Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a65313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: lFbmhiMsE1C1XClzaoIwktpZ+jx1a5MYZXqDsz2Bj64=
Subject key identifier: 30:3A:B0:4E:CB:B6:70:42:06:27:A2:09:1E:93:32:01:68:13:79:25
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5934512761CF40EAA757922E78537504297A63A0
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:09 +0000
ROA not before: Mon 26 Sep 2022 07:57:09 +0000
ROA not after: Mon 25 Sep 2023 08:02:09 +0000
asID: 59282
IP address blocks: 2400:d680:e1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:34:51:27:61:cf:40:ea:a7:57:92:2e:78:53:75:04:29:7a:63:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:09 2022 GMT
Not After : Sep 25 08:02:09 2023 GMT
Subject: CN=303AB04ECBB670420627A2091E93320168137925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:80:b2:ba:6c:d9:3c:a2:73:0f:9c:44:f1:ae:
1a:c2:7d:7c:62:e6:25:5c:27:c1:7d:74:39:49:96:
f8:e1:a5:6c:13:ee:e0:b1:8c:84:d8:be:49:b3:09:
78:47:ff:57:ff:e6:5c:a1:c0:8c:1e:a2:dc:b5:91:
8b:37:6c:72:6e:11:52:59:ef:b8:bb:c1:9a:3d:18:
b0:76:3b:00:f3:22:4d:bf:46:c0:f5:f2:d3:83:c4:
ef:1d:0e:01:de:3c:d4:77:60:94:94:28:6a:f7:3e:
14:d2:47:78:48:94:8e:bb:e9:5f:62:d4:96:99:a7:
f3:f4:fd:01:33:ee:7c:e3:1f:c4:db:ee:27:c2:57:
1c:0f:86:20:b1:b7:b6:e3:8d:07:3a:0d:02:d2:22:
a1:16:0e:cf:bd:b5:51:4e:ef:d3:1d:9a:03:12:31:
f5:74:57:32:98:92:82:59:bb:3c:93:0a:07:c2:6d:
c5:57:47:2f:0b:c9:6e:89:ce:c6:8b:5a:0f:c0:11:
96:06:31:0a:fa:8b:fa:5d:60:28:63:9f:d6:d1:80:
8c:4e:7b:4b:02:a3:e6:a2:e5:82:57:e4:f3:58:17:
31:c5:ae:21:4a:d9:f0:58:7d:0a:b7:75:ac:24:f2:
e5:81:b4:19:d4:af:bf:99:1a:95:a6:aa:6f:b9:b9:
36:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:3A:B0:4E:CB:B6:70:42:06:27:A2:09:1E:93:32:01:68:13:79:25
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:e1::/48
Signature Algorithm: sha256WithRSAEncryption
30:21:de:88:0e:8a:49:d9:61:d5:94:e3:e8:63:7a:af:de:34:
85:e5:d8:a8:ae:28:de:01:82:db:8b:f1:f3:41:52:bb:1d:ee:
5a:e9:a8:67:e9:8e:b9:f9:5d:29:29:cc:c8:65:c6:83:9b:31:
e7:58:7c:90:c0:88:6f:96:72:c9:80:0c:6c:a0:16:ae:4d:25:
b7:03:f8:ed:5f:7c:d3:b8:ff:b7:bb:92:97:8d:f1:84:b8:f0:
5d:36:ea:21:db:2c:60:17:b0:c1:d7:f7:7d:47:a0:f9:e5:d9:
8b:8c:b9:33:81:ba:70:57:35:4b:07:6a:82:a7:d6:cb:5f:6f:
7f:ec:33:a2:ad:bc:3b:e2:3e:5c:c3:79:c2:53:74:4a:06:81:
5e:ff:4f:7c:f4:5c:48:22:16:db:01:fb:06:89:2c:1d:01:61:
24:38:56:cf:2d:12:44:40:1c:20:9a:2e:b0:08:3a:95:50:1c:
91:3c:c5:f6:39:9d:1f:d5:87:19:d2:23:22:0a:2e:1d:ec:6b:
73:e6:5d:1f:15:cd:95:8c:39:3e:2f:56:e7:28:3a:fd:66:1d:
d5:47:ee:f8:73:0a:15:af:45:97:23:e8:28:9c:05:79:14:1b:
06:d6:9c:af:25:b0:ab:9e:73:34:c5:b7:7a:b4:74:60:c2:3b:
0c:e4:60:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:04:35 2025 by rpki-client