Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3230663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: HCKXZDtsoxFxpHHjtx/mLs3bc2Mw/A+sfXlWt42YnBg=
Subject key identifier: 95:DB:0E:41:CB:97:0C:AA:0C:8C:E7:CA:D4:08:17:38:7D:FA:9C:92
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 03AE837386290EBD314BFC237F0262A385DBD312
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:33 +0000
ROA not before: Mon 26 Sep 2022 07:56:33 +0000
ROA not after: Mon 25 Sep 2023 08:01:33 +0000
asID: 59282
IP address blocks: 2400:d680:20f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:ae:83:73:86:29:0e:bd:31:4b:fc:23:7f:02:62:a3:85:db:d3:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:33 2022 GMT
Not After : Sep 25 08:01:33 2023 GMT
Subject: CN=95DB0E41CB970CAA0C8CE7CAD40817387DFA9C92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:dc:28:07:4d:b5:9e:53:f8:9a:7e:2b:9b:1d:
2c:c9:8c:5b:b5:44:f0:90:67:ad:3a:01:8a:ab:6f:
f0:21:07:46:a1:4c:68:b2:f8:cd:c7:68:80:1a:dc:
03:06:a5:e9:5a:c4:18:85:c7:9a:4e:12:38:7f:e9:
8c:ba:d0:c5:aa:5f:d6:24:13:6e:d9:fc:df:26:27:
5e:7a:20:77:c0:9a:96:a9:cc:fb:18:18:df:4e:72:
59:da:8a:0a:6f:ae:64:22:ad:34:4b:5b:27:3d:58:
32:7a:bd:49:23:12:ab:1e:03:33:b4:79:ee:c6:90:
6a:72:e7:ef:e4:b1:90:33:d1:15:9c:90:11:08:cd:
23:64:a5:df:e6:9a:cf:cd:20:00:94:d0:39:d6:35:
7d:a2:58:0f:5d:3b:08:fa:0e:57:5b:aa:54:0f:6e:
3b:16:93:fc:f0:38:0e:87:7e:3c:b2:46:c4:fc:27:
e2:74:59:75:ba:cd:6c:ae:f3:73:52:f4:9c:29:11:
aa:a4:75:7d:90:af:26:94:14:72:c7:41:2e:03:37:
7c:91:d0:62:35:75:c0:5a:b3:23:1f:57:da:f7:24:
4f:a1:c1:37:da:cc:b2:ac:a7:a3:96:95:a1:b6:cf:
c0:46:54:a0:c3:a5:a5:06:e7:b2:95:25:69:68:8b:
97:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:DB:0E:41:CB:97:0C:AA:0C:8C:E7:CA:D4:08:17:38:7D:FA:9C:92
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:20f::/48
Signature Algorithm: sha256WithRSAEncryption
9d:9c:00:27:8b:00:1f:a7:ae:ca:11:14:00:78:f5:e3:d2:c7:
0e:66:d6:33:93:fd:ca:c8:d4:26:fa:c2:53:7a:0c:b9:78:9c:
37:f1:cb:51:7f:09:39:00:4e:74:11:b1:45:a3:56:cd:cc:e0:
77:93:77:f5:28:e4:71:d7:3a:34:4c:0d:6c:29:56:7b:3f:83:
fc:f8:72:17:9c:b7:d1:45:7c:4f:7a:ff:6b:13:a9:99:e4:48:
4c:cf:b4:e9:ca:27:d6:73:a2:55:76:5f:f8:37:c7:36:bc:50:
22:0d:5e:e4:5c:fb:65:05:9a:5f:68:f9:d7:25:1a:0b:6f:2f:
c0:b7:8b:86:46:07:f9:49:75:b2:60:0b:62:41:62:db:25:ad:
f3:b0:22:27:f9:d3:7a:a6:99:e4:6a:2a:60:f1:36:13:c4:d4:
9b:26:f1:b7:ad:0f:ff:f8:75:9b:e0:86:3c:9f:64:6a:24:78:
4a:72:3d:97:8d:ce:32:c9:85:0d:78:a7:fe:44:f1:88:5b:71:
ae:e0:e0:7b:23:73:cc:0c:42:6d:99:af:f3:85:f4:a8:bb:ed:
9a:0e:eb:52:27:c4:bf:c3:76:ac:1a:0c:43:26:20:e4:22:0e:
24:0c:f9:37:f6:a3:e1:0d:bb:6d:42:45:78:24:44:81:30:d4:
14:c2:69:8f
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUA66Dc4YpDr0xS/wjfwJio4Xb0xIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MzNaFw0yMzA5MjUwODAxMzNaMDMxMTAvBgNV
BAMTKDk1REIwRTQxQ0I5NzBDQUEwQzhDRTdDQUQ0MDgxNzM4N0RGQTlDOTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz3CgHTbWeU/iafiubHSzJjFu1
RPCQZ606AYqrb/AhB0ahTGiy+M3HaIAa3AMGpelaxBiFx5pOEjh/6Yy60MWqX9Yk
E27Z/N8mJ156IHfAmpapzPsYGN9OclnaigpvrmQirTRLWyc9WDJ6vUkjEqseAzO0
ee7GkGpy5+/ksZAz0RWckBEIzSNkpd/mms/NIACU0DnWNX2iWA9dOwj6DldbqlQP
bjsWk/zwOA6HfjyyRsT8J+J0WXW6zWyu83NS9JwpEaqkdX2QryaUFHLHQS4DN3yR
0GI1dcBasyMfV9r3JE+hwTfazLKsp6OWlaG2z8BGVKDDpaUG57KVJWloi5fTAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUldsOQcuXDKoMjOfK1AgXOH36nJIwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzMDY2M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
DzANBgkqhkiG9w0BAQsFAAOCAQEAnZwAJ4sAH6euyhEUAHj149LHDmbWM5P9ysjU
JvrCU3oMuXicN/HLUX8JOQBOdBGxRaNWzczgd5N39Sjkcdc6NEwNbClWez+D/Phy
F5y30UV8T3r/axOpmeRITM+06con1nOiVXZf+DfHNrxQIg1e5Fz7ZQWaX2j51yUa
C28vwLeLhkYH+Ul1smALYkFi2yWt87AiJ/nTeqaZ5GoqYPE2E8TUmybxt60P//h1
m+CGPJ9kaiR4SnI9l43OMsmFDXin/kTxiFtxruDgeyNzzAxCbZmv84X0qLvtmg7r
UifEv8N2rBoMQyYg5CIOJAz5N/aj4Q27bUJFeCREgTDUFMJpjw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org