Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3135303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: P+9rYgT+z16DWu8vDLZ00mmQPTbPCCjH2qycMKvMX9M=
Subject key identifier: 2C:C9:A3:D5:C8:52:E5:5A:C5:30:46:6B:E6:B9:F7:81:75:18:90:97
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2AB6C59EBE47D35D147EC1A1DB1018C9A80C154C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:15 +0000
ROA not before: Mon 26 Sep 2022 07:57:15 +0000
ROA not after: Mon 25 Sep 2023 08:02:15 +0000
asID: 59282
IP address blocks: 2400:d680:150::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:b6:c5:9e:be:47:d3:5d:14:7e:c1:a1:db:10:18:c9:a8:0c:15:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:15 2022 GMT
Not After : Sep 25 08:02:15 2023 GMT
Subject: CN=2CC9A3D5C852E55AC530466BE6B9F78175189097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:af:ed:46:3a:e4:06:d4:d3:64:18:69:bb:eb:
40:6b:9d:f0:fd:fa:81:fb:55:fb:0a:ae:cb:94:84:
e0:03:d2:a7:37:25:cd:0c:28:e8:91:2f:11:04:bb:
3d:27:3f:83:e8:1a:8d:92:1b:e3:fa:d5:a7:71:64:
c4:ec:c3:44:74:95:a4:b1:33:00:27:f5:75:92:f1:
cc:86:cd:46:2b:fb:e8:92:f0:fd:bf:67:5b:cd:f3:
ec:a3:72:51:20:6a:c1:70:45:4d:fa:06:04:5b:c8:
45:49:b9:28:8c:e2:5e:c8:84:00:71:29:38:39:09:
21:9b:ac:9b:19:46:2f:82:6c:8f:69:ea:bb:cf:b1:
b7:98:e7:7a:0d:9d:98:25:08:2c:94:96:ac:7a:57:
d2:d4:4c:29:a8:4c:53:40:79:93:e3:f5:3c:8e:1d:
4d:19:65:7c:7f:08:2d:24:84:de:f2:4c:ec:4a:9a:
71:53:22:f3:66:72:50:d5:fa:2e:d4:41:5e:7d:3f:
a8:25:47:ba:60:ea:76:d2:6b:2d:db:19:5a:ae:77:
60:70:12:95:a5:a4:5b:02:00:41:d5:ad:86:d1:20:
46:83:b1:87:c1:b7:14:33:2b:a5:38:f7:32:ce:43:
4f:2e:46:ec:4e:b2:f6:97:34:9c:21:55:e0:b0:d9:
55:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:C9:A3:D5:C8:52:E5:5A:C5:30:46:6B:E6:B9:F7:81:75:18:90:97
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:150::/48
Signature Algorithm: sha256WithRSAEncryption
4d:0c:a0:85:49:68:bd:c7:85:8f:47:7e:ad:1e:e8:aa:e1:04:
ff:81:07:65:da:8c:08:c0:71:34:df:b0:07:44:97:e1:57:5e:
0d:6b:24:f9:4c:35:11:5a:1a:fb:21:09:22:18:76:a6:f7:db:
e9:a1:27:61:59:c0:3c:50:e0:1b:6e:8b:1a:6a:b3:5d:12:e2:
a9:8d:b6:4e:ac:f0:3f:0a:ae:bb:85:85:36:d7:db:97:ba:8e:
8e:2d:55:04:7f:c6:5a:bb:3c:70:ab:d3:2a:3b:3d:29:77:8e:
96:5f:1b:7f:d1:46:e4:5a:1a:d6:bb:e3:a6:73:a5:5f:3b:21:
69:f5:f3:df:f4:fd:a5:cb:74:ba:0b:ec:72:e6:b0:73:ad:14:
77:7d:35:72:a4:f9:ae:79:59:dc:b8:b7:97:cd:59:b4:d1:3a:
88:0a:d2:24:95:27:ca:96:33:97:cc:29:a8:f8:9f:4c:35:04:
fe:4f:37:fd:86:ac:10:4d:86:f9:be:f4:8b:cb:9c:e9:cd:de:
ff:9c:ab:d4:5a:ac:16:e3:6d:1e:8c:42:87:94:47:4e:fb:25:
70:f7:40:30:6c:24:3e:eb:50:28:a1:ea:ee:1f:a3:f6:17:c0:
fd:a5:1f:04:77:22:02:29:3a:aa:e7:b9:d7:6b:15:b2:f1:d7:
32:19:75:14
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUKrbFnr5H010UfsGh2xAYyagMFUwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MTVaFw0yMzA5MjUwODAyMTVaMDMxMTAvBgNV
BAMTKDJDQzlBM0Q1Qzg1MkU1NUFDNTMwNDY2QkU2QjlGNzgxNzUxODkwOTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUr+1GOuQG1NNkGGm760BrnfD9
+oH7VfsKrsuUhOAD0qc3Jc0MKOiRLxEEuz0nP4PoGo2SG+P61adxZMTsw0R0laSx
MwAn9XWS8cyGzUYr++iS8P2/Z1vN8+yjclEgasFwRU36BgRbyEVJuSiM4l7IhABx
KTg5CSGbrJsZRi+CbI9p6rvPsbeY53oNnZglCCyUlqx6V9LUTCmoTFNAeZPj9TyO
HU0ZZXx/CC0khN7yTOxKmnFTIvNmclDV+i7UQV59P6glR7pg6nbSay3bGVqud2Bw
EpWlpFsCAEHVrYbRIEaDsYfBtxQzK6U49zLOQ08uRuxOsvaXNJwhVeCw2VUrAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQULMmj1chS5VrFMEZr5rn3gXUYkJcwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzEzNTMwM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
UDANBgkqhkiG9w0BAQsFAAOCAQEATQyghUlovceFj0d+rR7oquEE/4EHZdqMCMBx
NN+wB0SX4VdeDWsk+Uw1EVoa+yEJIhh2pvfb6aEnYVnAPFDgG26LGmqzXRLiqY22
TqzwPwquu4WFNtfbl7qOji1VBH/GWrs8cKvTKjs9KXeOll8bf9FG5Foa1rvjpnOl
XzshafXz3/T9pct0ugvscuawc60Ud301cqT5rnlZ3Li3l81ZtNE6iArSJJUnypYz
l8wpqPifTDUE/k83/YasEE2G+b70i8uc6c3e/5yr1FqsFuNtHoxCh5RHTvslcPdA
MGwkPutQKKHq7h+j9hfA/aUfBHciAik6que512sVsvHXMhl1FA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org