Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a36663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: zsDOhCripTSCerlAkq3OM5ZLrvTMjAC3TalSSc+NAbA=
Subject key identifier: DF:17:34:7F:75:BF:F9:E2:E8:B9:79:F9:38:92:8C:69:AD:B4:5E:94
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6AA2BBE19D6FAA8756754DE47C90B2FADB8462BC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:22 +0000
ROA not before: Mon 26 Sep 2022 07:56:22 +0000
ROA not after: Mon 25 Sep 2023 08:01:22 +0000
asID: 59282
IP address blocks: 2400:d680:6f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:a2:bb:e1:9d:6f:aa:87:56:75:4d:e4:7c:90:b2:fa:db:84:62:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:22 2022 GMT
Not After : Sep 25 08:01:22 2023 GMT
Subject: CN=DF17347F75BFF9E2E8B979F938928C69ADB45E94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:2b:de:86:6a:ce:98:0e:37:5e:15:13:46:54:
46:bc:30:7e:7e:50:eb:4c:28:79:a3:9b:2d:ae:3e:
fb:9e:0c:a3:c3:7d:1c:38:5d:d0:18:1f:03:d8:49:
e2:1d:ce:4d:f5:65:a5:91:5e:21:bf:78:4c:b4:51:
9d:4d:26:86:37:de:a5:20:c0:02:95:9d:69:88:21:
88:09:cb:73:80:be:6f:2a:0a:dd:8f:bd:21:12:68:
21:23:2f:51:94:4d:ae:10:ef:5b:c4:56:70:50:b9:
6e:ca:d6:35:d5:34:f2:bf:2b:f1:4f:2b:74:f9:f1:
e9:a8:07:61:89:71:97:0f:bf:fd:ca:16:1d:b8:29:
e0:c4:df:8e:d6:b1:01:7f:23:98:30:ac:38:1e:98:
b3:27:f1:29:8b:17:8e:1c:6a:3a:de:90:68:3f:fe:
d1:f9:d2:fc:5d:c1:48:77:67:2f:80:1d:c3:e0:f6:
37:f6:27:50:b9:fd:d1:34:31:f6:73:a5:9d:94:16:
e3:c0:57:d7:e7:9e:b6:db:73:f8:93:12:dd:7c:b2:
44:a9:5a:ac:c2:73:eb:ad:b1:12:97:f8:3e:19:36:
ee:da:fd:81:5c:0e:7e:d6:bf:65:5a:35:eb:eb:d0:
11:cc:db:6d:dc:8c:24:56:3f:2b:04:b9:4c:04:7b:
e2:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:17:34:7F:75:BF:F9:E2:E8:B9:79:F9:38:92:8C:69:AD:B4:5E:94
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:6f::/48
Signature Algorithm: sha256WithRSAEncryption
73:be:8c:d2:d1:cf:61:7a:18:db:8a:28:00:a6:a3:29:7e:8f:
cd:e9:02:42:fd:ef:04:c0:06:53:58:25:64:fe:7c:a4:bb:ff:
0c:7b:18:81:08:14:e8:fd:ad:67:9e:4c:09:35:3b:03:a9:a0:
7c:2d:59:b7:3f:3b:34:e6:07:dd:b2:f7:e0:94:70:42:cd:60:
fe:ea:af:95:79:40:cd:c7:1f:c1:4a:c3:7f:5d:3c:0c:bf:8a:
df:ae:f0:82:46:dd:12:57:02:7c:f0:92:c6:46:84:5a:c5:96:
42:e7:91:88:2f:cc:82:34:15:47:ee:ff:fe:0a:25:d5:0c:54:
25:25:ee:d3:25:b4:94:9f:e9:64:3b:40:6f:53:88:ac:b6:72:
ee:64:39:76:d3:11:cc:77:3e:5d:20:e0:34:c0:d8:b0:59:65:
b1:7b:86:40:dd:16:e5:d1:44:07:fc:60:fb:1f:ac:09:26:eb:
03:48:43:f6:bc:20:cb:35:d3:76:b2:77:ef:08:89:85:b7:83:
74:dd:45:eb:79:ff:19:76:ca:50:67:21:e4:8c:cd:f8:f8:49:
bb:dc:2e:ed:64:90:5c:df:4a:22:6e:0d:44:78:8d:52:43:af:
5d:79:3e:5b:ad:e8:c7:8f:a5:b1:62:06:f0:94:26:85:3c:cd:
c5:15:be:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:05:14 2025 by rpki-client