Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3232653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: qc+R0717WiWeJbNqfr3y2mV6sAMDUKwAsxttcQ5XW6s=
Subject key identifier: BD:78:03:BC:1A:B5:27:49:7E:95:E0:63:5E:48:00:3F:79:45:E2:8E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4DCCDB22A4F47F6478ED6F3038631D663F9A4F78
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:24 +0000
ROA not before: Mon 26 Sep 2022 07:57:24 +0000
ROA not after: Mon 25 Sep 2023 08:02:24 +0000
asID: 59282
IP address blocks: 2400:d680:22e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:cc:db:22:a4:f4:7f:64:78:ed:6f:30:38:63:1d:66:3f:9a:4f:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:24 2022 GMT
Not After : Sep 25 08:02:24 2023 GMT
Subject: CN=BD7803BC1AB527497E95E0635E48003F7945E28E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ee:ef:89:54:7e:a1:dc:dd:48:ca:f1:cb:56:
33:d6:d3:69:d1:62:38:3b:23:77:29:bf:d8:10:c0:
24:46:06:65:b5:5d:53:0e:d9:1c:12:d3:47:c0:7f:
bb:fb:8a:3d:83:4d:55:b9:46:28:4d:91:23:fa:88:
04:e3:81:43:0b:5b:e1:de:a5:6d:9d:f1:8d:ef:9d:
8b:c3:75:f0:c5:b3:1c:c3:f0:25:d0:ac:7e:06:a5:
a9:10:c4:1e:12:0a:af:82:fa:e5:fa:71:07:ca:c1:
98:89:34:13:c1:42:90:46:76:8c:06:a4:f0:4f:ec:
db:07:2e:9f:95:27:b8:61:83:df:33:a9:eb:5a:92:
b5:84:e6:63:b6:46:ad:ec:66:b0:ae:f2:cf:3f:e3:
86:2d:b2:f7:f5:44:ed:e5:4e:0a:ad:e0:64:34:8b:
b7:55:a2:36:99:91:5e:98:4c:6d:b8:e0:7f:85:da:
38:9b:9d:e4:d6:cd:41:30:63:47:ca:b8:e6:5d:cf:
c6:70:f8:51:4c:46:1e:79:e9:53:fd:0b:3d:9a:ac:
a6:30:1a:4a:47:e2:81:ae:58:0c:a6:a8:d8:d9:65:
59:14:69:72:d2:70:07:d6:ed:c7:d6:91:95:39:4d:
76:52:f4:23:6c:be:75:60:bd:ca:0b:69:cd:13:e8:
d2:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:78:03:BC:1A:B5:27:49:7E:95:E0:63:5E:48:00:3F:79:45:E2:8E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:22e::/48
Signature Algorithm: sha256WithRSAEncryption
64:20:a7:43:e9:a6:03:77:12:cc:3d:1c:d5:a0:01:8a:c3:f1:
80:d9:3c:56:62:c9:56:19:5a:5f:78:db:82:18:f4:e3:a4:d3:
55:69:f8:79:68:b2:b0:76:c0:5e:22:e2:35:9f:48:93:6d:4e:
e6:0a:60:53:27:f5:15:8c:c3:3f:93:d6:3f:32:69:f5:07:59:
35:af:43:8f:76:4e:5b:39:5c:3c:10:9f:1b:5d:a0:c6:da:03:
6e:24:45:db:f0:82:18:52:91:8b:a5:d9:1e:0d:74:95:d0:90:
f8:e1:19:56:58:e6:2d:20:ea:d3:db:cb:cb:c5:96:34:4e:0e:
46:90:c3:25:2f:b4:ce:5d:b1:9a:82:44:fa:e5:55:2e:a7:9a:
4c:be:41:3f:7d:0f:66:d3:45:1e:09:e5:22:37:18:79:e4:d2:
a1:fb:1f:59:e7:e2:3f:22:db:c1:ea:ba:0f:60:30:15:ea:27:
da:9e:7a:bc:a0:f8:10:dc:10:f2:3e:9d:0e:93:cc:cd:e3:85:
59:28:4c:c6:2d:96:8c:21:13:72:f5:6f:9c:a7:35:3b:d7:6d:
4a:28:e3:ef:64:01:b5:91:45:4d:3e:1f:71:1c:6e:d5:ae:51:
ec:b7:82:71:f3:2d:4f:98:01:8e:5e:86:29:0c:2e:41:c5:ed:
49:dd:5f:ad
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUTczbIqT0f2R47W8wOGMdZj+aT3gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MjRaFw0yMzA5MjUwODAyMjRaMDMxMTAvBgNV
BAMTKEJENzgwM0JDMUFCNTI3NDk3RTk1RTA2MzVFNDgwMDNGNzk0NUUyOEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn7u+JVH6h3N1IyvHLVjPW02nR
Yjg7I3cpv9gQwCRGBmW1XVMO2RwS00fAf7v7ij2DTVW5RihNkSP6iATjgUMLW+He
pW2d8Y3vnYvDdfDFsxzD8CXQrH4GpakQxB4SCq+C+uX6cQfKwZiJNBPBQpBGdowG
pPBP7NsHLp+VJ7hhg98zqetakrWE5mO2Rq3sZrCu8s8/44Ytsvf1RO3lTgqt4GQ0
i7dVojaZkV6YTG244H+F2jibneTWzUEwY0fKuOZdz8Zw+FFMRh556VP9Cz2arKYw
GkpH4oGuWAymqNjZZVkUaXLScAfW7cfWkZU5TXZS9CNsvnVgvcoLac0T6NJjAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUvXgDvBq1J0l+leBjXkgAP3lF4o4wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzMjY1M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
LjANBgkqhkiG9w0BAQsFAAOCAQEAZCCnQ+mmA3cSzD0c1aABisPxgNk8VmLJVhla
X3jbghj046TTVWn4eWiysHbAXiLiNZ9Ik21O5gpgUyf1FYzDP5PWPzJp9QdZNa9D
j3ZOWzlcPBCfG12gxtoDbiRF2/CCGFKRi6XZHg10ldCQ+OEZVljmLSDq09vLy8WW
NE4ORpDDJS+0zl2xmoJE+uVVLqeaTL5BP30PZtNFHgnlIjcYeeTSofsfWefiPyLb
weq6D2AwFeon2p56vKD4ENwQ8j6dDpPMzeOFWShMxi2WjCETcvVvnKc1O9dtSijj
72QBtZFFTT4fcRxu1a5R7LeCcfMtT5gBjl6GKQwuQcXtSd1frQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org