Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a39333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Za1P4CBmYqy/8wgwVOyCzRz8HuddaBwp2IFZKUXdlmc=
Subject key identifier: B2:57:B6:E7:A1:E0:D2:1D:0A:D0:11:83:BA:82:BC:14:23:42:88:33
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 049545244F7F1A8B17D9EA2C21E5603D7D03B98D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:45 +0000
ROA not before: Mon 26 Sep 2022 07:56:45 +0000
ROA not after: Mon 25 Sep 2023 08:01:45 +0000
asID: 59282
IP address blocks: 2400:d680:93::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:95:45:24:4f:7f:1a:8b:17:d9:ea:2c:21:e5:60:3d:7d:03:b9:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:45 2022 GMT
Not After : Sep 25 08:01:45 2023 GMT
Subject: CN=B257B6E7A1E0D21D0AD01183BA82BC1423428833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:23:03:f7:cb:36:6e:66:1f:db:14:15:23:56:
f4:9d:3f:aa:29:98:bd:e4:78:dc:c7:78:d7:ab:51:
77:fc:0f:fb:07:48:d2:63:77:25:10:99:25:04:0b:
0f:1c:96:66:a7:0b:2d:d9:e6:a0:6e:82:d0:6d:26:
58:36:18:fd:91:ec:e8:5a:6c:02:30:00:7a:a4:84:
fe:0d:9e:f3:bf:3e:75:73:97:79:5e:a5:84:be:b3:
c6:5e:61:cc:23:a7:5b:71:63:72:eb:72:ec:f1:db:
a5:8c:f7:75:64:de:b7:10:07:e0:fc:af:43:32:98:
ad:ef:18:9a:c1:0b:f8:58:59:da:2d:c6:fa:d7:35:
6a:65:a8:1f:a0:dc:57:50:00:0c:ca:bc:51:c8:13:
98:92:51:e4:06:32:8b:c8:49:ac:b6:86:22:65:e0:
3c:5c:52:47:ba:9d:2d:78:b6:00:f0:8f:92:a5:a1:
f2:6e:0e:c9:8a:fc:32:4a:10:02:51:7f:9e:43:d5:
43:ba:b3:9e:fa:df:78:6c:8f:87:0a:1e:59:0f:fa:
03:6d:d8:74:7c:ff:e7:b7:ff:2c:76:a2:6f:55:89:
61:66:d9:6c:be:9e:10:75:da:5f:29:41:aa:20:85:
6e:b3:64:12:5b:07:78:86:f8:21:e1:2a:ed:9e:ff:
f6:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:57:B6:E7:A1:E0:D2:1D:0A:D0:11:83:BA:82:BC:14:23:42:88:33
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a39333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:93::/48
Signature Algorithm: sha256WithRSAEncryption
c8:cc:61:8e:1b:3a:a7:4f:9d:09:d7:fe:53:e1:d1:96:03:cd:
8b:f3:05:69:69:fb:33:92:c9:08:a0:47:aa:8f:de:02:bf:1b:
88:5e:c5:ff:3c:37:01:e9:d1:0e:35:b5:f7:ee:17:ed:06:2c:
1e:e4:fd:23:b2:0b:97:5d:af:87:a2:9a:00:00:27:77:b8:cd:
df:ef:fb:20:e5:40:fb:d2:a3:44:fb:54:77:e0:6d:a0:c8:c1:
5d:bb:db:50:d1:e2:d5:22:71:9b:27:68:40:10:f4:5c:ec:d9:
c1:2e:2a:2f:fa:13:f7:e2:ca:f5:4e:60:a4:a0:fd:8a:75:c6:
30:cd:2b:24:dd:d6:d9:57:52:d0:af:52:e4:6e:47:68:d0:2d:
79:de:ef:97:32:47:c8:15:ae:b5:cd:89:ab:e5:48:35:31:16:
b0:e9:0c:af:da:22:85:82:a4:86:90:f0:a7:4d:7d:75:07:b6:
30:b3:04:3b:34:9e:4e:68:a0:84:f5:1a:2b:84:ee:b5:d3:79:
6a:d9:57:21:29:3b:86:0d:86:3e:b6:01:6c:6a:97:0c:07:2e:
a1:c5:9b:4d:d1:6a:e1:71:8a:ad:c5:bc:ff:a9:ae:e2:50:b0:
99:06:14:94:83:42:f8:5d:6c:16:40:79:37:61:1a:82:5e:a4:
9c:9c:1a:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:06:05 2025 by rpki-client