Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a31383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a31383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: KhW374DQ2yqPcH0qQVDEAP3dPTRnpj9LXTLm4AEH9JA=
Subject key identifier: 77:F9:D7:54:63:C8:89:CE:8E:CE:15:B0:59:1E:2A:AB:2C:29:AD:17
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2732A765031A5C020FF7032A9FD6F00089C1BEE9
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a31383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 07:00:04 +0000
ROA not before: Mon 26 Sep 2022 06:55:04 +0000
ROA not after: Mon 25 Sep 2023 07:00:04 +0000
asID: 59282
IP address blocks: 2400:d680:18::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:32:a7:65:03:1a:5c:02:0f:f7:03:2a:9f:d6:f0:00:89:c1:be:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 06:55:04 2022 GMT
Not After : Sep 25 07:00:04 2023 GMT
Subject: CN=77F9D75463C889CE8ECE15B0591E2AAB2C29AD17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d7:65:24:40:a6:15:61:f7:6b:b2:b7:2b:bb:
7d:d0:69:e8:76:f7:89:d2:6b:17:be:53:63:49:73:
ac:36:11:81:14:0d:50:bc:81:62:01:ce:34:50:43:
fc:8b:3f:5d:6a:38:43:cd:f9:99:3a:12:cb:00:ad:
5b:38:31:4f:a0:c4:d0:71:e8:86:51:01:09:5a:81:
0d:f7:e5:1c:4b:f9:d7:f0:f9:ea:6b:3d:74:18:2e:
04:92:8e:a5:1a:61:4e:57:5d:84:fa:b0:c5:a7:70:
89:71:28:40:60:a3:71:e7:93:dd:b6:a0:8f:ba:6f:
1f:31:f2:58:5b:b8:24:1f:83:57:b2:8c:4a:7f:39:
95:ff:44:34:56:75:3a:8e:ba:2c:67:b6:42:2b:93:
36:be:a3:1a:ea:42:bf:6d:e6:d1:ac:2c:ed:33:d5:
a1:72:83:4a:75:33:77:e2:7b:46:61:c2:20:a9:87:
9a:c8:aa:19:48:85:dc:8e:99:54:57:b4:ae:cf:85:
ec:05:64:cc:53:a2:cb:b8:b6:1e:17:e7:63:f3:d2:
38:37:81:c7:c9:be:a5:bb:e1:af:fe:30:93:0c:71:
b5:e8:59:b0:20:f7:3c:77:a7:b4:b6:fa:46:cb:07:
76:16:6a:f7:a9:17:44:c0:9e:6e:f8:e4:cf:30:ad:
2d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:F9:D7:54:63:C8:89:CE:8E:CE:15:B0:59:1E:2A:AB:2C:29:AD:17
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a31383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:18::/48
Signature Algorithm: sha256WithRSAEncryption
bd:54:de:f6:44:a3:6b:72:5b:ee:d2:da:f9:86:73:fd:83:91:
a1:11:65:49:64:63:3b:c1:41:c3:20:90:87:06:b2:c8:d6:d9:
0e:cf:2c:44:77:97:fe:06:57:fe:16:49:b4:42:97:25:3e:c0:
86:f4:5c:e5:07:34:29:fa:6a:0f:59:f4:8d:04:e1:ea:2f:e3:
1c:59:ac:20:fc:e9:50:4c:99:49:9b:2a:fc:d3:b6:57:15:b2:
00:d6:fa:0a:37:9f:a8:c9:49:34:24:ff:9b:2a:73:65:18:05:
ed:79:e0:04:22:d8:80:71:40:cb:9c:80:2e:79:ac:2b:53:55:
9e:79:27:03:29:24:3b:0d:04:d9:84:44:1c:bb:51:e5:7d:f6:
0f:d4:16:cf:37:ab:14:4c:ae:cf:cf:c4:4c:b4:5a:1b:d6:8b:
7c:59:8e:9a:9c:76:c1:71:f5:75:e1:81:c5:14:8d:3b:5d:b7:
e6:e9:a5:81:85:1e:6a:29:3e:d5:c5:35:ef:6c:ea:b4:38:77:
65:c9:39:aa:3b:eb:e5:bc:3a:ff:b4:8c:95:92:67:a9:b8:87:
05:74:bc:c9:45:df:e6:23:73:60:29:35:56:ac:f3:ac:5c:89:
11:79:38:95:9b:7e:e4:07:25:ff:f3:f3:b1:55:f0:17:19:9e:
20:c4:cd:b7
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUJzKnZQMaXAIP9wMqn9bwAInBvukwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNjU1MDRaFw0yMzA5MjUwNzAwMDRaMDMxMTAvBgNV
BAMTKDc3RjlENzU0NjNDODg5Q0U4RUNFMTVCMDU5MUUyQUFCMkMyOUFEMTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ12UkQKYVYfdrsrcru33Qaeh2
94nSaxe+U2NJc6w2EYEUDVC8gWIBzjRQQ/yLP11qOEPN+Zk6EssArVs4MU+gxNBx
6IZRAQlagQ335RxL+dfw+eprPXQYLgSSjqUaYU5XXYT6sMWncIlxKEBgo3Hnk922
oI+6bx8x8lhbuCQfg1eyjEp/OZX/RDRWdTqOuixntkIrkza+oxrqQr9t5tGsLO0z
1aFyg0p1M3fie0ZhwiCph5rIqhlIhdyOmVRXtK7PhewFZMxTosu4th4X52Pz0jg3
gcfJvqW74a/+MJMMcbXoWbAg9zx3p7S2+kbLB3YWavepF0TAnm745M8wrS05AgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUd/nXVGPIic6OzhWwWR4qqywprRcwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzEzODNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAABgw
DQYJKoZIhvcNAQELBQADggEBAL1U3vZEo2tyW+7S2vmGc/2DkaERZUlkYzvBQcMg
kIcGssjW2Q7PLER3l/4GV/4WSbRClyU+wIb0XOUHNCn6ag9Z9I0E4eov4xxZrCD8
6VBMmUmbKvzTtlcVsgDW+go3n6jJSTQk/5sqc2UYBe154AQi2IBxQMucgC55rCtT
VZ55JwMpJDsNBNmERBy7UeV99g/UFs83qxRMrs/PxEy0WhvWi3xZjpqcdsFx9XXh
gcUUjTtdt+bppYGFHmopPtXFNe9s6rQ4d2XJOao76+W8Ov+0jJWSZ6m4hwV0vMlF
3+Yjc2ApNVas86xciRF5OJWbfuQHJf/z87FV8BcZniDEzbc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org