f:a6:57:35:18:f1:94:44:6f:49:ad:8e:18:
1b:2f:1a:35:f4:78:28:7a:f7:16:60:d6:0b:9e:8b:e2:c2:70:
70:bf:74:bf:a6:4d:0f:7f:c0:f8:75:a6:d7:fc:4c:cd:87:1d:
1f:4f:61:c4:da:00:b5:06:6d:66:59:23:60:b0:5c:c9:56:fb:
36:d0:49:a8:dc:5e:ef:20:f2:d8:a9:14:5e:09:fa:26:2f:e3:
5e:f7:59:da:39:44:9e:e7:19:10:23:62:f4:6a:49:97:7b:c3:
6d:bd:95:76:c8:cf:8f:e4:dd:44:0d:8d:12:39:91:93:99:b6:
a1:0e:9e:3b:7c:95:e4:15:c2:02:39:94:ea:b3:55:9d:45:63:
3a:1e:a5:90:af:4b:fa:d0:7e:cc:1a:ad:25:81:bd:73:ad:b7:
15:b2:60:36:ec:5c:6e:09:de:0e:03:81:0b:2a:47:4e:4b:00:
2b:55:bc:16:ca:db:11:dc:46:2b:cb:b8:81:8a:60:a2:f3:ab:
3c:66:61:42:f9:97:5b:63:58:4d:49:a2:0b:48:6b:31:2e:e4:
ac:39:19:ce:07:82:61:8a:35:21:cf:7c:97:4d:f4:02:65:01:
ba:2b:98:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:03:23 2025 by rpki-client