Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3234363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: HpyzUBgjwl2AFeEu2C0GOYKrplGJVhRjuCtbdqu7MAs=
Subject key identifier: 05:80:85:DB:A4:E4:F3:B8:E6:10:D3:51:B4:CD:A0:0D:A0:3D:3B:2B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5A00C897F6C0F8723114528354CDF17408C901BF
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:24 +0000
ROA not before: Mon 26 Sep 2022 09:55:24 +0000
ROA not after: Mon 25 Sep 2023 10:00:24 +0000
asID: 59282
IP address blocks: 2400:d680:246::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:00:c8:97:f6:c0:f8:72:31:14:52:83:54:cd:f1:74:08:c9:01:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:24 2022 GMT
Not After : Sep 25 10:00:24 2023 GMT
Subject: CN=058085DBA4E4F3B8E610D351B4CDA00DA03D3B2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2f:5a:d2:f1:dd:70:96:0a:64:7b:5b:df:23:
35:16:bc:86:f7:63:88:47:77:67:14:9b:fd:78:ff:
37:a2:a6:ba:0b:79:49:d6:83:8a:17:b8:fd:44:be:
82:b8:87:34:36:11:2d:f8:57:f7:09:2d:99:46:12:
32:fc:46:f6:d6:70:be:0b:4e:00:15:a0:5c:60:68:
aa:96:dd:4d:f1:34:c0:f9:25:b7:6f:ef:f0:82:02:
b8:49:0e:2c:86:d0:b7:68:0a:f2:d2:c9:50:c8:0b:
5c:69:0a:30:71:dd:6d:71:24:c4:3e:b6:ec:d0:6c:
8d:bb:77:f4:07:a4:e5:5e:5f:c8:87:fc:6a:2d:2a:
56:eb:01:6a:00:4c:ee:b1:99:98:3f:d0:6c:c9:98:
2d:a1:4f:d2:24:1c:ab:be:9d:35:d7:15:07:34:cd:
e9:a1:ba:a4:f7:33:bd:b3:e4:e7:fe:56:c5:7c:e9:
7b:b9:51:64:dc:2c:d2:9a:df:a3:6a:91:03:56:f8:
52:bf:b3:be:1c:a9:42:f2:38:6c:71:43:4c:12:9a:
5a:cc:35:37:b9:c9:18:e3:7e:56:fc:88:a3:a6:7d:
a1:dd:47:48:cd:66:e8:2f:b3:9d:50:22:08:9a:d5:
d1:fc:cb:5a:4c:1c:ed:89:b7:0f:c4:70:58:15:b6:
ef:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:80:85:DB:A4:E4:F3:B8:E6:10:D3:51:B4:CD:A0:0D:A0:3D:3B:2B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:246::/48
Signature Algorithm: sha256WithRSAEncryption
80:8d:77:a0:62:bc:02:3b:71:08:96:9e:60:5c:53:78:63:52:
c7:0d:a1:b9:40:d7:f0:b9:ed:33:cb:9d:eb:ff:fc:e7:11:a6:
d8:df:98:15:7b:a4:6c:2a:9b:b8:d3:f5:79:76:f8:e5:86:ff:
92:1f:72:de:7c:23:8c:a3:3c:23:94:e2:33:bc:d4:41:dd:49:
af:fc:8d:75:03:da:94:93:07:80:97:cc:99:ed:69:87:d7:03:
1b:00:10:96:ac:b6:78:92:4e:99:9f:90:94:02:ae:6d:31:8a:
36:13:f8:44:d5:aa:2b:c4:a4:44:3f:42:58:f2:f3:41:88:a7:
a1:ac:af:3a:54:66:0b:40:32:e7:76:6c:de:65:a9:bf:98:24:
be:07:01:e5:82:f8:f3:ff:1a:b4:c3:93:1d:fc:8a:31:0f:eb:
bb:79:73:25:86:3d:6a:e2:19:43:2e:5e:74:77:8f:c8:7f:52:
e7:fd:6b:29:24:41:4e:63:f0:22:f9:97:be:9a:be:56:87:04:
38:75:18:52:a7:dc:c3:23:16:c0:21:38:46:cd:fb:e2:c1:6d:
a7:5c:be:8c:3d:99:80:12:12:be:5b:05:31:48:34:96:dc:1e:
cf:e4:a9:54:dd:f7:6d:71:2e:5d:ba:14:b5:a7:02:78:74:69:
91:35:23:af
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUWgDIl/bA+HIxFFKDVM3xdAjJAb8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MjRaFw0yMzA5MjUxMDAwMjRaMDMxMTAvBgNV
BAMTKDA1ODA4NURCQTRFNEYzQjhFNjEwRDM1MUI0Q0RBMDBEQTAzRDNCMkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClL1rS8d1wlgpke1vfIzUWvIb3
Y4hHd2cUm/14/zeiproLeUnWg4oXuP1EvoK4hzQ2ES34V/cJLZlGEjL8RvbWcL4L
TgAVoFxgaKqW3U3xNMD5Jbdv7/CCArhJDiyG0LdoCvLSyVDIC1xpCjBx3W1xJMQ+
tuzQbI27d/QHpOVeX8iH/GotKlbrAWoATO6xmZg/0GzJmC2hT9IkHKu+nTXXFQc0
zemhuqT3M72z5Of+VsV86Xu5UWTcLNKa36NqkQNW+FK/s74cqULyOGxxQ0wSmlrM
NTe5yRjjflb8iKOmfaHdR0jNZugvs51QIgia1dH8y1pMHO2Jtw/EcFgVtu95AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUBYCF26Tk87jmENNRtM2gDaA9OyswHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzNDM2M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
RjANBgkqhkiG9w0BAQsFAAOCAQEAgI13oGK8AjtxCJaeYFxTeGNSxw2huUDX8Lnt
M8ud6//85xGm2N+YFXukbCqbuNP1eXb45Yb/kh9y3nwjjKM8I5TiM7zUQd1Jr/yN
dQPalJMHgJfMme1ph9cDGwAQlqy2eJJOmZ+QlAKubTGKNhP4RNWqK8SkRD9CWPLz
QYinoayvOlRmC0Ay53Zs3mWpv5gkvgcB5YL48/8atMOTHfyKMQ/ru3lzJYY9auIZ
Qy5edHePyH9S5/1rKSRBTmPwIvmXvpq+VocEOHUYUqfcwyMWwCE4Rs374sFtp1y+
jD2ZgBISvlsFMUg0ltwez+SpVN33bXEuXboUtacCeHRpkTUjrw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org