Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: KLb2EV9C4ItXCQqVTyPhm8sdKf8b9zH4fg/QrrCFkYE=
Subject key identifier: CE:30:3E:D9:B8:A7:CC:17:86:3B:F6:10:02:5C:00:FB:8C:80:6E:07
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6581E8B93F9C7A1E1D8E93691E6BE83B79076AFB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 07:00:01 +0000
ROA not before: Mon 26 Sep 2022 06:55:01 +0000
ROA not after: Mon 25 Sep 2023 07:00:01 +0000
asID: 59282
IP address blocks: 2400:d680:e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:81:e8:b9:3f:9c:7a:1e:1d:8e:93:69:1e:6b:e8:3b:79:07:6a:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 06:55:01 2022 GMT
Not After : Sep 25 07:00:01 2023 GMT
Subject: CN=CE303ED9B8A7CC17863BF610025C00FB8C806E07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7c:31:e8:7e:36:a6:cf:5f:52:d9:fc:e2:f1:
13:98:50:75:ac:7c:04:59:24:f6:e3:1b:ea:1c:c4:
19:34:19:09:7a:54:b0:e8:dd:56:84:00:bc:7f:2b:
1c:5f:07:e7:a3:80:6a:3e:a9:31:4a:11:24:7d:1e:
22:7d:13:f6:fb:88:1a:75:fc:bd:aa:d5:6d:be:2d:
e1:0f:52:4e:80:50:b3:6e:f3:2e:cc:d3:63:31:ae:
8c:3d:87:96:c0:e7:0c:f2:9a:2c:e9:d2:2b:38:84:
00:9f:b6:e0:07:c1:5e:a1:e6:93:df:36:64:2b:32:
47:b4:8e:e9:60:cd:ba:77:5a:50:2f:b6:dc:65:67:
6c:5b:5a:73:68:10:54:20:5c:23:12:c6:0b:83:15:
aa:05:c5:4c:a4:fa:a2:e9:51:14:dc:98:5e:9b:47:
ed:99:67:67:8a:7b:2b:b0:23:b6:98:d8:6f:41:7b:
cb:fd:13:c5:21:65:6d:92:6c:6a:8c:69:f9:9d:2c:
c1:c5:0f:5b:56:2f:10:55:b0:cc:f1:d9:a6:a2:28:
27:9c:24:db:73:3e:99:47:86:4a:9d:8f:08:48:43:
e9:c5:e0:fc:7d:af:da:a6:86:ed:0f:18:31:89:9e:
7d:2c:f5:bc:2d:6e:d5:2a:f0:5b:d7:d6:f3:cf:c1:
1e:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:30:3E:D9:B8:A7:CC:17:86:3B:F6:10:02:5C:00:FB:8C:80:6E:07
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:e::/48
Signature Algorithm: sha256WithRSAEncryption
9d:d7:16:3a:f6:f9:49:5a:81:1e:f1:f2:a7:dd:be:c0:23:4e:
b9:40:e8:4f:9d:0c:6d:02:bd:bb:86:85:0a:a6:64:8d:74:14:
8e:80:9d:42:0f:f9:54:4d:12:14:e6:d3:b0:31:8f:07:da:db:
6f:19:e0:d1:82:ed:9d:fa:66:86:57:e5:b2:d8:32:c0:cb:e8:
f0:40:86:76:37:3f:a9:a2:9a:1f:1b:26:b0:c3:00:b5:94:aa:
ed:e5:99:fd:a7:47:0d:8c:ef:a1:92:5d:cc:b6:f6:fc:a1:ff:
a6:24:40:83:f8:97:21:d0:a2:67:2f:08:62:06:14:f4:b3:ad:
ec:b7:5a:ae:a3:3c:d0:ef:46:3b:fc:76:3f:79:07:3e:c7:65:
f1:5d:14:d3:83:d1:20:f6:ea:78:1b:e8:20:41:fa:74:6a:f6:
dc:3a:27:be:2b:c7:0f:b2:b0:2c:d0:73:34:14:55:c9:30:c5:
43:37:ec:f2:e1:17:0d:14:f7:7d:91:0f:2a:5f:c1:44:ed:21:
e8:ef:8e:71:2a:f7:5c:cc:66:97:09:c4:37:74:16:ca:05:70:
f9:7f:a3:2e:c5:ce:c7:d9:91:c6:32:c2:68:55:0f:76:ac:e4:
51:b6:f6:b0:e4:11:bf:64:a7:d8:ad:9c:f7:85:0b:97:8c:89:
97:4a:66:df
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgIUZYHouT+ceh4djpNpHmvoO3kHavswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNjU1MDFaFw0yMzA5MjUwNzAwMDFaMDMxMTAvBgNV
BAMTKENFMzAzRUQ5QjhBN0NDMTc4NjNCRjYxMDAyNUMwMEZCOEM4MDZFMDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRfDHofjamz19S2fzi8ROYUHWs
fARZJPbjG+ocxBk0GQl6VLDo3VaEALx/KxxfB+ejgGo+qTFKESR9HiJ9E/b7iBp1
/L2q1W2+LeEPUk6AULNu8y7M02Mxrow9h5bA5wzymizp0is4hACftuAHwV6h5pPf
NmQrMke0julgzbp3WlAvttxlZ2xbWnNoEFQgXCMSxguDFaoFxUyk+qLpURTcmF6b
R+2ZZ2eKeyuwI7aY2G9Be8v9E8UhZW2SbGqMafmdLMHFD1tWLxBVsMzx2aaiKCec
JNtzPplHhkqdjwhIQ+nF4Px9r9qmhu0PGDGJnn0s9bwtbtUq8FvX1vPPwR4xAgMB
AAGjggI3MIICMzAdBgNVHQ4EFgQUzjA+2binzBeGO/YQAlwA+4yAbgcwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjUzYTNhMmYz
NDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADWgAAOMA0G
CSqGSIb3DQEBCwUAA4IBAQCd1xY69vlJWoEe8fKn3b7AI065QOhPnQxtAr27hoUK
pmSNdBSOgJ1CD/lUTRIU5tOwMY8H2ttvGeDRgu2d+maGV+Wy2DLAy+jwQIZ2Nz+p
opofGyawwwC1lKrt5Zn9p0cNjO+hkl3Mtvb8of+mJECD+Jch0KJnLwhiBhT0s63s
t1quozzQ70Y7/HY/eQc+x2XxXRTTg9Eg9up4G+ggQfp0avbcOie+K8cPsrAs0HM0
FFXJMMVDN+zy4RcNFPd9kQ8qX8FE7SHo745xKvdczGaXCcQ3dBbKBXD5f6Muxc7H
2ZHGMsJoVQ92rORRtvaw5BG/ZKfYrZz3hQuXjImXSmbf
-----END CERTIFICATE-----
Generated at Tue Mar 11 05:04:10 2025 by rpki-client