Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a32343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: cwk6L6xknk7bTyB9jHo+wY6Q/hNstATExvh2GXDCaf8=
Subject key identifier: 39:C5:64:A9:5C:BF:95:BE:2B:92:BE:10:0F:E5:2F:EE:87:A1:B7:7F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7904B7585BE5DC57C408FE598B8ABAF632D2111E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:08 +0000
ROA not before: Mon 26 Sep 2022 07:57:08 +0000
ROA not after: Mon 25 Sep 2023 08:02:08 +0000
asID: 59282
IP address blocks: 2400:d680:24::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:04:b7:58:5b:e5:dc:57:c4:08:fe:59:8b:8a:ba:f6:32:d2:11:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:08 2022 GMT
Not After : Sep 25 08:02:08 2023 GMT
Subject: CN=39C564A95CBF95BE2B92BE100FE52FEE87A1B77F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:87:3f:12:85:54:ed:bd:e8:2f:db:ed:bf:2e:
3a:db:ac:e0:a8:48:39:11:02:45:c3:8e:23:59:b5:
15:43:c8:46:ae:e5:96:f4:0c:f7:a3:46:ed:cd:f2:
1a:11:f3:96:f9:2f:df:0b:78:5a:21:fd:8b:75:bb:
bc:a9:ad:1c:0a:a2:95:8e:34:52:2e:c5:db:ba:36:
ab:5b:63:db:81:b7:77:22:cf:4c:f4:61:31:eb:ed:
fb:0b:4d:f4:1c:77:01:db:7c:64:6c:f4:70:40:7c:
15:76:61:4b:95:9c:15:f7:91:56:96:e9:32:82:76:
c4:1c:b8:ab:9d:cf:be:dc:62:66:61:2b:65:00:5c:
69:29:1c:5f:b3:fc:dc:a4:18:68:a8:32:33:54:b8:
46:38:d9:e1:6f:c1:72:d8:63:3b:79:2e:ae:a6:d7:
aa:5b:d8:8e:d5:9b:9e:6b:e7:3c:4b:b0:fb:2f:96:
ba:57:5c:8d:b1:89:e4:cd:75:41:9d:a4:ff:0d:91:
c1:94:b1:70:25:ab:25:4f:eb:9b:ab:15:d4:7f:8d:
5d:0a:88:8b:9f:63:72:11:74:43:95:c3:d4:5f:81:
3f:19:6b:58:e2:de:a7:f6:c6:63:86:a6:e5:f7:03:
cc:34:d7:b0:73:0b:fb:bc:3c:d5:17:23:59:ea:c4:
16:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:C5:64:A9:5C:BF:95:BE:2B:92:BE:10:0F:E5:2F:EE:87:A1:B7:7F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:24::/48
Signature Algorithm: sha256WithRSAEncryption
3c:ba:62:c9:c6:20:f9:32:9b:2a:cb:53:05:69:04:bd:5e:1b:
fb:3e:a7:d9:4e:5a:c6:aa:51:81:f8:5d:37:d9:ba:e6:cc:d6:
67:3e:37:57:62:aa:1b:b2:14:62:ca:9a:fe:90:bc:3b:6d:be:
1d:36:c1:84:1c:99:07:c2:92:90:a9:19:0a:ad:cd:ce:41:d9:
1d:64:46:12:ea:49:59:01:28:91:b4:2b:d3:06:3c:dd:e3:1a:
82:ce:f3:7e:28:41:bb:a8:9c:21:e3:55:01:55:94:1f:48:0a:
54:f0:b9:9e:61:7d:88:67:b3:82:9d:15:a5:8a:17:7e:5d:c9:
32:b4:10:17:0d:d9:f5:29:f8:9e:6e:6e:26:7d:97:03:c8:64:
6a:d5:fc:f2:79:bf:d0:ad:07:da:6e:12:73:84:30:4d:79:b2:
e3:c0:c6:99:57:19:97:73:a9:2e:8d:bc:6c:78:86:2f:d4:70:
0d:77:67:a5:e9:31:01:13:64:ec:ae:7b:0a:a7:6d:6f:fc:97:
22:ff:33:88:ae:e0:e1:5c:b7:12:37:8b:06:b2:fc:53:41:28:
49:50:1e:98:f9:23:06:fa:86:95:b4:37:2c:6c:ba:94:28:1f:
6b:a0:a2:a5:02:f3:af:d4:44:17:c0:9b:c3:48:8c:78:33:0a:
a2:8e:57:dc
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUeQS3WFvl3FfECP5Zi4q69jLSER4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MDhaFw0yMzA5MjUwODAyMDhaMDMxMTAvBgNV
BAMTKDM5QzU2NEE5NUNCRjk1QkUyQjkyQkUxMDBGRTUyRkVFODdBMUI3N0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHhz8ShVTtvegv2+2/LjrbrOCo
SDkRAkXDjiNZtRVDyEau5Zb0DPejRu3N8hoR85b5L98LeFoh/Yt1u7yprRwKopWO
NFIuxdu6NqtbY9uBt3ciz0z0YTHr7fsLTfQcdwHbfGRs9HBAfBV2YUuVnBX3kVaW
6TKCdsQcuKudz77cYmZhK2UAXGkpHF+z/NykGGioMjNUuEY42eFvwXLYYzt5Lq6m
16pb2I7Vm55r5zxLsPsvlrpXXI2xieTNdUGdpP8NkcGUsXAlqyVP65urFdR/jV0K
iIufY3IRdEOVw9RfgT8Za1ji3qf2xmOGpuX3A8w017BzC/u8PNUXI1nqxBYrAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUOcVkqVy/lb4rkr4QD+Uv7oeht38wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzNDNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAACQw
DQYJKoZIhvcNAQELBQADggEBADy6YsnGIPkymyrLUwVpBL1eG/s+p9lOWsaqUYH4
XTfZuubM1mc+N1diqhuyFGLKmv6QvDttvh02wYQcmQfCkpCpGQqtzc5B2R1kRhLq
SVkBKJG0K9MGPN3jGoLO834oQbuonCHjVQFVlB9IClTwuZ5hfYhns4KdFaWKF35d
yTK0EBcN2fUp+J5ubiZ9lwPIZGrV/PJ5v9CtB9puEnOEME15suPAxplXGZdzqS6N
vGx4hi/UcA13Z6XpMQETZOyuewqnbW/8lyL/M4iu4OFctxI3iway/FNBKElQHpj5
Iwb6hpW0NyxsupQoH2ugoqUC86/URBfAm8NIjHgzCqKOV9w=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org