Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3135613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 33q6Kn3HfvckLMm1DODpsJqnwS66PSfSQIoGZjzHQnY=
Subject key identifier: 02:02:44:9A:34:11:21:E0:F2:E6:25:57:D9:A8:44:D7:50:B0:86:3D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 56B232E5626F3ECC40B181AC0498EBD8CEE190E7
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:00 +0000
ROA not before: Mon 26 Sep 2022 07:57:00 +0000
ROA not after: Mon 25 Sep 2023 08:02:00 +0000
asID: 59282
IP address blocks: 2400:d680:15a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:b2:32:e5:62:6f:3e:cc:40:b1:81:ac:04:98:eb:d8:ce:e1:90:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:00 2022 GMT
Not After : Sep 25 08:02:00 2023 GMT
Subject: CN=0202449A341121E0F2E62557D9A844D750B0863D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:95:98:ca:59:ce:6c:3a:4f:87:b7:f7:03:06:
7a:c0:61:87:19:bb:17:05:37:a2:43:e4:7d:63:e5:
e2:60:c2:dc:44:1f:9c:a9:ab:8f:c6:73:38:5a:17:
5c:9e:06:b3:2a:4e:16:a3:83:73:9b:18:90:50:b2:
be:6c:a6:33:d6:7f:d1:9e:79:46:a5:4b:a1:30:e1:
c8:a3:9a:43:2c:9e:32:17:7a:c8:f2:2f:83:41:dd:
4f:b4:35:ee:a0:ee:2f:46:90:98:fc:17:fd:47:0f:
50:76:ae:20:3b:6b:1f:7e:14:95:69:90:95:dc:8e:
42:21:67:f2:db:62:71:84:32:3c:14:e8:b0:a5:0c:
cf:ad:31:15:21:a3:d6:3a:25:0f:4a:f7:de:09:b9:
14:46:14:a1:91:6f:7b:31:43:af:11:1e:81:78:7b:
29:4d:a0:9e:4d:64:1b:bc:5e:ec:0a:1e:4b:02:c1:
10:cc:88:3d:56:08:a6:e3:a6:f5:d5:b8:d8:1f:67:
a1:e5:3e:9e:8e:12:bb:95:bc:85:a0:e3:bf:94:1e:
4a:f8:02:a3:54:16:95:96:76:b6:06:6d:57:d8:5d:
72:24:57:d7:f1:2c:1a:73:d5:24:df:e1:cf:2b:05:
fe:9a:7f:1a:6c:95:ab:c1:5e:c8:9d:02:38:1f:a7:
6f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:02:44:9A:34:11:21:E0:F2:E6:25:57:D9:A8:44:D7:50:B0:86:3D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3135613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:15a::/48
Signature Algorithm: sha256WithRSAEncryption
c9:85:15:76:2c:e9:9f:d5:4d:43:d2:b5:75:68:d3:8c:1a:ae:
fd:08:00:2e:a2:ba:a0:11:f3:6f:e9:e0:f0:0f:bb:f9:02:b1:
b4:7a:49:d6:3b:af:a4:c0:b8:57:a7:67:6f:0d:0e:f2:c1:46:
8e:f4:75:cf:60:cc:95:2d:41:da:bd:df:73:e6:4a:3f:34:d1:
5a:40:39:b7:bf:dd:c3:1d:9d:1f:d3:08:8b:5a:4a:d3:fd:c9:
03:c9:a7:07:65:ae:1c:65:64:e8:ad:a7:cb:f0:ef:50:3c:a4:
50:7c:3c:a1:91:c2:5b:83:5f:41:aa:ef:e7:78:59:dd:cd:c1:
4b:da:c8:2e:60:27:00:2a:46:7d:6f:01:8e:de:50:55:de:7d:
99:03:71:21:66:9f:a9:fb:63:ea:85:6e:8c:92:47:ea:94:c5:
c3:9f:1e:ab:2e:8b:b4:08:d8:ea:db:90:e9:c1:70:43:dc:27:
4b:d4:e9:08:d2:39:51:35:c2:b2:30:fa:7f:64:e0:e0:1a:53:
a7:82:b1:18:5b:b9:97:f3:4f:d4:4c:3d:54:52:ae:f4:a2:66:
35:7f:cc:5b:19:69:c1:01:6a:23:04:ab:c3:d3:e8:c1:d6:8b:
d8:53:e9:2f:9f:cc:d5:74:3c:34:12:3a:5c:c0:d1:93:d6:22:
99:92:b2:7d
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUVrIy5WJvPsxAsYGsBJjr2M7hkOcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MDBaFw0yMzA5MjUwODAyMDBaMDMxMTAvBgNV
BAMTKDAyMDI0NDlBMzQxMTIxRTBGMkU2MjU1N0Q5QTg0NEQ3NTBCMDg2M0QwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSlZjKWc5sOk+Ht/cDBnrAYYcZ
uxcFN6JD5H1j5eJgwtxEH5ypq4/GczhaF1yeBrMqThajg3ObGJBQsr5spjPWf9Ge
eUalS6Ew4cijmkMsnjIXesjyL4NB3U+0Ne6g7i9GkJj8F/1HD1B2riA7ax9+FJVp
kJXcjkIhZ/LbYnGEMjwU6LClDM+tMRUho9Y6JQ9K994JuRRGFKGRb3sxQ68RHoF4
eylNoJ5NZBu8XuwKHksCwRDMiD1WCKbjpvXVuNgfZ6HlPp6OEruVvIWg47+UHkr4
AqNUFpWWdrYGbVfYXXIkV9fxLBpz1STf4c8rBf6afxpslavBXsidAjgfp29nAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUAgJEmjQRIeDy5iVX2ahE11Cwhj0wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzEzNTYxM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
WjANBgkqhkiG9w0BAQsFAAOCAQEAyYUVdizpn9VNQ9K1dWjTjBqu/QgALqK6oBHz
b+ng8A+7+QKxtHpJ1juvpMC4V6dnbw0O8sFGjvR1z2DMlS1B2r3fc+ZKPzTRWkA5
t7/dwx2dH9MIi1pK0/3JA8mnB2WuHGVk6K2ny/DvUDykUHw8oZHCW4NfQarv53hZ
3c3BS9rILmAnACpGfW8Bjt5QVd59mQNxIWafqftj6oVujJJH6pTFw58eqy6LtAjY
6tuQ6cFwQ9wnS9TpCNI5UTXCsjD6f2Tg4BpTp4KxGFu5l/NP1Ew9VFKu9KJmNX/M
WxlpwQFqIwSrw9PowdaL2FPpL5/M1XQ8NBI6XMDRk9YimZKyfQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org