Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3233343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: MWIFPdfljrWLzpfOHR4OzYqhjWh40IJDiwRqhx0918E=
Subject key identifier: 26:F0:D3:4D:3A:1B:50:45:3C:CF:6B:5C:AC:5E:6B:0D:44:83:91:8B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0DBB62A7F575D7C3EEA358F5CA6D6418715A7170
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:32 +0000
ROA not before: Mon 26 Sep 2022 07:56:32 +0000
ROA not after: Mon 25 Sep 2023 08:01:32 +0000
asID: 59282
IP address blocks: 2400:d680:234::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:bb:62:a7:f5:75:d7:c3:ee:a3:58:f5:ca:6d:64:18:71:5a:71:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:32 2022 GMT
Not After : Sep 25 08:01:32 2023 GMT
Subject: CN=26F0D34D3A1B50453CCF6B5CAC5E6B0D4483918B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:9f:c2:ff:6d:68:db:4d:3e:40:50:04:d6:dc:
f5:2f:59:9f:d2:61:ef:35:1c:6e:6d:e2:80:49:6d:
3f:07:1b:42:fa:dc:37:dc:c6:5a:0f:87:f6:8e:a1:
2f:a1:f1:54:b4:25:07:c3:92:34:ed:8a:9f:df:ee:
5c:05:1e:07:85:10:c8:e3:a8:30:49:52:a6:71:de:
e2:70:ae:55:b6:76:0e:b7:e6:98:5f:71:13:e1:1a:
fa:04:07:a3:b4:cb:8c:1e:bd:13:ea:20:73:93:1f:
32:e3:99:3c:0b:28:4e:d9:99:dd:43:72:eb:82:5c:
db:30:42:32:84:33:18:cb:5a:ae:0a:61:d8:80:82:
83:81:eb:85:9d:e3:04:10:56:a9:6e:bd:43:d4:68:
e8:d0:8d:68:b6:3f:dd:5f:8b:d4:1a:ed:6b:bb:74:
db:4b:32:b4:06:b2:dd:9a:a7:fb:28:0a:ce:18:96:
ba:b2:01:ba:55:c3:37:dd:a9:b7:f9:df:49:03:01:
c1:40:4d:49:56:30:ee:21:00:61:2e:a6:9d:91:e5:
2a:0c:4b:a3:7e:b3:2b:e5:24:43:80:a6:6b:75:6f:
58:5f:f4:36:1e:98:66:bf:a4:1c:bb:ee:87:1d:f7:
43:2b:fc:1f:e4:64:2e:59:27:71:0a:19:e7:14:f0:
11:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:F0:D3:4D:3A:1B:50:45:3C:CF:6B:5C:AC:5E:6B:0D:44:83:91:8B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:234::/48
Signature Algorithm: sha256WithRSAEncryption
bf:ed:69:dd:bd:66:43:85:73:16:28:33:19:16:83:f2:c3:53:
d8:3e:ae:25:9a:c2:2d:a6:03:d5:d5:f1:83:0d:0a:56:8e:bb:
7f:d4:8d:82:9a:17:52:6a:f4:7b:ad:bf:2f:02:ad:11:da:08:
5c:0f:c4:8e:9b:7c:23:31:5d:c1:d6:59:84:a0:0d:36:d0:9a:
5e:07:fa:45:46:b5:05:ce:b4:b1:3f:83:fc:1a:66:ce:6d:34:
56:49:0c:99:fe:e3:b8:fa:2c:8e:67:75:dd:b5:7a:ac:e3:13:
7b:0e:53:26:4a:cf:1e:9a:38:35:74:84:ff:85:a4:49:86:ff:
46:2b:9d:a8:78:7d:da:aa:d8:8a:4f:68:c8:f1:85:1f:af:c8:
e5:7d:89:ac:8c:a0:fc:ab:28:95:1b:89:94:9e:d3:1f:2a:5b:
a6:94:21:12:35:43:aa:c4:3e:74:73:67:7f:d7:9a:b0:cb:f0:
9e:a2:4e:ae:59:08:37:7f:2e:73:04:8a:b7:87:02:11:a2:ee:
3c:2b:42:42:41:a9:03:05:b5:72:01:39:a6:75:40:37:f5:7b:
31:20:70:f7:db:02:0a:7b:92:ca:35:62:1a:72:d8:c9:cf:8e:
1b:f4:28:d9:39:b1:46:62:ba:7a:51:45:98:fb:b4:2b:18:be:
8b:3a:8c:7f
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUDbtip/V118Puo1j1ym1kGHFacXAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MzJaFw0yMzA5MjUwODAxMzJaMDMxMTAvBgNV
BAMTKDI2RjBEMzREM0ExQjUwNDUzQ0NGNkI1Q0FDNUU2QjBENDQ4MzkxOEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGn8L/bWjbTT5AUATW3PUvWZ/S
Ye81HG5t4oBJbT8HG0L63DfcxloPh/aOoS+h8VS0JQfDkjTtip/f7lwFHgeFEMjj
qDBJUqZx3uJwrlW2dg635phfcRPhGvoEB6O0y4wevRPqIHOTHzLjmTwLKE7Zmd1D
cuuCXNswQjKEMxjLWq4KYdiAgoOB64Wd4wQQVqluvUPUaOjQjWi2P91fi9Qa7Wu7
dNtLMrQGst2ap/soCs4YlrqyAbpVwzfdqbf530kDAcFATUlWMO4hAGEupp2R5SoM
S6N+syvlJEOApmt1b1hf9DYemGa/pBy77ocd90Mr/B/kZC5ZJ3EKGecU8BErAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUJvDTTTobUEU8z2tcrF5rDUSDkYswHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzMzM0M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
NDANBgkqhkiG9w0BAQsFAAOCAQEAv+1p3b1mQ4VzFigzGRaD8sNT2D6uJZrCLaYD
1dXxgw0KVo67f9SNgpoXUmr0e62/LwKtEdoIXA/Ejpt8IzFdwdZZhKANNtCaXgf6
RUa1Bc60sT+D/Bpmzm00VkkMmf7juPosjmd13bV6rOMTew5TJkrPHpo4NXSE/4Wk
SYb/RiudqHh92qrYik9oyPGFH6/I5X2JrIyg/KsolRuJlJ7THypbppQhEjVDqsQ+
dHNnf9easMvwnqJOrlkIN38ucwSKt4cCEaLuPCtCQkGpAwW1cgE5pnVAN/V7MSBw
99sCCnuSyjViGnLYyc+OG/Qo2TmxRmK6elFFmPu0Kxi+izqMfw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org