Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3234653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: eceiIEteNiiKn+tYtS74rVPIEBXRmzYS8MTsJXcrW+w=
Subject key identifier: 87:3F:AC:7D:0F:C4:7C:D1:11:20:06:4C:AF:01:9E:94:AC:27:6D:E9
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 10D5AA4CB15A9626DEF0F60AEFC5E4AF6EA41BC3
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:03 +0000
ROA not before: Mon 26 Sep 2022 09:55:03 +0000
ROA not after: Mon 25 Sep 2023 10:00:03 +0000
asID: 59282
IP address blocks: 2400:d680:24e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:d5:aa:4c:b1:5a:96:26:de:f0:f6:0a:ef:c5:e4:af:6e:a4:1b:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:03 2022 GMT
Not After : Sep 25 10:00:03 2023 GMT
Subject: CN=873FAC7D0FC47CD11120064CAF019E94AC276DE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:8d:6c:fa:11:2a:dd:b6:d3:be:02:09:25:4a:
a9:54:10:91:68:d7:e0:fc:d9:71:3a:95:15:40:4b:
a7:24:3e:81:23:b0:c9:e1:1b:88:be:14:30:76:f7:
7d:75:a7:70:aa:cb:f8:1d:09:2e:4a:36:03:9a:bd:
54:b5:4a:bc:82:d0:75:fc:34:a4:d7:32:c4:d5:4b:
23:63:f8:3a:ee:b5:1f:57:c8:79:24:58:4d:91:f5:
cf:13:9d:62:72:2a:fc:9c:93:15:d9:a0:9c:33:af:
10:cb:5a:61:bd:b8:0c:b5:8d:c4:37:1f:8c:1c:40:
d4:3c:aa:e1:5a:eb:53:98:b6:c9:9a:bf:c8:c0:ee:
4d:54:f6:f1:28:a8:d7:80:91:df:66:81:5f:0e:7c:
1c:55:c3:0e:ec:b0:26:d3:40:0a:82:00:62:00:0b:
1f:64:93:0d:8e:8d:c3:a9:b3:cd:d0:88:f3:35:50:
cf:79:55:fc:39:85:d7:97:5b:7d:33:6c:ab:0a:21:
39:6a:50:b5:ac:37:e7:9b:4c:57:bb:bd:9b:ae:1b:
fb:de:d4:76:91:48:6e:db:a0:e2:21:24:6e:27:da:
d4:55:9f:44:e4:a7:6d:14:b7:fb:bf:4c:be:73:a2:
6a:e2:29:8a:05:91:11:ad:30:df:a6:22:56:93:3e:
7f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:3F:AC:7D:0F:C4:7C:D1:11:20:06:4C:AF:01:9E:94:AC:27:6D:E9
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:24e::/48
Signature Algorithm: sha256WithRSAEncryption
a9:22:a4:0f:48:15:53:5c:86:cb:b8:e0:d1:9b:2e:b6:b5:9a:
b7:52:77:c2:cd:a1:68:1b:ff:84:6c:f7:8f:80:35:73:48:53:
ba:76:dc:aa:bc:c6:a0:ed:99:7e:78:79:1d:ad:8f:43:dc:46:
7c:f8:f3:ca:e0:ef:0e:bf:ea:b1:92:e6:c0:55:12:c7:ea:02:
5d:d9:6b:d1:30:db:5b:99:77:cd:3c:e8:2a:e3:4d:28:c5:3c:
cb:a7:c6:dc:c4:f7:97:e1:23:fa:aa:82:a2:40:85:1b:f1:f3:
05:55:8f:66:2f:64:21:fb:27:6f:da:19:2c:74:b8:c4:02:ce:
3d:4c:79:1b:ee:9b:b6:92:87:5e:15:86:54:9c:cf:a5:a7:fb:
f0:53:dc:3c:a7:5e:45:18:49:12:cc:8c:98:79:5a:2e:bd:cb:
6d:a2:8a:ac:b0:13:1c:12:9a:fb:cb:63:d6:bf:c2:96:b4:27:
d9:c7:fd:5f:b6:47:ad:44:bb:86:8e:41:70:e2:92:85:43:5a:
d0:1a:ac:07:d0:1a:8b:8c:f0:6a:1a:d5:26:fe:4b:5e:17:ec:
74:1f:59:de:69:b7:f7:d5:11:93:9d:38:9d:39:52:a6:90:38:
7e:fb:73:b9:6a:6d:a2:1a:79:5f:3e:8a:58:84:dc:8c:9c:67:
56:d9:f9:e8
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUENWqTLFalibe8PYK78Xkr26kG8MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MDNaFw0yMzA5MjUxMDAwMDNaMDMxMTAvBgNV
BAMTKDg3M0ZBQzdEMEZDNDdDRDExMTIwMDY0Q0FGMDE5RTk0QUMyNzZERTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+jWz6ESrdttO+AgklSqlUEJFo
1+D82XE6lRVAS6ckPoEjsMnhG4i+FDB29311p3Cqy/gdCS5KNgOavVS1SryC0HX8
NKTXMsTVSyNj+DrutR9XyHkkWE2R9c8TnWJyKvyckxXZoJwzrxDLWmG9uAy1jcQ3
H4wcQNQ8quFa61OYtsmav8jA7k1U9vEoqNeAkd9mgV8OfBxVww7ssCbTQAqCAGIA
Cx9kkw2OjcOps83QiPM1UM95Vfw5hdeXW30zbKsKITlqULWsN+ebTFe7vZuuG/ve
1HaRSG7boOIhJG4n2tRVn0Tkp20Ut/u/TL5zomriKYoFkRGtMN+mIlaTPn+TAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUhz+sfQ/EfNERIAZMrwGelKwnbekwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzNDY1M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
TjANBgkqhkiG9w0BAQsFAAOCAQEAqSKkD0gVU1yGy7jg0ZsutrWat1J3ws2haBv/
hGz3j4A1c0hTunbcqrzGoO2Zfnh5Ha2PQ9xGfPjzyuDvDr/qsZLmwFUSx+oCXdlr
0TDbW5l3zTzoKuNNKMU8y6fG3MT3l+Ej+qqCokCFG/HzBVWPZi9kIfsnb9oZLHS4
xALOPUx5G+6btpKHXhWGVJzPpaf78FPcPKdeRRhJEsyMmHlaLr3LbaKKrLATHBKa
+8tj1r/ClrQn2cf9X7ZHrUS7ho5BcOKShUNa0BqsB9Aai4zwahrVJv5LXhfsdB9Z
3mm399URk504nTlSppA4fvtzuWptohp5Xz6KWITcjJxnVtn56A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org