Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a31663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a31663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 3LZZyMowD1fMvFtQ+fXxJ0fMe9EKZyAqrby/vA8RBrc=
Subject key identifier: 1B:0C:10:9A:D5:09:BA:2A:0C:AC:9A:1B:18:FD:EE:31:C6:45:14:C1
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 199C37EBAB1E6B34FD51D4C33E5DC92C6ECD0939
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a31663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 07:00:01 +0000
ROA not before: Mon 26 Sep 2022 06:55:01 +0000
ROA not after: Mon 25 Sep 2023 07:00:01 +0000
asID: 59282
IP address blocks: 2400:d680:1f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:9c:37:eb:ab:1e:6b:34:fd:51:d4:c3:3e:5d:c9:2c:6e:cd:09:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 06:55:01 2022 GMT
Not After : Sep 25 07:00:01 2023 GMT
Subject: CN=1B0C109AD509BA2A0CAC9A1B18FDEE31C64514C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:81:3a:94:1f:d1:2e:ef:8a:52:50:4f:f6:d8:
3d:54:b9:88:35:a1:ca:23:c9:e1:ef:e3:b8:bb:40:
3b:54:dd:99:4c:a0:74:1f:10:4f:b8:03:36:94:c5:
bb:23:46:4f:81:3f:42:19:24:b8:66:48:2f:60:83:
d1:8c:0a:84:41:06:98:ee:f5:4f:f3:9f:7b:59:e8:
0e:cb:42:97:32:36:55:df:57:80:d2:62:75:23:d2:
a2:8f:f2:2d:6a:69:ac:0e:44:14:64:f2:43:ad:b6:
5e:4b:50:61:70:dc:16:cf:18:13:0c:e1:86:bd:d1:
d2:14:37:53:6a:4d:14:6c:03:1a:67:2f:fc:31:d5:
6a:35:7e:26:29:cb:60:61:da:9a:7c:73:60:d4:1b:
5b:8a:16:1a:00:88:99:2b:0f:59:b6:a7:97:f1:55:
99:e2:ff:10:dd:e0:5e:06:66:45:3e:e5:99:62:b7:
ca:ae:34:15:24:02:a8:8a:e8:e7:f0:17:be:05:d3:
33:5b:28:8a:93:d6:c0:05:a2:96:a6:11:ec:f6:9c:
97:93:3c:8d:e7:11:39:9f:7d:26:cb:bd:30:4c:f2:
4f:1e:fb:51:20:04:d2:24:f1:04:51:83:c0:dd:ad:
30:c8:41:fa:a7:99:30:95:ec:10:d2:13:b6:c8:fd:
79:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:0C:10:9A:D5:09:BA:2A:0C:AC:9A:1B:18:FD:EE:31:C6:45:14:C1
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a31663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1f::/48
Signature Algorithm: sha256WithRSAEncryption
4e:78:99:1d:d4:a3:0a:35:de:4a:c8:e4:66:64:0d:31:79:47:
83:56:b8:9c:d4:a3:de:e7:91:ec:9e:1a:d6:5f:a5:dc:ff:e7:
cc:0c:98:81:69:a4:79:97:e7:1a:cc:81:57:50:f6:9c:59:60:
5a:05:60:b0:fc:d1:fb:21:64:77:dc:5c:c4:c9:5d:c0:e8:1a:
f2:84:6e:1d:85:a2:cf:f4:fc:c5:2d:9f:6b:66:75:9a:81:58:
8c:ef:4b:95:5d:20:a6:17:1e:9f:d7:2a:29:0c:6e:f7:23:40:
48:71:db:1f:8c:20:d0:af:b0:32:e8:af:49:96:ee:09:7c:2a:
33:e3:ec:bc:5d:90:83:b3:96:3b:a8:5d:6a:e8:0d:50:71:57:
e3:14:41:e5:81:d9:92:9b:d3:ef:03:a1:88:88:17:61:23:33:
06:d6:ef:06:a7:ff:85:7d:fc:0f:de:c3:6a:28:55:ce:19:ba:
d9:87:bb:6f:5e:c7:20:9e:58:23:8f:35:bb:c7:ae:73:cb:cf:
1f:cd:6e:bb:4d:1d:c8:b0:c9:ad:42:7b:4d:4f:b1:42:93:0c:
32:71:11:ee:a7:37:56:f2:e2:cc:c4:ee:6d:86:42:e4:03:1a:
b7:8c:1e:c1:02:bc:3c:b3:04:9b:ed:9c:c2:1c:2f:1e:5b:a8:
f6:3e:62:dc
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUGZw366seazT9UdTDPl3JLG7NCTkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNjU1MDFaFw0yMzA5MjUwNzAwMDFaMDMxMTAvBgNV
BAMTKDFCMEMxMDlBRDUwOUJBMkEwQ0FDOUExQjE4RkRFRTMxQzY0NTE0QzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6gTqUH9Eu74pSUE/22D1UuYg1
ocojyeHv47i7QDtU3ZlMoHQfEE+4AzaUxbsjRk+BP0IZJLhmSC9gg9GMCoRBBpju
9U/zn3tZ6A7LQpcyNlXfV4DSYnUj0qKP8i1qaawORBRk8kOttl5LUGFw3BbPGBMM
4Ya90dIUN1NqTRRsAxpnL/wx1Wo1fiYpy2Bh2pp8c2DUG1uKFhoAiJkrD1m2p5fx
VZni/xDd4F4GZkU+5Zlit8quNBUkAqiK6OfwF74F0zNbKIqT1sAFopamEez2nJeT
PI3nETmffSbLvTBM8k8e+1EgBNIk8QRRg8DdrTDIQfqnmTCV7BDSE7bI/XnlAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUGwwQmtUJuioMrJobGP3uMcZFFMEwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzE2NjNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAB8w
DQYJKoZIhvcNAQELBQADggEBAE54mR3Uowo13krI5GZkDTF5R4NWuJzUo97nkeye
GtZfpdz/58wMmIFppHmX5xrMgVdQ9pxZYFoFYLD80fshZHfcXMTJXcDoGvKEbh2F
os/0/MUtn2tmdZqBWIzvS5VdIKYXHp/XKikMbvcjQEhx2x+MINCvsDLor0mW7gl8
KjPj7LxdkIOzljuoXWroDVBxV+MUQeWB2ZKb0+8DoYiIF2EjMwbW7wan/4V9/A/e
w2ooVc4ZutmHu29exyCeWCOPNbvHrnPLzx/NbrtNHciwya1Ce01PsUKTDDJxEe6n
N1by4szE7m2GQuQDGreMHsECvDyzBJvtnMIcLx5bqPY+Ytw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org