Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3137353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: LF5ukIdqjdSR+TaLOjrURHa+PSFqlVsrmQ/ooAp48PY=
Subject key identifier: A4:A8:D1:27:CA:D8:24:AF:D1:D4:C3:9B:56:45:A0:17:14:E9:4F:93
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 023B6B362053D4B48A28116681CB8B92D6140536
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:17 +0000
ROA not before: Mon 26 Sep 2022 07:57:17 +0000
ROA not after: Mon 25 Sep 2023 08:02:17 +0000
asID: 59282
IP address blocks: 2400:d680:175::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:3b:6b:36:20:53:d4:b4:8a:28:11:66:81:cb:8b:92:d6:14:05:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:17 2022 GMT
Not After : Sep 25 08:02:17 2023 GMT
Subject: CN=A4A8D127CAD824AFD1D4C39B5645A01714E94F93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8a:7c:6c:57:1b:64:36:10:be:ee:e0:38:f6:
c1:db:26:da:44:ce:16:98:36:cf:f8:77:b2:86:1f:
73:99:91:26:fd:a4:dc:62:51:85:b4:35:f6:d3:52:
02:a3:65:bc:e9:ad:ec:7c:28:84:ba:4f:58:a3:52:
d0:d4:19:b6:fc:40:34:e4:4d:01:f3:18:b1:aa:d4:
bd:e1:15:b1:b4:5b:b1:7a:e6:e6:b2:41:10:8f:59:
3d:61:f1:0e:ec:b6:9b:33:c1:a9:13:ce:0d:40:1d:
ac:ea:46:ff:6a:67:6e:eb:f9:da:af:91:c5:3c:a7:
d4:a9:91:80:b2:a3:f1:d7:37:7f:5c:b3:2f:bf:80:
49:7c:ea:71:cf:a6:4e:b7:f8:07:3a:a6:95:bc:e1:
0d:58:a2:87:3c:d8:bc:8e:bb:a6:44:fc:ef:29:e9:
55:f8:34:07:43:ea:30:cd:89:b9:e0:ed:d4:21:b1:
67:94:c3:d6:0a:15:cd:d6:62:3c:3c:e4:65:b2:b9:
32:15:10:e9:12:72:01:cf:fa:75:a1:6b:83:d0:d0:
b4:6a:29:12:fe:14:30:0a:8b:56:b4:7a:8a:bb:94:
ed:9b:7d:40:b5:9f:7a:ce:7e:6f:30:d3:15:bb:04:
d2:c7:ac:91:03:df:72:65:08:7e:bb:5c:12:e6:5e:
b8:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A8:D1:27:CA:D8:24:AF:D1:D4:C3:9B:56:45:A0:17:14:E9:4F:93
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:175::/48
Signature Algorithm: sha256WithRSAEncryption
6e:72:86:f9:16:22:77:c3:c3:79:4b:26:28:aa:fa:9e:50:09:
ac:67:5f:db:17:63:58:8b:86:e7:cd:03:ac:45:01:ed:6f:ba:
0b:8b:0f:6b:b6:b8:80:86:a1:4b:fe:13:71:ba:f5:94:f9:d4:
86:63:b5:62:fe:a7:63:15:1c:24:e3:84:1b:cc:1e:29:8b:3b:
b1:d8:20:f7:17:2a:35:2a:44:4e:64:16:1e:cf:3d:81:aa:c1:
ae:1a:b0:1e:bd:9a:9d:44:12:8c:25:e1:f8:54:b5:04:06:34:
89:fa:6a:31:3e:bf:64:93:e5:7a:05:76:63:8a:b2:81:fb:a4:
de:25:e6:3a:9f:af:31:ea:ec:76:32:82:c1:78:fc:89:18:bb:
b3:c6:9c:d9:0b:91:7b:40:a7:f6:80:46:a8:e7:15:87:66:7a:
fc:c0:f5:99:02:50:78:55:59:07:ab:07:3c:9e:2e:be:ef:5f:
f4:c8:19:c7:02:d1:8f:a7:50:50:78:ee:8c:b6:d1:6f:9b:0e:
21:41:56:a7:a2:21:04:60:7b:5b:06:a3:47:51:1d:d1:a0:35:
97:32:5e:0b:85:44:cc:4e:f3:92:26:66:52:43:3c:4b:81:b7:
ca:05:08:e3:dd:a7:d2:ac:7f:1e:30:0a:40:8c:25:4c:1c:4c:
a7:57:30:1d
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUAjtrNiBT1LSKKBFmgcuLktYUBTYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MTdaFw0yMzA5MjUwODAyMTdaMDMxMTAvBgNV
BAMTKEE0QThEMTI3Q0FEODI0QUZEMUQ0QzM5QjU2NDVBMDE3MTRFOTRGOTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/inxsVxtkNhC+7uA49sHbJtpE
zhaYNs/4d7KGH3OZkSb9pNxiUYW0NfbTUgKjZbzprex8KIS6T1ijUtDUGbb8QDTk
TQHzGLGq1L3hFbG0W7F65uayQRCPWT1h8Q7stpszwakTzg1AHazqRv9qZ27r+dqv
kcU8p9SpkYCyo/HXN39csy+/gEl86nHPpk63+Ac6ppW84Q1Yooc82LyOu6ZE/O8p
6VX4NAdD6jDNibng7dQhsWeUw9YKFc3WYjw85GWyuTIVEOkScgHP+nWha4PQ0LRq
KRL+FDAKi1a0eoq7lO2bfUC1n3rOfm8w0xW7BNLHrJED33JlCH67XBLmXrgbAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUpKjRJ8rYJK/R1MObVkWgFxTpT5MwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzEzNzM1M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
dTANBgkqhkiG9w0BAQsFAAOCAQEAbnKG+RYid8PDeUsmKKr6nlAJrGdf2xdjWIuG
580DrEUB7W+6C4sPa7a4gIahS/4Tcbr1lPnUhmO1Yv6nYxUcJOOEG8weKYs7sdgg
9xcqNSpETmQWHs89garBrhqwHr2anUQSjCXh+FS1BAY0ifpqMT6/ZJPlegV2Y4qy
gfuk3iXmOp+vMersdjKCwXj8iRi7s8ac2QuRe0Cn9oBGqOcVh2Z6/MD1mQJQeFVZ
B6sHPJ4uvu9f9MgZxwLRj6dQUHjujLbRb5sOIUFWp6IhBGB7WwajR1Ed0aA1lzJe
C4VEzE7zkiZmUkM8S4G3ygUI492n0qx/HjAKQIwlTBxMp1cwHQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org