Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3136383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 0BfLC1/lXSfoIozFdYIciuqrkuFFuCznhW4yS3Y9hXo=
Subject key identifier: 9D:C4:AD:98:D4:A3:AA:C9:3A:4C:B0:2B:48:B7:AF:7A:7C:DE:55:57
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 055F4F972C0CDC1BFFC51A55823FF4C55085CE57
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:42 +0000
ROA not before: Mon 26 Sep 2022 07:56:42 +0000
ROA not after: Mon 25 Sep 2023 08:01:42 +0000
asID: 59282
IP address blocks: 2400:d680:168::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:5f:4f:97:2c:0c:dc:1b:ff:c5:1a:55:82:3f:f4:c5:50:85:ce:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:42 2022 GMT
Not After : Sep 25 08:01:42 2023 GMT
Subject: CN=9DC4AD98D4A3AAC93A4CB02B48B7AF7A7CDE5557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:17:d0:cc:20:88:ba:ee:67:67:37:34:a4:b2:
8a:78:68:d0:75:27:a9:48:a8:30:5b:dc:65:c0:f6:
96:58:3e:4b:bc:91:6b:c0:e2:aa:08:55:7d:01:9b:
29:c2:ab:83:5d:7f:56:37:f3:95:32:dd:44:5a:91:
d7:5e:aa:93:f9:8d:59:4e:08:5a:8c:47:1a:a2:cf:
21:d5:c8:0d:2b:5e:bf:49:fb:bd:3b:f5:ba:ee:58:
f1:34:9b:da:ac:03:3e:1e:4e:c4:18:b0:bc:dd:f0:
0b:60:44:fb:bf:c0:76:9f:d6:30:1d:14:05:ba:b3:
3f:e7:68:95:06:9b:44:57:94:64:45:05:db:b3:10:
66:36:80:ac:c2:86:8c:cf:51:3c:b6:c1:92:e9:31:
6c:67:58:6b:e4:5a:49:bd:c7:b5:0a:a1:60:d6:0d:
11:fe:88:9f:54:96:72:90:95:b2:ac:4e:26:06:38:
0c:72:e5:c6:af:9d:71:84:73:18:73:09:a4:b3:a7:
58:c1:05:3d:96:f7:a9:23:6c:6a:c8:f6:13:6b:95:
11:fc:45:86:e8:50:f2:79:51:78:cc:2a:8e:fc:fd:
e8:6f:28:dc:5d:5c:d3:ff:22:87:b7:5b:b8:39:8d:
cf:f5:c1:79:8d:72:25:a1:6b:23:9f:a3:f4:de:45:
ec:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:C4:AD:98:D4:A3:AA:C9:3A:4C:B0:2B:48:B7:AF:7A:7C:DE:55:57
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3136383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:168::/48
Signature Algorithm: sha256WithRSAEncryption
88:b6:a7:81:7a:9c:84:b7:c6:bd:38:04:61:be:ef:dd:48:d4:
de:44:82:90:3e:01:2f:3e:b3:71:ab:2a:b2:26:41:fc:3f:04:
14:f2:ce:e8:5e:eb:9c:ce:d5:01:c6:38:1b:64:6e:0b:46:96:
6a:f6:83:8c:30:06:0f:04:51:f6:1f:57:03:f0:b6:ef:be:ed:
f3:2e:75:55:9b:89:3e:7a:76:f1:a3:24:7b:5e:7b:7d:59:9c:
94:fd:76:ec:37:76:20:f6:f7:d3:3b:1d:a5:c8:e2:0c:10:c8:
fe:96:0f:dc:7f:ab:fd:92:5f:1f:f8:82:de:6d:67:e3:b7:51:
74:8b:ee:b4:7a:f4:db:4c:b2:64:07:30:4f:cf:2f:bc:ed:40:
8e:de:1e:db:5f:4a:b8:ae:71:51:65:a6:6b:9c:b5:bf:d1:31:
fc:cc:7f:56:ff:a9:de:08:ca:e5:68:d9:6a:34:73:fa:e7:b5:
cb:b8:b9:14:1d:a9:27:92:eb:09:f5:8e:df:d6:fc:b7:52:11:
d1:ed:d1:a4:01:98:16:9b:cc:fa:b4:06:1f:80:f7:f5:77:48:
d2:4e:15:6f:d2:58:9a:af:5a:f2:e0:bf:bb:c4:ac:02:44:6e:
bc:7b:34:e0:39:a7:c2:eb:e5:dc:cb:d1:48:65:9b:f0:74:c4:
f3:b7:aa:05
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUBV9PlywM3Bv/xRpVgj/0xVCFzlcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2NDJaFw0yMzA5MjUwODAxNDJaMDMxMTAvBgNV
BAMTKDlEQzRBRDk4RDRBM0FBQzkzQTRDQjAyQjQ4QjdBRjdBN0NERTU1NTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5F9DMIIi67mdnNzSksop4aNB1
J6lIqDBb3GXA9pZYPku8kWvA4qoIVX0BmynCq4Ndf1Y385Uy3URakddeqpP5jVlO
CFqMRxqizyHVyA0rXr9J+7079bruWPE0m9qsAz4eTsQYsLzd8AtgRPu/wHaf1jAd
FAW6sz/naJUGm0RXlGRFBduzEGY2gKzChozPUTy2wZLpMWxnWGvkWkm9x7UKoWDW
DRH+iJ9UlnKQlbKsTiYGOAxy5cavnXGEcxhzCaSzp1jBBT2W96kjbGrI9hNrlRH8
RYboUPJ5UXjMKo78/ehvKNxdXNP/Ioe3W7g5jc/1wXmNciWhayOfo/TeRex3AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUncStmNSjqsk6TLArSLevenzeVVcwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzEzNjM4M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
aDANBgkqhkiG9w0BAQsFAAOCAQEAiLangXqchLfGvTgEYb7v3UjU3kSCkD4BLz6z
casqsiZB/D8EFPLO6F7rnM7VAcY4G2RuC0aWavaDjDAGDwRR9h9XA/C2777t8y51
VZuJPnp28aMke157fVmclP127Dd2IPb30zsdpcjiDBDI/pYP3H+r/ZJfH/iC3m1n
47dRdIvutHr020yyZAcwT88vvO1Ajt4e219KuK5xUWWma5y1v9Ex/Mx/Vv+p3gjK
5WjZajRz+ue1y7i5FB2pJ5LrCfWO39b8t1IR0e3RpAGYFpvM+rQGH4D39XdI0k4V
b9JYmq9a8uC/u8SsAkRuvHs04Dmnwuvl3MvRSGWb8HTE87eqBQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org