Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3137383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: uZMl7zJylCgwIBNnY/z8Ble4IGwWVM0npefbi18AO7k=
Subject key identifier: 7D:89:17:90:45:EE:4F:06:54:84:5B:C2:AB:79:6E:70:37:A6:50:D8
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 79B6BB6375B566A7AB97C6DC161D28A0919B47ED
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:31 +0000
ROA not before: Mon 26 Sep 2022 07:56:31 +0000
ROA not after: Mon 25 Sep 2023 08:01:31 +0000
asID: 59282
IP address blocks: 2400:d680:178::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:b6:bb:63:75:b5:66:a7:ab:97:c6:dc:16:1d:28:a0:91:9b:47:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:31 2022 GMT
Not After : Sep 25 08:01:31 2023 GMT
Subject: CN=7D89179045EE4F0654845BC2AB796E7037A650D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:15:c4:18:d2:4a:76:7c:b0:39:f3:73:09:3b:
25:d0:b1:2e:25:a2:ad:13:bb:5c:58:55:2d:fc:bb:
e6:c3:c6:b2:39:9c:8b:3e:df:b6:0b:17:57:e7:bb:
1a:1c:68:8c:d7:99:f7:d4:1c:7e:bc:ac:5a:f8:b0:
a0:96:78:68:a2:44:92:b9:cd:a8:8f:3e:cd:5f:ee:
87:1b:f8:77:c5:4d:f7:71:f4:b2:4b:bc:4d:12:6a:
f0:ca:bc:4c:6d:f1:d9:ad:dc:bb:35:ef:57:d9:dd:
3a:57:4a:e6:a2:61:10:3f:d6:88:0b:ac:ba:2e:92:
42:64:36:3f:80:57:59:33:0e:f6:01:e8:38:b9:50:
0d:9b:d7:73:b8:33:37:f2:2c:cd:7f:fd:77:ce:f2:
16:39:95:d0:48:ec:ae:13:6d:d2:01:66:a8:51:27:
f5:00:08:ea:b2:04:1c:dc:20:92:10:ed:45:83:0a:
6d:57:aa:c0:27:32:9a:99:1c:ac:4a:8d:fa:cb:da:
da:ff:c3:c3:72:49:8e:53:a0:a5:75:f6:d8:f5:4f:
d3:af:fd:e9:b6:14:a9:aa:8a:64:58:b5:a9:06:5c:
19:39:52:fd:07:3a:79:2d:89:c4:8c:7b:58:54:4b:
38:2a:9b:0d:5c:e9:60:af:e2:af:cb:02:19:81:ea:
23:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:89:17:90:45:EE:4F:06:54:84:5B:C2:AB:79:6E:70:37:A6:50:D8
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:178::/48
Signature Algorithm: sha256WithRSAEncryption
7f:83:e2:c6:5e:74:b4:85:33:95:e0:24:c0:43:c1:b7:8d:64:
d2:71:c3:f8:df:7d:e3:8d:89:47:f1:bd:17:bc:92:b1:3c:03:
03:17:4a:b4:94:c1:67:97:c8:0f:2e:b6:6d:d7:19:22:4b:fe:
a9:b9:b1:24:65:e2:15:ed:75:d7:b3:1f:1c:4a:81:be:fb:1b:
03:ff:b8:80:0b:26:ab:17:d5:e5:66:66:b5:fe:4d:a2:88:1f:
ee:31:5f:64:38:97:be:cd:5c:e6:5c:75:f1:63:d8:44:35:39:
ff:83:c2:7f:a0:81:87:e0:8d:cf:63:72:fd:05:e8:ff:90:80:
28:8a:1b:17:8b:17:56:95:ee:b6:e0:2a:e5:f1:d6:ca:04:71:
6e:e8:88:24:9c:bb:55:17:23:45:38:07:03:7e:2a:c4:29:67:
d0:7e:5c:76:14:35:5d:10:e0:0e:ab:a2:c1:76:30:49:b0:d9:
93:7a:7e:8f:56:31:2c:17:45:62:75:ca:4b:be:49:f4:0d:d1:
0b:cd:66:24:4b:5b:96:77:69:40:57:bd:3f:0e:40:a9:98:6a:
f9:7d:b9:66:54:36:9a:33:ad:c0:90:a0:92:2a:75:f8:a2:7b:
ec:eb:32:65:57:00:bd:94:f7:86:01:46:5c:03:a0:8d:a4:24:
90:35:59:3e
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUeba7Y3W1Zqerl8bcFh0ooJGbR+0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MzFaFw0yMzA5MjUwODAxMzFaMDMxMTAvBgNV
BAMTKDdEODkxNzkwNDVFRTRGMDY1NDg0NUJDMkFCNzk2RTcwMzdBNjUwRDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBFcQY0kp2fLA583MJOyXQsS4l
oq0Tu1xYVS38u+bDxrI5nIs+37YLF1fnuxocaIzXmffUHH68rFr4sKCWeGiiRJK5
zaiPPs1f7ocb+HfFTfdx9LJLvE0SavDKvExt8dmt3Ls171fZ3TpXSuaiYRA/1ogL
rLoukkJkNj+AV1kzDvYB6Di5UA2b13O4MzfyLM1//XfO8hY5ldBI7K4TbdIBZqhR
J/UACOqyBBzcIJIQ7UWDCm1XqsAnMpqZHKxKjfrL2tr/w8NySY5ToKV19tj1T9Ov
/em2FKmqimRYtakGXBk5Uv0HOnkticSMe1hUSzgqmw1c6WCv4q/LAhmB6iPPAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUfYkXkEXuTwZUhFvCq3lucDemUNgwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzEzNzM4M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
eDANBgkqhkiG9w0BAQsFAAOCAQEAf4Pixl50tIUzleAkwEPBt41k0nHD+N99442J
R/G9F7ySsTwDAxdKtJTBZ5fIDy62bdcZIkv+qbmxJGXiFe1117MfHEqBvvsbA/+4
gAsmqxfV5WZmtf5Noogf7jFfZDiXvs1c5lx18WPYRDU5/4PCf6CBh+CNz2Ny/QXo
/5CAKIobF4sXVpXutuAq5fHWygRxbuiIJJy7VRcjRTgHA34qxCln0H5cdhQ1XRDg
DquiwXYwSbDZk3p+j1YxLBdFYnXKS75J9A3RC81mJEtblndpQFe9Pw5AqZhq+X25
ZlQ2mjOtwJCgkip1+KJ77OsyZVcAvZT3hgFGXAOgjaQkkDVZPg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org