Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3231363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: XPSXa7KUbOChcD4V41/bWeKfKoJKFA+2Yigzk+Y5OMc=
Subject key identifier: 8B:E2:17:0E:37:FB:02:70:0B:A7:01:95:30:F9:83:34:07:E6:DF:53
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 022DE852D50942A918A3BA290416E0214B82BE12
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:31 +0000
ROA not before: Mon 26 Sep 2022 07:56:31 +0000
ROA not after: Mon 25 Sep 2023 08:01:31 +0000
asID: 59282
IP address blocks: 2400:d680:216::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:2d:e8:52:d5:09:42:a9:18:a3:ba:29:04:16:e0:21:4b:82:be:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:31 2022 GMT
Not After : Sep 25 08:01:31 2023 GMT
Subject: CN=8BE2170E37FB02700BA7019530F9833407E6DF53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:20:28:24:0b:48:d8:c1:2a:5b:77:8f:b3:a5:
3b:d2:46:e0:c3:1d:e5:f9:9b:75:c3:9b:2d:ca:7d:
d4:7d:df:21:00:07:28:2a:b5:58:d5:3e:e1:60:f3:
8c:dc:f6:d7:93:68:ea:a9:c9:0e:a9:63:5b:9c:1c:
a3:87:81:eb:af:60:7a:11:a0:de:01:01:ed:93:42:
96:d4:eb:c8:c9:3c:f5:90:8b:74:5b:5b:07:19:a5:
44:34:ad:0d:42:48:54:74:c4:27:8a:80:f3:09:f9:
07:c1:e3:de:6f:08:24:10:91:ea:10:f4:65:7f:52:
f7:39:b0:19:ae:88:88:d9:1c:fa:20:fb:e2:5f:6f:
b5:81:0e:aa:ca:70:bd:37:bc:e8:5e:bd:6e:73:61:
b0:5a:eb:6a:2b:78:79:97:cf:b4:c9:24:bc:ce:a7:
1f:96:c6:4b:3c:99:c6:10:1f:0a:23:d6:e3:d3:b3:
0d:c9:3e:90:85:e9:8c:cc:00:65:f9:4f:f0:a6:00:
af:c7:39:85:97:c5:5f:44:34:6a:1e:26:3a:6d:53:
85:50:c9:a1:47:7e:49:b2:69:f5:fb:fa:19:b5:ae:
37:a0:be:16:f7:5d:15:76:df:3e:b4:3c:fc:a5:5b:
01:39:f4:be:dd:e5:e3:21:b8:14:11:6e:56:b4:64:
0f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:E2:17:0E:37:FB:02:70:0B:A7:01:95:30:F9:83:34:07:E6:DF:53
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3231363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:216::/48
Signature Algorithm: sha256WithRSAEncryption
ba:59:d0:9d:75:3d:1c:e5:72:29:28:b6:8f:9e:7f:06:aa:3c:
e4:8d:97:55:96:8d:20:d5:3d:83:c3:7d:6f:f3:a8:68:2b:c3:
1c:09:3e:ff:46:ec:2a:cf:b4:45:65:54:91:f0:c1:2a:2c:9f:
15:f8:c6:af:f1:72:86:ba:24:d4:b4:e6:ca:71:6f:2d:05:f3:
34:88:9d:93:16:9b:f3:d4:e4:86:67:67:2a:b7:64:f4:3e:ff:
fb:c4:af:f0:65:ab:60:67:b8:8f:08:63:79:0b:ac:e2:bf:d3:
ae:bc:32:de:af:6d:c1:88:76:b2:c3:c5:12:9d:cc:ce:9d:1b:
d3:e3:5a:07:e1:29:60:72:ec:ad:20:43:fb:fc:c8:de:c1:43:
fb:22:21:ef:1e:b6:a5:e3:15:4c:16:c5:c9:ff:af:d8:30:7f:
99:46:6e:60:ac:70:ca:10:46:8e:59:10:b9:97:f5:24:b5:96:
c6:98:c9:aa:b9:4b:06:be:79:4c:a9:9f:88:ae:fd:1d:5d:1c:
a4:11:a3:ad:d5:63:17:23:f4:31:77:c6:be:98:34:f0:da:b0:
af:1c:10:18:4f:8a:2b:90:2d:d4:22:cf:c8:41:90:d6:0a:1d:
54:d4:8f:0c:90:17:ea:19:c9:c7:ec:ef:5b:8d:28:db:91:74:
7a:2a:ff:b1
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUAi3oUtUJQqkYo7opBBbgIUuCvhIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MzFaFw0yMzA5MjUwODAxMzFaMDMxMTAvBgNV
BAMTKDhCRTIxNzBFMzdGQjAyNzAwQkE3MDE5NTMwRjk4MzM0MDdFNkRGNTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMICgkC0jYwSpbd4+zpTvSRuDD
HeX5m3XDmy3KfdR93yEABygqtVjVPuFg84zc9teTaOqpyQ6pY1ucHKOHgeuvYHoR
oN4BAe2TQpbU68jJPPWQi3RbWwcZpUQ0rQ1CSFR0xCeKgPMJ+QfB495vCCQQkeoQ
9GV/Uvc5sBmuiIjZHPog++Jfb7WBDqrKcL03vOhevW5zYbBa62oreHmXz7TJJLzO
px+Wxks8mcYQHwoj1uPTsw3JPpCF6YzMAGX5T/CmAK/HOYWXxV9ENGoeJjptU4VQ
yaFHfkmyafX7+hm1rjegvhb3XRV23z60PPylWwE59L7d5eMhuBQRbla0ZA97AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUi+IXDjf7AnALpwGVMPmDNAfm31MwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzMTM2M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
FjANBgkqhkiG9w0BAQsFAAOCAQEAulnQnXU9HOVyKSi2j55/Bqo85I2XVZaNINU9
g8N9b/OoaCvDHAk+/0bsKs+0RWVUkfDBKiyfFfjGr/Fyhrok1LTmynFvLQXzNIid
kxab89TkhmdnKrdk9D7/+8Sv8GWrYGe4jwhjeQus4r/Trrwy3q9twYh2ssPFEp3M
zp0b0+NaB+EpYHLsrSBD+/zI3sFD+yIh7x62peMVTBbFyf+v2DB/mUZuYKxwyhBG
jlkQuZf1JLWWxpjJqrlLBr55TKmfiK79HV0cpBGjrdVjFyP0MXfGvpg08NqwrxwQ
GE+KK5At1CLPyEGQ1godVNSPDJAX6hnJx+zvW40o25F0eir/sQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org