Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a31613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a31613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: gMd+FawFbbWMWpT9nNHom/HE2Eem9pRUS6ZI1su5IFg=
Subject key identifier: F7:DD:89:16:F1:E2:68:34:F7:62:47:09:D8:80:C9:C4:C2:28:CF:81
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2C5D942FA63FFE2DD99D72D42D8ABF03FBEBF129
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a31613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 07:00:01 +0000
ROA not before: Mon 26 Sep 2022 06:55:01 +0000
ROA not after: Mon 25 Sep 2023 07:00:01 +0000
asID: 59282
IP address blocks: 2400:d680:1a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:5d:94:2f:a6:3f:fe:2d:d9:9d:72:d4:2d:8a:bf:03:fb:eb:f1:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 06:55:01 2022 GMT
Not After : Sep 25 07:00:01 2023 GMT
Subject: CN=F7DD8916F1E26834F7624709D880C9C4C228CF81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9c:cb:41:e7:cb:68:cc:50:7d:db:af:9c:7e:
f0:94:39:d6:f0:9d:44:40:33:13:81:78:71:2c:8d:
26:6e:f6:cf:fd:f2:ea:24:16:4c:d0:67:e0:d0:0b:
bb:7e:40:b2:de:50:5e:ba:ed:41:0f:08:1b:02:50:
0a:ee:93:20:1f:dd:0a:99:16:db:5b:43:e3:c6:08:
db:8a:e5:27:3a:25:bb:12:39:65:29:af:e9:d0:90:
92:ff:25:25:c2:25:fd:8c:df:a7:d3:49:a3:bd:63:
90:af:ef:3b:c0:aa:34:ce:9c:1a:25:d9:3d:e6:c1:
e9:b3:3a:c5:ab:8b:3d:9d:b1:3d:f6:8c:9d:2e:94:
a2:3c:80:7b:9d:c8:0f:77:34:9e:e1:31:6b:7a:81:
d9:d6:ae:79:4f:d2:d3:de:82:9f:a6:35:bd:af:d0:
10:e9:fb:b0:ac:8c:55:ec:53:2d:65:a0:5a:9a:42:
12:d7:ac:1b:2b:a2:27:73:74:e0:1c:a8:65:35:eb:
2d:41:be:be:df:ed:f8:ac:be:85:89:85:6f:b0:87:
a4:a2:bf:59:34:67:47:f7:05:2f:6c:bb:30:0c:38:
36:91:16:48:dd:b6:0e:36:4e:61:54:21:9f:ae:97:
8c:e1:5d:71:7b:fc:e8:a6:b2:1f:51:e7:93:a4:5d:
b5:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:DD:89:16:F1:E2:68:34:F7:62:47:09:D8:80:C9:C4:C2:28:CF:81
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a31613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1a::/48
Signature Algorithm: sha256WithRSAEncryption
d3:68:6d:2c:28:51:d9:3e:bb:f7:8d:e4:63:e8:ac:a1:b1:df:
12:35:ed:e6:57:1d:49:3d:ea:59:5e:b9:0a:b6:83:8d:e4:bf:
01:fc:ad:27:11:73:13:ba:3a:93:49:79:c7:43:c6:d1:16:35:
28:d0:9c:67:05:5a:ff:54:3d:8a:b5:d9:d5:92:42:75:bb:54:
54:51:2f:d6:22:e7:c4:8d:04:45:4e:c6:98:d5:30:85:4e:5c:
32:28:6b:fb:6b:9e:ad:b8:28:74:9a:ef:a3:03:23:07:c3:75:
0e:ae:83:e8:6a:67:f2:69:95:4b:ee:60:74:be:c8:ef:a8:1e:
8a:dc:43:f5:48:3e:d0:e5:c6:2d:5e:d3:6e:14:54:bf:40:88:
07:dc:b4:c0:e5:30:43:d7:3a:0c:e6:be:d8:d3:d4:4f:d9:3a:
03:76:b5:f2:47:b7:8c:cc:3c:7c:81:90:00:52:44:39:c3:3d:
37:7d:d2:65:78:43:2b:21:1d:9b:2e:f2:0d:29:a6:85:6a:86:
7b:bc:bc:c0:87:83:82:9e:d0:97:e5:a1:bf:2c:76:c8:0a:48:
bd:72:95:7a:99:72:7c:c0:f4:4a:46:84:88:ca:ff:c2:36:59:
f3:46:fd:b4:f0:d2:df:2d:b0:06:36:74:b8:4f:32:8a:d0:9c:
8e:6f:88:03
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIULF2UL6Y//i3ZnXLULYq/A/vr8SkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNjU1MDFaFw0yMzA5MjUwNzAwMDFaMDMxMTAvBgNV
BAMTKEY3REQ4OTE2RjFFMjY4MzRGNzYyNDcwOUQ4ODBDOUM0QzIyOENGODEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQConMtB58tozFB926+cfvCUOdbw
nURAMxOBeHEsjSZu9s/98uokFkzQZ+DQC7t+QLLeUF667UEPCBsCUArukyAf3QqZ
FttbQ+PGCNuK5Sc6JbsSOWUpr+nQkJL/JSXCJf2M36fTSaO9Y5Cv7zvAqjTOnBol
2T3mwemzOsWriz2dsT32jJ0ulKI8gHudyA93NJ7hMWt6gdnWrnlP0tPegp+mNb2v
0BDp+7CsjFXsUy1loFqaQhLXrBsroidzdOAcqGU16y1Bvr7f7fisvoWJhW+wh6Si
v1k0Z0f3BS9suzAMODaRFkjdtg42TmFUIZ+ul4zhXXF7/Oimsh9R55OkXbUjAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQU992JFvHiaDT3YkcJ2IDJxMIoz4EwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzE2MTNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAABow
DQYJKoZIhvcNAQELBQADggEBANNobSwoUdk+u/eN5GPorKGx3xI17eZXHUk96lle
uQq2g43kvwH8rScRcxO6OpNJecdDxtEWNSjQnGcFWv9UPYq12dWSQnW7VFRRL9Yi
58SNBEVOxpjVMIVOXDIoa/trnq24KHSa76MDIwfDdQ6ug+hqZ/JplUvuYHS+yO+o
HorcQ/VIPtDlxi1e024UVL9AiAfctMDlMEPXOgzmvtjT1E/ZOgN2tfJHt4zMPHyB
kABSRDnDPTd90mV4QyshHZsu8g0ppoVqhnu8vMCHg4Ke0Jflob8sdsgKSL1ylXqZ
cnzA9EpGhIjK/8I2WfNG/bTw0t8tsAY2dLhPMorQnI5viAM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org