Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3165343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: WpU7mOo3usVk5DJngLv3ZnVrFuOU5uJop01wiqdgR3g=
Subject key identifier: BE:2E:9B:EC:DF:3F:F9:E6:BD:25:92:3A:CE:B0:83:3D:87:24:AC:CE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 37DCB888B627A85CCFFFCFC79333AAC83AF25E6B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:10 +0000
ROA not before: Mon 26 Sep 2022 09:55:10 +0000
ROA not after: Mon 25 Sep 2023 10:00:10 +0000
asID: 59282
IP address blocks: 2400:d680:1e4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:dc:b8:88:b6:27:a8:5c:cf:ff:cf:c7:93:33:aa:c8:3a:f2:5e:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:10 2022 GMT
Not After : Sep 25 10:00:10 2023 GMT
Subject: CN=BE2E9BECDF3FF9E6BD25923ACEB0833D8724ACCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:08:f4:72:08:c0:ef:4b:a6:61:3d:db:27:55:
fb:f2:d8:31:ac:1f:78:1b:8e:34:ed:10:01:08:44:
0c:15:c5:11:5f:c6:a4:cd:3e:1e:a9:d1:64:9d:4d:
31:b5:65:42:91:26:ba:e7:a0:10:76:75:5a:60:f3:
e5:ec:61:65:d7:04:76:37:f4:c4:56:9a:14:76:e7:
22:05:bb:7c:21:d1:f8:d5:95:f7:20:40:d3:9a:77:
67:b8:93:e0:71:82:d6:dc:74:f4:95:12:2a:e1:7c:
5f:ec:10:cd:b3:72:af:fa:d1:b6:31:e9:8f:00:8c:
bb:01:43:fa:be:25:44:29:ad:0e:27:66:ed:56:6a:
95:a1:fc:c0:ad:14:c0:b4:20:5c:6a:5f:19:df:33:
61:70:46:46:19:eb:2e:50:2c:89:ea:e1:20:b6:f5:
84:3f:22:fb:88:d7:1d:4d:d4:36:5d:25:f3:17:17:
8a:41:3c:7a:8f:5d:30:3f:c2:70:1e:a8:df:60:f5:
b4:7b:ce:82:fe:61:9c:32:57:11:21:d7:5f:4f:a9:
c5:d6:81:e2:35:8e:06:71:7c:ea:1a:f6:b6:ed:89:
78:21:13:88:b1:c4:30:c3:95:e1:ef:7a:8f:52:21:
d8:7e:cb:a9:26:af:e3:af:cc:6a:22:73:94:e9:1e:
6a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:2E:9B:EC:DF:3F:F9:E6:BD:25:92:3A:CE:B0:83:3D:87:24:AC:CE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3165343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1e4::/48
Signature Algorithm: sha256WithRSAEncryption
b1:a7:9a:c4:81:3b:3a:cb:f6:37:ff:74:b0:b8:a2:f4:e6:65:
8d:38:f7:83:27:ba:fc:3e:60:b4:f7:e2:4c:f8:2a:b3:71:32:
c1:d7:fa:59:77:66:b6:84:aa:a1:13:d8:8c:26:11:0f:1d:8d:
af:a3:0a:9a:49:04:27:b8:11:c8:bb:5d:9b:b3:70:03:6f:74:
37:4c:3d:95:ee:f0:5d:d7:99:6f:3c:55:3f:88:2c:f8:65:ad:
74:43:a8:42:6c:ae:c5:cc:d5:3c:58:80:33:4b:c0:62:89:e7:
46:79:3c:98:7f:b3:cc:4a:3b:15:16:f7:97:62:b1:4a:8d:fd:
74:12:fe:c7:ce:c8:4f:3d:66:52:28:64:b3:56:c0:42:4e:0a:
10:b6:82:66:7e:5d:45:94:69:d9:23:3d:fe:85:b3:49:88:96:
5d:d3:d1:8c:8d:c5:89:9c:61:15:77:be:53:16:64:74:31:be:
1e:38:7b:a2:bc:66:c8:8d:cf:ef:f1:7e:eb:82:73:e5:c0:15:
93:b0:78:8d:6c:ab:bc:c0:68:67:29:d3:27:8d:73:43:ee:d9:
4e:74:49:2b:02:ce:07:c9:c6:4b:bc:07:fa:9d:1f:ac:e9:af:
f3:eb:bc:e3:d7:e1:3c:9c:35:17:bb:ba:90:77:64:4c:68:2c:
91:ab:ed:2b
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUN9y4iLYnqFzP/8/HkzOqyDryXmswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MTBaFw0yMzA5MjUxMDAwMTBaMDMxMTAvBgNV
BAMTKEJFMkU5QkVDREYzRkY5RTZCRDI1OTIzQUNFQjA4MzNEODcyNEFDQ0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKCPRyCMDvS6ZhPdsnVfvy2DGs
H3gbjjTtEAEIRAwVxRFfxqTNPh6p0WSdTTG1ZUKRJrrnoBB2dVpg8+XsYWXXBHY3
9MRWmhR25yIFu3wh0fjVlfcgQNOad2e4k+BxgtbcdPSVEirhfF/sEM2zcq/60bYx
6Y8AjLsBQ/q+JUQprQ4nZu1WapWh/MCtFMC0IFxqXxnfM2FwRkYZ6y5QLInq4SC2
9YQ/IvuI1x1N1DZdJfMXF4pBPHqPXTA/wnAeqN9g9bR7zoL+YZwyVxEh119PqcXW
geI1jgZxfOoa9rbtiXghE4ixxDDDleHveo9SIdh+y6kmr+OvzGoic5TpHmqHAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUvi6b7N8/+ea9JZI6zrCDPYckrM4wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzE2NTM0M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
5DANBgkqhkiG9w0BAQsFAAOCAQEAsaeaxIE7Osv2N/90sLii9OZljTj3gye6/D5g
tPfiTPgqs3Eywdf6WXdmtoSqoRPYjCYRDx2Nr6MKmkkEJ7gRyLtdm7NwA290N0w9
le7wXdeZbzxVP4gs+GWtdEOoQmyuxczVPFiAM0vAYonnRnk8mH+zzEo7FRb3l2Kx
So39dBL+x87ITz1mUihks1bAQk4KELaCZn5dRZRp2SM9/oWzSYiWXdPRjI3FiZxh
FXe+UxZkdDG+Hjh7orxmyI3P7/F+64Jz5cAVk7B4jWyrvMBoZynTJ41zQ+7ZTnRJ
KwLOB8nGS7wH+p0frOmv8+u849fhPJw1F7u6kHdkTGgskavtKw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org