Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a63323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ACRB/5iMZ110tyN4XvlYqTCRQpcf6/1eB0Ri0AU0eKk=
Subject key identifier: E4:76:48:4D:89:D0:5D:2A:96:8D:C9:C9:32:60:51:C4:21:73:42:59
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2F9F934658832A4CBA588BD2F12D5EC885421294
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:20 +0000
ROA not before: Mon 26 Sep 2022 07:56:20 +0000
ROA not after: Mon 25 Sep 2023 08:01:20 +0000
asID: 59282
IP address blocks: 2400:d680:c2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:9f:93:46:58:83:2a:4c:ba:58:8b:d2:f1:2d:5e:c8:85:42:12:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:20 2022 GMT
Not After : Sep 25 08:01:20 2023 GMT
Subject: CN=E476484D89D05D2A968DC9C9326051C421734259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8e:8a:35:fe:cf:cc:e0:77:2e:1b:8c:f2:a7:
29:a9:5d:26:be:eb:0b:0e:91:3f:08:1c:f8:05:a4:
f3:bb:a0:93:92:63:20:19:b3:07:3c:a9:b5:48:19:
7d:d9:6c:fe:c9:49:ad:0b:d4:0b:8a:45:cc:e1:a2:
5f:53:f7:74:55:85:22:a2:be:bc:a1:96:5d:10:81:
63:a5:f2:41:81:93:9d:36:52:6b:52:7e:60:a6:cf:
41:9d:15:42:23:0f:59:53:af:34:73:ff:ed:a3:5a:
d5:95:56:61:16:94:6b:e9:34:7f:28:f2:35:9b:23:
c8:d1:db:22:5d:22:44:ba:9e:ca:03:c7:91:67:37:
9f:a2:c0:2f:3a:e7:ad:a8:49:15:37:55:7e:8f:84:
56:1b:39:82:07:a8:49:56:5f:d3:86:ca:08:4c:c3:
1d:25:89:03:85:3b:36:1c:81:43:39:8d:a5:15:22:
43:fc:92:1d:68:90:76:a3:cb:a5:a7:4f:96:e7:2a:
9e:1b:43:35:a1:6c:79:bf:43:4e:97:bf:b7:ea:de:
88:31:37:74:15:ee:91:32:85:05:fd:64:d3:f0:b7:
67:69:69:94:78:b1:65:f4:5f:a7:68:79:68:af:b4:
45:c7:f7:2f:ff:4c:1c:cf:9a:81:80:4b:e6:dc:86:
96:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:76:48:4D:89:D0:5D:2A:96:8D:C9:C9:32:60:51:C4:21:73:42:59
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:c2::/48
Signature Algorithm: sha256WithRSAEncryption
08:43:ef:92:e4:01:2c:f9:28:85:26:6e:22:a9:26:09:7f:ba:
a2:01:4b:5a:97:a2:86:52:49:b7:c9:dd:06:bc:83:b2:92:d8:
23:95:cd:0d:3b:47:d0:94:4c:23:5c:09:27:39:c0:e4:d8:30:
dd:49:ed:1f:4b:ff:f5:ea:4c:86:92:8a:72:ef:aa:6f:c4:0b:
d4:92:d8:c1:16:df:8f:09:e0:cb:f1:5d:5f:44:a9:d0:3c:ba:
e9:8f:fb:fc:5d:3c:df:99:f7:07:2b:9c:2f:2a:4a:e4:c8:68:
e8:b7:97:e8:67:c7:aa:cd:85:d0:bd:31:5f:41:c2:bc:c8:7f:
b8:c9:8c:12:f3:6b:cc:2e:5d:7d:8e:4f:a5:13:ca:59:39:71:
e5:84:7b:cd:ae:cd:fe:6d:9b:d9:bb:8c:bf:ad:52:64:6b:f8:
2b:c3:24:c6:d7:47:e5:0b:db:54:4d:74:93:6f:b6:79:4c:4b:
a8:ad:85:59:f4:90:b9:d0:0d:b7:e6:91:33:c7:4a:ac:f7:40:
1b:d6:c3:e9:24:1b:fa:0c:c3:98:b3:85:d2:27:6d:6c:ad:46:
5c:a5:fe:4c:f1:09:a5:54:e3:a3:16:08:17:9d:c9:d5:41:4a:
e4:f7:93:55:de:79:ce:b1:84:16:1d:36:9c:d8:d0:a7:89:a0:
14:23:6c:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:04:10 2025 by rpki-client