Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a31643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a31643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ETmFMzLRsQ9u/OTaiJtTaWWvkP2J2iYPyWx0hOsR0yw=
Subject key identifier: 8C:6D:33:C4:1C:9D:F9:7D:FA:F2:11:E1:91:17:46:3F:CD:7E:C2:C4
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4AD830AEA30B6804F04FF9A67F96B7F5F15E94B5
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a31643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 07:00:03 +0000
ROA not before: Mon 26 Sep 2022 06:55:03 +0000
ROA not after: Mon 25 Sep 2023 07:00:03 +0000
asID: 59282
IP address blocks: 2400:d680:1d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:d8:30:ae:a3:0b:68:04:f0:4f:f9:a6:7f:96:b7:f5:f1:5e:94:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 06:55:03 2022 GMT
Not After : Sep 25 07:00:03 2023 GMT
Subject: CN=8C6D33C41C9DF97DFAF211E19117463FCD7EC2C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:60:3e:42:c8:21:16:65:85:d6:5a:25:12:25:
d9:bc:ee:95:53:12:3d:54:57:99:98:6a:49:db:cb:
05:c9:6c:f1:6e:bb:c8:21:d6:11:9d:48:1a:aa:1b:
2f:da:89:39:c8:8d:a3:b0:56:aa:a4:03:d1:ac:f6:
67:b8:3d:fd:36:0e:21:9a:43:60:eb:83:7a:68:e1:
09:2d:c4:3b:af:00:95:58:40:4c:9a:19:5c:31:82:
13:5b:ca:ec:e9:c9:7f:89:bd:7d:ef:12:85:ff:c5:
ee:6c:93:75:b6:bc:01:12:f4:41:5e:96:e0:02:7f:
ef:18:62:0f:e7:1e:e9:91:1e:d2:4e:33:b3:77:a1:
42:5d:d8:e5:c2:30:71:eb:9f:16:9b:16:c1:c0:f8:
ed:3f:09:df:bb:0c:24:ca:c2:7f:02:f2:3f:29:fb:
7c:9f:d7:80:81:ec:aa:1a:8c:89:21:f4:51:86:82:
f1:e6:d6:07:3f:bf:58:f0:93:ab:8e:9b:75:d0:d7:
d3:92:d6:93:57:99:2f:d9:93:e5:34:84:fb:5d:66:
38:fd:26:17:2c:b4:9c:13:36:e9:66:38:15:39:c6:
79:95:8d:a6:66:56:0a:17:85:d9:3e:73:0c:0f:69:
25:af:c1:13:c9:a8:07:c7:d9:ff:87:34:17:a6:ed:
a1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:6D:33:C4:1C:9D:F9:7D:FA:F2:11:E1:91:17:46:3F:CD:7E:C2:C4
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a31643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1d::/48
Signature Algorithm: sha256WithRSAEncryption
8d:66:82:1d:aa:ce:1e:70:6f:1a:dd:54:ee:d3:74:ca:28:31:
f1:c6:c8:30:91:ed:a0:03:61:d9:a7:8a:bf:1a:1a:24:1e:2e:
32:2d:28:7c:7c:8e:96:cb:07:77:33:a5:e4:79:af:8d:da:d8:
95:b9:d2:1c:55:bf:9b:7a:77:4c:75:1b:21:96:fa:43:1f:3c:
92:8b:3a:bb:ab:78:84:88:a1:fd:5d:c6:e0:10:e5:53:6d:32:
03:58:24:94:0b:93:cd:17:98:e2:15:30:21:90:d3:54:3f:0a:
40:4b:10:74:d8:0d:77:ee:ed:f1:bc:6f:03:8d:0c:cd:1e:85:
a6:c9:65:d4:f6:e4:63:b9:6c:81:cd:ce:58:01:5c:25:a3:8f:
d2:23:09:28:37:3e:dc:17:dd:5e:07:3b:ad:56:f5:e4:c3:e8:
35:87:2d:35:be:71:e1:0b:5e:96:94:21:e7:89:2c:46:f9:63:
f0:77:51:94:51:fa:ad:77:4f:87:f9:80:58:1a:dc:68:57:9e:
d8:ef:a0:14:80:90:20:b7:70:44:5e:d7:1d:83:48:e0:c0:dc:
71:6d:dd:38:b8:a9:3d:8c:fe:47:0e:5e:3d:83:91:52:42:64:
ee:7b:e0:05:89:52:8c:42:5b:0c:28:c6:7a:ce:70:40:7d:66:
45:de:c6:d8
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUStgwrqMLaATwT/mmf5a39fFelLUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNjU1MDNaFw0yMzA5MjUwNzAwMDNaMDMxMTAvBgNV
BAMTKDhDNkQzM0M0MUM5REY5N0RGQUYyMTFFMTkxMTc0NjNGQ0Q3RUMyQzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPYD5CyCEWZYXWWiUSJdm87pVT
Ej1UV5mYaknbywXJbPFuu8gh1hGdSBqqGy/aiTnIjaOwVqqkA9Gs9me4Pf02DiGa
Q2Drg3po4QktxDuvAJVYQEyaGVwxghNbyuzpyX+JvX3vEoX/xe5sk3W2vAES9EFe
luACf+8YYg/nHumRHtJOM7N3oUJd2OXCMHHrnxabFsHA+O0/Cd+7DCTKwn8C8j8p
+3yf14CB7KoajIkh9FGGgvHm1gc/v1jwk6uOm3XQ19OS1pNXmS/Zk+U0hPtdZjj9
JhcstJwTNulmOBU5xnmVjaZmVgoXhdk+cwwPaSWvwRPJqAfH2f+HNBem7aErAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUjG0zxByd+X368hHhkRdGP81+wsQwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzE2NDNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAB0w
DQYJKoZIhvcNAQELBQADggEBAI1mgh2qzh5wbxrdVO7TdMooMfHGyDCR7aADYdmn
ir8aGiQeLjItKHx8jpbLB3czpeR5r43a2JW50hxVv5t6d0x1GyGW+kMfPJKLOrur
eISIof1dxuAQ5VNtMgNYJJQLk80XmOIVMCGQ01Q/CkBLEHTYDXfu7fG8bwONDM0e
habJZdT25GO5bIHNzlgBXCWjj9IjCSg3PtwX3V4HO61W9eTD6DWHLTW+ceELXpaU
IeeJLEb5Y/B3UZRR+q13T4f5gFga3GhXntjvoBSAkCC3cERe1x2DSODA3HFt3Ti4
qT2M/kcOXj2DkVJCZO574AWJUoxCWwwoxnrOcEB9ZkXextg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org