Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3137613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: EIYC2WW+CCg1V2AxHji16tft627LAyrPrPn/Hz4wL5o=
Subject key identifier: 08:F5:C0:D4:79:D8:96:63:AD:D9:01:F0:D3:A8:39:D9:48:98:BC:26
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 28CF1E1AFD7DC9D94F32B4792E55E1789372941A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:31 +0000
ROA not before: Mon 26 Sep 2022 07:56:31 +0000
ROA not after: Mon 25 Sep 2023 08:01:31 +0000
asID: 59282
IP address blocks: 2400:d680:17a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:cf:1e:1a:fd:7d:c9:d9:4f:32:b4:79:2e:55:e1:78:93:72:94:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:31 2022 GMT
Not After : Sep 25 08:01:31 2023 GMT
Subject: CN=08F5C0D479D89663ADD901F0D3A839D94898BC26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6e:53:7f:78:e7:c5:23:79:68:e5:e6:db:b8:
b8:97:5f:f3:14:9e:e9:51:21:5c:24:d8:92:a6:f3:
d5:bf:87:0f:82:f9:dc:16:e7:43:12:bb:8e:e5:51:
6d:cf:c1:ed:36:f0:dd:06:cb:ee:60:0a:df:2d:b2:
cb:de:50:92:f0:89:6d:99:d3:ec:fa:1e:a3:15:99:
7e:4c:cd:11:9b:96:bb:69:69:98:69:a4:ec:f3:de:
a3:1e:ef:13:7b:80:66:02:0f:6b:82:fe:73:fb:4e:
6f:78:10:ce:80:7a:02:4a:b9:c9:97:63:c1:f9:77:
d3:ac:d0:34:47:21:a6:2e:89:8e:4f:fa:3e:f8:11:
d1:14:90:07:cd:7c:20:79:b3:1a:37:a8:38:6f:04:
74:97:4a:f1:4f:7c:f1:23:ea:9b:0c:1d:8b:b7:4a:
79:01:ce:7b:01:94:81:d2:2b:ec:2c:8d:56:06:4b:
ac:22:f4:d6:93:76:fa:fa:67:66:cd:15:67:17:98:
a0:70:2c:3d:2a:e3:be:cf:a5:3d:af:08:a2:ca:24:
fb:7a:b7:d2:16:18:64:0f:07:69:4b:bc:91:1b:8e:
7a:4b:c4:74:40:30:a0:03:a5:f4:8f:12:48:a5:ad:
1b:c0:bc:ed:19:1f:7f:04:57:07:41:52:d0:1c:00:
45:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:F5:C0:D4:79:D8:96:63:AD:D9:01:F0:D3:A8:39:D9:48:98:BC:26
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:17a::/48
Signature Algorithm: sha256WithRSAEncryption
4a:bb:40:c2:9c:aa:55:96:55:43:80:93:63:b3:79:52:57:37:
39:d0:db:d8:22:7f:d4:db:c7:37:9d:8f:26:a9:00:de:7b:c0:
6e:de:e8:af:a3:b9:b8:ad:83:a7:0f:64:2c:6a:20:29:63:c0:
f7:47:a0:b5:c2:b2:e8:01:78:50:99:ed:68:e3:68:1a:a2:9b:
49:b7:da:9c:83:86:fb:32:e5:18:65:24:52:c5:ba:a9:62:ce:
55:6a:3d:a4:de:25:32:e2:52:98:08:76:d4:24:c2:da:c7:27:
52:5c:b8:65:13:87:66:eb:27:b4:34:33:b8:b2:d0:c6:45:16:
47:d2:6f:ac:ef:3a:34:c7:93:ca:33:54:fe:5d:c9:ed:18:48:
92:1b:48:2d:b5:5d:6a:d6:da:2a:bc:eb:cf:6d:c9:6c:7c:28:
80:bc:e8:79:5c:c2:b7:e6:5d:69:7b:1e:d6:3d:8a:ff:88:a0:
6f:86:a8:20:92:7b:5b:41:b4:03:17:60:84:d6:0d:af:86:ef:
e7:90:46:f1:f1:3d:70:98:c8:4b:fc:50:72:55:29:10:5a:f2:
04:6c:fc:30:9a:a3:05:17:6c:e5:48:bf:9a:43:0c:a3:7f:41:
77:ae:83:a1:5b:c2:7c:50:58:ce:43:7b:08:0d:64:97:41:47:
76:7d:9a:b0
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUKM8eGv19ydlPMrR5LlXheJNylBowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MzFaFw0yMzA5MjUwODAxMzFaMDMxMTAvBgNV
BAMTKDA4RjVDMEQ0NzlEODk2NjNBREQ5MDFGMEQzQTgzOUQ5NDg5OEJDMjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+blN/eOfFI3lo5ebbuLiXX/MU
nulRIVwk2JKm89W/hw+C+dwW50MSu47lUW3Pwe028N0Gy+5gCt8tssveUJLwiW2Z
0+z6HqMVmX5MzRGblrtpaZhppOzz3qMe7xN7gGYCD2uC/nP7Tm94EM6AegJKucmX
Y8H5d9Os0DRHIaYuiY5P+j74EdEUkAfNfCB5sxo3qDhvBHSXSvFPfPEj6psMHYu3
SnkBznsBlIHSK+wsjVYGS6wi9NaTdvr6Z2bNFWcXmKBwLD0q477PpT2vCKLKJPt6
t9IWGGQPB2lLvJEbjnpLxHRAMKADpfSPEkilrRvAvO0ZH38EVwdBUtAcAEU5AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUCPXA1HnYlmOt2QHw06g52UiYvCYwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzEzNzYxM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
ejANBgkqhkiG9w0BAQsFAAOCAQEASrtAwpyqVZZVQ4CTY7N5Ulc3OdDb2CJ/1NvH
N52PJqkA3nvAbt7or6O5uK2Dpw9kLGogKWPA90egtcKy6AF4UJntaONoGqKbSbfa
nIOG+zLlGGUkUsW6qWLOVWo9pN4lMuJSmAh21CTC2scnUly4ZROHZusntDQzuLLQ
xkUWR9JvrO86NMeTyjNU/l3J7RhIkhtILbVdatbaKrzrz23JbHwogLzoeVzCt+Zd
aXse1j2K/4igb4aoIJJ7W0G0AxdghNYNr4bv55BG8fE9cJjIS/xQclUpEFryBGz8
MJqjBRds5Ui/mkMMo39Bd66DoVvCfFBYzkN7CA1kl0FHdn2asA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org