Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3162633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: RMxYIN5ZHXXG8dJJF8sYanqS1wHMaVK2yUtlsNhnhUM=
Subject key identifier: 2E:8F:95:01:5D:88:FA:FC:3D:78:89:BF:C7:B3:01:5E:D1:7B:8F:C6
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 03E8EC3DA4BFB7EFF0289CF7D1A95317FCEE31D0
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:24 +0000
ROA not before: Mon 26 Sep 2022 09:55:24 +0000
ROA not after: Mon 25 Sep 2023 10:00:24 +0000
asID: 59282
IP address blocks: 2400:d680:1bc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:e8:ec:3d:a4:bf:b7:ef:f0:28:9c:f7:d1:a9:53:17:fc:ee:31:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:24 2022 GMT
Not After : Sep 25 10:00:24 2023 GMT
Subject: CN=2E8F95015D88FAFC3D7889BFC7B3015ED17B8FC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:43:32:c3:7c:b8:66:94:b4:85:16:aa:34:cb:
a3:cf:2c:61:65:92:3c:bd:c3:e2:e9:cd:29:62:53:
4b:68:dd:45:fb:41:02:90:a5:0b:8a:d0:42:ef:ae:
89:e6:b0:01:df:41:02:20:d7:2b:2a:cc:00:52:8a:
84:87:fb:63:72:58:c3:d6:b3:8f:3b:c7:dc:93:8b:
34:09:4c:d7:67:90:10:11:5d:e9:fd:79:f7:af:31:
37:7d:75:6c:72:ad:db:fd:74:54:5e:60:7f:ca:bb:
48:10:7a:73:ee:22:ee:62:90:7f:48:93:63:0b:c7:
90:10:6f:a8:06:63:85:77:56:a4:84:8d:46:8f:c6:
a0:74:46:28:e7:2a:1f:40:16:95:59:20:07:59:d9:
a8:2f:89:10:94:3e:06:33:fb:81:21:27:64:19:91:
54:6c:2d:44:98:b2:f0:17:a5:93:92:98:64:9d:8b:
9d:eb:69:d7:23:5e:f8:ae:52:c8:5b:91:95:84:af:
c8:e8:1b:33:8d:33:4a:e8:af:14:82:08:e8:d6:a3:
c3:ca:66:63:68:cd:d1:56:02:91:67:4b:38:7a:7f:
47:da:b4:2e:43:7c:57:fa:48:35:29:b4:50:ed:04:
ba:1f:ed:8e:7a:2b:6d:8e:4c:01:e5:f0:89:81:d8:
25:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:8F:95:01:5D:88:FA:FC:3D:78:89:BF:C7:B3:01:5E:D1:7B:8F:C6
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1bc::/48
Signature Algorithm: sha256WithRSAEncryption
57:ef:46:f9:b8:ca:21:90:25:7f:98:99:59:b7:ed:ba:25:65:
6b:9c:5d:22:f9:eb:b6:3a:e7:ea:db:29:5a:87:68:5f:77:b2:
53:63:50:31:1f:8d:2c:17:6d:2c:76:b2:79:a1:dd:16:8a:39:
2d:2c:52:1d:78:45:b0:6b:44:0f:d4:8d:af:c8:57:82:b3:48:
04:58:f3:f5:98:f8:ae:d4:ac:54:d1:01:3d:9c:25:bc:0c:6c:
62:f5:52:58:36:fc:73:d2:5a:00:39:82:20:c6:3c:d2:90:9f:
ae:40:51:5a:17:64:d6:94:e3:51:6a:d6:ab:7b:57:27:7f:77:
9c:0a:0b:ec:8c:06:51:08:03:99:e5:f6:ae:10:ad:c4:62:a6:
e7:11:2f:ad:91:9c:80:3f:69:10:ae:82:66:6a:30:fa:95:0f:
1a:6f:59:59:76:f9:bf:f9:27:2a:34:2e:06:31:86:67:6c:95:
f7:7c:f5:56:21:8d:62:f2:15:f3:d6:9a:cb:19:11:03:b2:7f:
4b:bb:77:54:fc:d8:30:d2:5b:35:da:9d:ff:79:5c:8d:89:9a:
36:b3:66:04:36:72:96:7f:21:d2:0f:14:6b:95:a6:6d:fb:36:
42:f5:06:34:1f:51:0b:4c:ae:98:fe:a8:ee:fd:d7:a4:0a:db:
ca:7c:f7:dc
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUA+jsPaS/t+/wKJz30alTF/zuMdAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MjRaFw0yMzA5MjUxMDAwMjRaMDMxMTAvBgNV
BAMTKDJFOEY5NTAxNUQ4OEZBRkMzRDc4ODlCRkM3QjMwMTVFRDE3QjhGQzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNQzLDfLhmlLSFFqo0y6PPLGFl
kjy9w+LpzSliU0to3UX7QQKQpQuK0ELvronmsAHfQQIg1ysqzABSioSH+2NyWMPW
s487x9yTizQJTNdnkBARXen9efevMTd9dWxyrdv9dFReYH/Ku0gQenPuIu5ikH9I
k2MLx5AQb6gGY4V3VqSEjUaPxqB0RijnKh9AFpVZIAdZ2agviRCUPgYz+4EhJ2QZ
kVRsLUSYsvAXpZOSmGSdi53radcjXviuUshbkZWEr8joGzONM0rorxSCCOjWo8PK
ZmNozdFWApFnSzh6f0fatC5DfFf6SDUptFDtBLof7Y56K22OTAHl8ImB2CWhAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQULo+VAV2I+vw9eIm/x7MBXtF7j8YwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzE2MjYzM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
vDANBgkqhkiG9w0BAQsFAAOCAQEAV+9G+bjKIZAlf5iZWbftuiVla5xdIvnrtjrn
6tspWodoX3eyU2NQMR+NLBdtLHayeaHdFoo5LSxSHXhFsGtED9SNr8hXgrNIBFjz
9Zj4rtSsVNEBPZwlvAxsYvVSWDb8c9JaADmCIMY80pCfrkBRWhdk1pTjUWrWq3tX
J393nAoL7IwGUQgDmeX2rhCtxGKm5xEvrZGcgD9pEK6CZmow+pUPGm9ZWXb5v/kn
KjQuBjGGZ2yV93z1ViGNYvIV89aayxkRA7J/S7t3VPzYMNJbNdqd/3lcjYmaNrNm
BDZyln8h0g8Ua5Wmbfs2QvUGNB9RC0yumP6o7v3XpArbynz33A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org