Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3232363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: lAFMyOTWu+X1l1LsuRJQtMxceibej71p1CH7EuyqOgQ=
Subject key identifier: C3:D2:FB:91:66:2B:A1:F4:7D:4B:3A:5D:93:8C:5A:6E:5F:4D:86:BE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 50A82D2E76C8C9EC12A15C3544FF0082028D2F29
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:37 +0000
ROA not before: Mon 26 Sep 2022 07:56:37 +0000
ROA not after: Mon 25 Sep 2023 08:01:37 +0000
asID: 59282
IP address blocks: 2400:d680:226::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:a8:2d:2e:76:c8:c9:ec:12:a1:5c:35:44:ff:00:82:02:8d:2f:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:37 2022 GMT
Not After : Sep 25 08:01:37 2023 GMT
Subject: CN=C3D2FB91662BA1F47D4B3A5D938C5A6E5F4D86BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:be:5d:d9:44:45:c2:cc:4e:a7:19:5c:f3:16:
61:d0:5c:a0:83:0f:7e:4a:29:d3:84:1e:d4:04:27:
95:16:3a:24:9f:b2:92:ea:03:e9:3e:5f:fe:e4:84:
60:68:e5:1e:7c:b7:52:ab:af:93:94:62:c3:d0:3f:
39:99:f5:28:98:92:9b:fb:22:aa:ec:fe:0f:aa:96:
93:bc:3b:87:f5:27:5a:83:a5:0f:52:d4:e5:ed:44:
2f:77:5e:8a:54:91:86:d2:67:e9:6b:c9:ae:38:cb:
bf:fe:40:0c:ce:10:1b:36:90:06:a4:00:ca:6d:f2:
63:75:d9:ec:56:b3:cf:09:5e:37:77:83:4b:45:3c:
49:03:08:9e:f4:55:5f:4f:30:0b:37:96:de:30:0a:
61:5d:ab:32:5c:7e:8f:11:d0:82:51:72:f4:02:68:
57:bd:fd:08:07:ee:a0:b6:df:00:09:06:bb:36:44:
30:45:a9:5e:e8:fc:5f:69:7d:ae:f9:37:7c:a2:c6:
5c:62:da:c9:2a:dc:99:da:7c:72:9f:0b:93:46:08:
1b:28:15:d3:60:c1:c8:67:23:2f:ed:46:51:db:e2:
5e:28:14:ac:9f:5a:ff:2f:0f:08:31:44:4c:e8:28:
61:33:f9:fb:00:ed:65:ca:91:d9:59:7e:be:20:e7:
24:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:D2:FB:91:66:2B:A1:F4:7D:4B:3A:5D:93:8C:5A:6E:5F:4D:86:BE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:226::/48
Signature Algorithm: sha256WithRSAEncryption
42:1f:53:1b:cf:c2:98:28:fb:98:bc:fd:96:0e:73:43:1e:7c:
ec:7d:c8:ae:66:45:1c:b1:3b:c5:c4:59:66:57:9e:41:76:67:
d3:1a:5c:ad:b9:71:e7:8a:a2:ba:22:e7:09:36:14:d8:e5:78:
23:d4:dc:29:23:c5:1f:21:66:6b:a0:e3:b9:03:3b:09:b4:24:
2a:23:64:5d:52:ca:fc:60:d0:4f:9e:db:0b:bd:97:5a:ba:7f:
aa:4d:23:ac:cd:33:98:c5:5c:61:bc:53:94:2d:51:b6:78:fc:
f1:70:09:cb:ee:b9:29:bc:82:4a:9e:a5:cd:32:35:2a:50:c1:
43:48:b9:43:3f:65:e1:96:27:3a:7f:f7:87:84:9e:f6:01:ec:
22:81:7b:99:73:78:fb:3a:fe:d0:ff:47:1e:9b:f3:34:8c:4c:
6f:62:b0:d6:6e:41:78:ff:8b:fd:14:69:b9:b0:47:83:d1:86:
9f:c0:ed:c6:68:4e:26:74:cd:b3:64:78:f3:a9:d9:ea:c0:93:
43:e1:f6:3e:48:29:c7:16:67:47:f2:00:43:84:78:ce:30:ce:
75:a1:c1:51:b6:00:81:54:af:52:88:5a:a4:94:50:70:97:c2:
4c:28:ce:41:3f:49:5d:72:b9:52:8c:bc:06:11:fb:bd:b1:3c:
9a:fb:ce:5f
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUUKgtLnbIyewSoVw1RP8AggKNLykwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MzdaFw0yMzA5MjUwODAxMzdaMDMxMTAvBgNV
BAMTKEMzRDJGQjkxNjYyQkExRjQ3RDRCM0E1RDkzOEM1QTZFNUY0RDg2QkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyvl3ZREXCzE6nGVzzFmHQXKCD
D35KKdOEHtQEJ5UWOiSfspLqA+k+X/7khGBo5R58t1Krr5OUYsPQPzmZ9SiYkpv7
Iqrs/g+qlpO8O4f1J1qDpQ9S1OXtRC93XopUkYbSZ+lrya44y7/+QAzOEBs2kAak
AMpt8mN12exWs88JXjd3g0tFPEkDCJ70VV9PMAs3lt4wCmFdqzJcfo8R0IJRcvQC
aFe9/QgH7qC23wAJBrs2RDBFqV7o/F9pfa75N3yixlxi2skq3JnafHKfC5NGCBso
FdNgwchnIy/tRlHb4l4oFKyfWv8vDwgxREzoKGEz+fsA7WXKkdlZfr4g5yR/AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUw9L7kWYrofR9Szpdk4xabl9Nhr4wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzMjM2M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
JjANBgkqhkiG9w0BAQsFAAOCAQEAQh9TG8/CmCj7mLz9lg5zQx587H3IrmZFHLE7
xcRZZleeQXZn0xpcrblx54qiuiLnCTYU2OV4I9TcKSPFHyFma6DjuQM7CbQkKiNk
XVLK/GDQT57bC72XWrp/qk0jrM0zmMVcYbxTlC1Rtnj88XAJy+65KbyCSp6lzTI1
KlDBQ0i5Qz9l4ZYnOn/3h4Se9gHsIoF7mXN4+zr+0P9HHpvzNIxMb2Kw1m5BeP+L
/RRpubBHg9GGn8DtxmhOJnTNs2R486nZ6sCTQ+H2PkgpxxZnR/IAQ4R4zjDOdaHB
UbYAgVSvUohapJRQcJfCTCjOQT9JXXK5Uoy8BhH7vbE8mvvOXw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org