Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3361643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: i1e0tjZ1zjYw1c19S7QaTaH0KPdeEW0eWqdL/o1TYYQ=
Subject key identifier: 9A:AB:95:D1:61:A0:62:F6:56:DA:0B:57:B4:CC:D9:64:71:AF:69:47
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 341D628C55364A2BA1C7B8DADB5A8F9B8126B8EB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:35 +0000
ROA not before: Mon 26 Sep 2022 10:55:35 +0000
ROA not after: Mon 25 Sep 2023 11:00:35 +0000
asID: 59282
IP address blocks: 2400:d680:3ad::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:1d:62:8c:55:36:4a:2b:a1:c7:b8:da:db:5a:8f:9b:81:26:b8:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:35 2022 GMT
Not After : Sep 25 11:00:35 2023 GMT
Subject: CN=9AAB95D161A062F656DA0B57B4CCD96471AF6947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f3:64:92:97:14:89:7e:2b:7b:6f:3c:7d:00:
87:be:ad:81:c5:15:7c:49:80:8e:f3:63:27:c2:25:
f0:e4:28:48:e5:87:1c:39:79:87:2c:46:d8:4b:97:
c0:1e:ae:40:3a:4f:bd:47:43:b3:9b:ae:89:2d:9f:
0d:6f:51:a9:c3:d6:e4:d4:5e:63:7b:44:a7:bc:d7:
a3:ff:98:f6:3e:8a:15:f9:ca:f0:38:e4:70:74:99:
c9:0e:bd:e0:bf:65:18:db:76:a6:8e:b7:48:09:96:
78:61:73:d2:46:59:13:2d:88:d3:58:e0:c9:e0:85:
ef:3d:f1:28:e4:65:b1:e1:86:c1:4c:79:f2:04:85:
df:d2:31:ef:79:37:b0:b4:78:c7:05:bc:a1:1a:b8:
97:a0:dc:9c:71:87:cc:f6:3d:78:5c:08:88:b8:3d:
0d:84:17:cc:7a:a5:cb:f1:83:3a:82:71:56:92:e4:
e9:af:7c:00:55:99:9c:35:36:e6:3d:6f:7f:f7:a0:
b1:9c:31:23:42:a2:2d:f8:88:e5:69:be:e8:6a:6f:
ac:a6:b3:25:ae:a5:f2:00:3d:8a:c9:33:2b:de:ea:
1e:67:00:d7:61:58:cb:8a:d5:9b:bf:02:2a:da:86:
b1:46:a4:c9:cf:75:44:e1:a7:38:4b:16:0d:ab:50:
64:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:AB:95:D1:61:A0:62:F6:56:DA:0B:57:B4:CC:D9:64:71:AF:69:47
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3ad::/48
Signature Algorithm: sha256WithRSAEncryption
95:c0:7c:a5:c1:c5:e2:e6:b8:d3:36:8e:3c:d7:e6:b3:97:b6:
cf:06:e6:e2:4a:d8:0e:1a:09:4f:a8:94:6b:43:db:69:ed:0b:
2a:58:d7:00:26:62:a7:c4:5b:57:cc:49:1a:1e:30:ec:53:71:
5f:d4:45:9f:42:df:5b:1d:26:f3:05:77:1c:b5:2b:f5:19:6d:
25:31:61:f7:24:e8:de:27:59:27:d5:5d:79:de:36:93:35:53:
f0:c2:2a:e0:fd:47:22:92:ed:0d:7d:75:ea:80:36:d7:21:2a:
31:f9:b3:46:ff:b0:62:4a:18:21:6c:4f:74:41:1f:bf:5a:43:
73:0f:a4:e3:90:87:58:ad:df:b3:2e:90:0c:dc:5c:1a:7e:db:
b1:55:91:64:88:f1:3f:60:10:35:29:3c:f9:a7:ec:0e:6e:ad:
a3:45:a9:70:aa:24:5c:05:94:d8:76:17:fa:32:91:63:50:1c:
8e:bb:21:b5:60:41:c4:65:7a:27:00:ea:d6:96:5b:51:0f:25:
81:1b:7a:27:07:71:7b:b4:da:32:e8:78:43:1c:f9:57:59:e1:
ff:ef:ff:c4:85:8b:9c:3b:8c:5e:7d:8d:ac:d3:d6:23:0c:3a:
83:c3:cf:52:61:fa:51:d8:af:43:f0:3f:28:b7:67:71:98:7d:
2f:38:31:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:03:22 2025 by rpki-client