Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3339663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: TtyMJpy3JuobCOtrugmeOOwD3icWFcZ04xGnZMHl/MY=
Subject key identifier: 8B:73:52:12:A0:AF:06:B2:36:87:F1:20:5D:A4:06:99:7D:84:09:B9
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 038A87C8F8789BCD7F543DEA439C2B510135B74C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:38 +0000
ROA not before: Mon 26 Sep 2022 10:55:38 +0000
ROA not after: Mon 25 Sep 2023 11:00:38 +0000
asID: 59282
IP address blocks: 2400:d680:39f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:8a:87:c8:f8:78:9b:cd:7f:54:3d:ea:43:9c:2b:51:01:35:b7:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:38 2022 GMT
Not After : Sep 25 11:00:38 2023 GMT
Subject: CN=8B735212A0AF06B23687F1205DA406997D8409B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e5:e5:da:d1:5e:a0:6f:2c:a0:4b:b5:9e:05:
55:5e:63:5f:5a:6f:c5:e5:77:2d:81:bd:a6:a6:7e:
3a:d1:af:78:c1:89:a2:b6:25:7b:ff:c4:81:88:f4:
f9:16:7a:43:e7:01:e5:5f:69:9a:ac:93:df:9a:90:
68:54:03:56:72:f6:7f:79:f4:76:c7:24:78:86:b8:
53:9b:b3:db:69:cd:3d:ad:b4:44:47:5a:51:26:e5:
6f:34:bd:95:f2:0d:c9:8e:8c:d1:79:e8:d8:37:51:
f6:d8:81:b0:1b:8a:f9:07:df:fe:dc:e1:1a:53:61:
26:a5:26:54:15:6c:fc:f2:7b:ec:a7:67:a1:38:ad:
ad:d3:ab:4c:31:4c:06:19:f2:1e:59:3a:92:ef:13:
de:5f:2f:67:50:48:a1:50:5f:26:3b:e6:25:3c:e9:
f1:45:1d:b8:a8:b2:22:32:e2:0b:d8:68:ef:34:2f:
de:96:4a:fc:b2:46:f4:8b:49:39:9b:e4:4a:18:29:
51:28:9c:2f:bc:f7:a2:17:2c:7e:3e:90:2c:be:f4:
0e:87:18:6b:ba:2b:22:03:5e:3f:2a:1e:38:56:fc:
2b:5e:f8:46:24:70:a9:b9:75:91:9f:67:2b:67:16:
96:a5:34:4b:b6:71:24:2c:6e:5c:87:b0:f9:44:7d:
ee:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:73:52:12:A0:AF:06:B2:36:87:F1:20:5D:A4:06:99:7D:84:09:B9
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:39f::/48
Signature Algorithm: sha256WithRSAEncryption
7d:b4:db:ec:8e:54:a7:f6:ce:8a:bf:41:76:42:09:ea:2a:0c:
89:92:43:a6:73:38:75:b1:c3:4d:b5:0e:01:ac:52:29:d6:57:
4d:55:f5:29:24:68:5e:6f:6d:f5:3d:c7:3b:b6:d9:d7:8e:aa:
35:f6:42:4c:df:cf:b0:59:6e:3e:66:bc:15:f9:c0:53:08:29:
b5:59:db:a7:19:8a:48:52:84:af:d0:28:e9:97:ca:53:3f:8d:
9a:78:2b:1e:f8:27:18:f6:c6:71:a6:7e:ba:da:63:fa:fc:e8:
a6:38:d3:54:a6:18:f3:4f:30:fc:58:40:6e:68:99:c5:f8:33:
48:40:c2:68:b4:5c:5a:35:a3:8d:03:f3:75:ca:40:47:99:fb:
28:5c:33:27:4c:fe:b5:df:be:b1:2f:bf:e2:24:28:f4:02:0e:
52:48:7a:70:de:65:12:33:10:ed:8c:69:91:25:2d:e4:45:34:
68:6e:72:f6:76:70:2a:08:aa:cd:b2:97:f3:be:82:12:98:92:
d3:2f:d1:7e:e3:fa:a6:cb:4b:82:8a:83:27:2e:eb:62:85:79:
14:8f:a1:6f:87:e6:d9:93:d3:77:68:35:9a:23:94:ad:ef:83:
0d:36:2d:f4:72:ee:02:45:18:5f:95:bc:3a:66:16:d4:06:9e:
4e:c3:ac:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:01:49 2025 by rpki-client