Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3232353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: bHKolj/A5CJiSb4XM2I5X8f+qTgvqa3+FZfi8dtFZbg=
Subject key identifier: C7:9A:D7:FD:EE:20:B0:E5:D8:13:C0:EA:A9:4B:79:DB:CD:B8:27:72
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3BF6DD20F7AD7D272CC76356865CCF719C1CD14E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:20 +0000
ROA not before: Mon 26 Sep 2022 07:57:20 +0000
ROA not after: Mon 25 Sep 2023 08:02:20 +0000
asID: 59282
IP address blocks: 2400:d680:225::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:f6:dd:20:f7:ad:7d:27:2c:c7:63:56:86:5c:cf:71:9c:1c:d1:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:20 2022 GMT
Not After : Sep 25 08:02:20 2023 GMT
Subject: CN=C79AD7FDEE20B0E5D813C0EAA94B79DBCDB82772
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:42:39:ed:da:3d:15:6a:f6:2a:e2:18:40:b7:
fb:09:fa:a9:d6:3a:7f:35:dd:8a:88:b7:ef:c1:55:
0a:e7:7a:f4:c5:8a:fc:5e:07:5a:26:ed:05:e0:9a:
f1:ea:eb:ab:e9:eb:83:8a:62:45:24:3d:18:be:34:
26:a5:3b:0b:83:d6:57:84:70:10:c0:18:38:74:0c:
3c:0a:01:8f:63:0f:0b:f7:35:51:bc:3a:b9:dd:70:
f8:b7:78:df:63:85:68:9b:7c:67:eb:8c:de:16:e0:
b2:50:a4:a7:2c:78:a6:59:83:53:2b:6b:23:aa:f8:
fe:86:99:02:e3:b5:ba:9e:46:2a:5f:c5:c5:4e:50:
3b:b6:08:ec:c6:c8:46:3f:c5:66:f2:3a:ef:c9:04:
cd:2f:2b:5d:b2:a2:81:7f:b1:e0:1b:c0:59:db:3a:
9e:d9:49:0f:85:03:38:1b:21:a3:27:7a:4d:3f:ee:
02:14:69:15:83:76:c9:37:d3:42:e5:c2:c8:c7:60:
b0:99:ff:87:d2:cb:04:9f:ac:d9:d1:77:5b:70:7e:
7e:46:c2:65:1a:8d:0e:2e:ab:26:bd:36:a6:be:43:
5e:9e:4a:52:cf:74:40:9b:9d:c0:52:01:a5:20:a8:
5a:23:3e:e4:1b:41:c3:69:1f:08:f7:51:26:dd:09:
a5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:9A:D7:FD:EE:20:B0:E5:D8:13:C0:EA:A9:4B:79:DB:CD:B8:27:72
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:225::/48
Signature Algorithm: sha256WithRSAEncryption
20:2f:9c:f8:d1:f8:8a:61:c9:23:f3:f6:c8:ae:e2:1b:03:a3:
25:9f:3f:d7:2c:b6:7e:bb:66:18:4a:30:37:f4:95:ee:87:df:
52:35:a2:a8:69:7b:cd:6b:64:c1:ab:aa:84:a2:61:ef:99:24:
92:a8:24:4d:20:04:c3:6c:f1:9b:c6:b3:98:9a:15:6f:5e:9a:
02:1a:9a:76:bb:a2:52:26:d1:cf:2c:51:32:e2:9b:bf:58:a2:
4e:bc:a7:d8:6e:a2:58:56:10:87:bd:82:1c:3b:77:f4:5e:b9:
5d:0a:41:6d:fd:7a:f9:66:14:f7:52:66:80:a7:5c:3d:b5:1a:
c0:1a:19:4d:90:6a:49:53:80:68:42:0d:8c:80:0d:8b:de:2e:
5f:5a:ac:8e:56:b7:fb:03:9b:57:fc:79:47:43:b4:2a:65:74:
59:7d:6f:45:23:70:49:82:55:27:85:65:03:de:6a:e1:25:78:
33:83:94:84:04:6c:98:61:0d:40:05:7f:d3:4b:f6:8e:fa:ad:
89:8e:c4:c3:78:2e:9f:33:1b:3a:e6:e3:cc:9e:f6:60:fe:5a:
de:da:f5:8a:20:89:84:5c:7e:cd:39:fb:c9:20:ac:e9:55:ea:
cf:78:fe:73:6e:97:68:92:ce:f9:b0:28:0a:fb:9e:d4:71:ea:
a6:75:0c:be
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUO/bdIPetfScsx2NWhlzPcZwc0U4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MjBaFw0yMzA5MjUwODAyMjBaMDMxMTAvBgNV
BAMTKEM3OUFEN0ZERUUyMEIwRTVEODEzQzBFQUE5NEI3OURCQ0RCODI3NzIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEQjnt2j0VavYq4hhAt/sJ+qnW
On813YqIt+/BVQrnevTFivxeB1om7QXgmvHq66vp64OKYkUkPRi+NCalOwuD1leE
cBDAGDh0DDwKAY9jDwv3NVG8OrndcPi3eN9jhWibfGfrjN4W4LJQpKcseKZZg1Mr
ayOq+P6GmQLjtbqeRipfxcVOUDu2COzGyEY/xWbyOu/JBM0vK12yooF/seAbwFnb
Op7ZSQ+FAzgbIaMnek0/7gIUaRWDdsk300LlwsjHYLCZ/4fSywSfrNnRd1twfn5G
wmUajQ4uqya9Nqa+Q16eSlLPdECbncBSAaUgqFojPuQbQcNpHwj3USbdCaW3AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUx5rX/e4gsOXYE8DqqUt52824J3IwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzMjM1M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
JTANBgkqhkiG9w0BAQsFAAOCAQEAIC+c+NH4imHJI/P2yK7iGwOjJZ8/1yy2frtm
GEowN/SV7offUjWiqGl7zWtkwauqhKJh75kkkqgkTSAEw2zxm8azmJoVb16aAhqa
druiUibRzyxRMuKbv1iiTryn2G6iWFYQh72CHDt39F65XQpBbf16+WYU91JmgKdc
PbUawBoZTZBqSVOAaEINjIANi94uX1qsjla3+wObV/x5R0O0KmV0WX1vRSNwSYJV
J4VlA95q4SV4M4OUhARsmGENQAV/00v2jvqtiY7Ew3gunzMbOubjzJ72YP5a3tr1
iiCJhFx+zTn7ySCs6VXqz3j+c26XaJLO+bAoCvue1HHqpnUMvg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org