Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3234663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 4QN+dj/1YypEjXinSxXWNUoqqO5PIEHt1VxGJlBc9Dk=
Subject key identifier: 3E:34:7C:A3:4F:9A:2B:15:F9:DA:01:DE:0E:71:C7:6C:99:D4:69:E2
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 569EF3C30D0B388FE076568B166FE287B128A768
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:13 +0000
ROA not before: Mon 26 Sep 2022 09:55:13 +0000
ROA not after: Mon 25 Sep 2023 10:00:13 +0000
asID: 59282
IP address blocks: 2400:d680:24f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:9e:f3:c3:0d:0b:38:8f:e0:76:56:8b:16:6f:e2:87:b1:28:a7:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:13 2022 GMT
Not After : Sep 25 10:00:13 2023 GMT
Subject: CN=3E347CA34F9A2B15F9DA01DE0E71C76C99D469E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:67:69:e3:8b:7f:55:f0:df:ca:a7:c8:e4:61:
1c:1f:4d:d2:de:f0:f7:58:bc:d2:95:63:a9:48:15:
38:a8:bc:89:2f:33:65:51:43:47:25:46:c2:1c:60:
1c:44:aa:bf:52:03:72:2d:9d:38:d8:30:66:ab:e5:
18:9b:1c:4e:56:eb:bc:cd:d7:b1:c2:69:41:32:88:
9a:bb:75:7d:28:b2:89:96:51:f7:a7:70:1f:f6:4a:
f4:bc:7c:e5:40:30:c3:8f:d2:d1:b7:d7:31:70:66:
02:c0:61:a6:68:18:03:0e:b7:57:00:ee:f8:2d:fd:
5f:dd:63:27:ec:c9:fd:03:90:91:a3:ca:d4:78:e1:
b3:86:b9:ef:39:d5:96:0d:52:ac:93:e4:f2:db:c6:
25:60:27:db:44:97:52:03:48:7b:00:d7:a6:e2:15:
44:ef:e0:71:80:1e:fa:7d:02:77:ba:46:1b:4f:24:
35:14:ff:26:61:aa:12:7e:1d:f4:e6:5f:ab:92:77:
29:84:99:11:0a:10:d0:5f:52:8c:63:aa:db:0a:73:
1e:bc:17:ca:6e:95:ec:f9:de:6c:b1:ed:d1:c2:0f:
97:54:62:ff:ee:bd:29:d4:f4:9c:bd:e5:69:79:10:
02:30:d8:0e:05:ce:0c:da:f7:06:08:66:66:b3:57:
0b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:34:7C:A3:4F:9A:2B:15:F9:DA:01:DE:0E:71:C7:6C:99:D4:69:E2
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:24f::/48
Signature Algorithm: sha256WithRSAEncryption
1d:4d:4b:41:6e:14:3f:7b:44:fd:09:24:57:ab:e2:2a:d5:b8:
1a:0b:61:f7:3a:19:14:85:a3:ce:0c:a6:59:7d:ab:4b:08:df:
27:ae:15:65:02:cd:64:73:85:d8:4d:c3:06:83:7c:cc:c2:73:
dc:5d:40:8e:7b:a5:75:04:4d:c7:2f:21:f3:20:de:03:0d:cd:
40:d2:06:16:11:07:8c:bc:33:2c:8c:fd:2f:5b:ac:cf:a0:70:
fc:1c:f3:f4:a0:38:07:8f:e2:09:ab:65:9e:1e:0a:fe:28:28:
71:07:8a:b5:ab:a8:07:52:d8:39:b3:2d:1e:5c:3e:29:f4:f7:
a0:42:57:2e:53:50:63:24:a1:c1:d4:71:11:f2:1c:b7:31:64:
29:ae:64:38:e3:b3:60:2a:42:8c:48:6c:7f:7f:bc:d4:3a:0d:
22:3f:b1:53:e5:17:fa:96:de:c6:73:db:83:bb:7e:dd:6b:82:
3b:02:aa:4f:ce:b4:30:da:10:49:35:4e:9f:d3:bf:17:41:03:
8c:7e:1f:d6:fa:f8:7c:10:d4:1f:a9:ce:8e:11:31:f3:6d:ae:
ec:5c:34:3e:bd:f6:db:16:36:7f:64:02:e6:c2:36:90:6d:06:
92:6e:1a:53:92:90:15:d7:9a:9a:78:fd:10:e7:a6:6b:da:26:
9c:49:5a:62
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUVp7zww0LOI/gdlaLFm/ih7Eop2gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MTNaFw0yMzA5MjUxMDAwMTNaMDMxMTAvBgNV
BAMTKDNFMzQ3Q0EzNEY5QTJCMTVGOURBMDFERTBFNzFDNzZDOTlENDY5RTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcZ2nji39V8N/Kp8jkYRwfTdLe
8PdYvNKVY6lIFTiovIkvM2VRQ0clRsIcYBxEqr9SA3ItnTjYMGar5RibHE5W67zN
17HCaUEyiJq7dX0osomWUfencB/2SvS8fOVAMMOP0tG31zFwZgLAYaZoGAMOt1cA
7vgt/V/dYyfsyf0DkJGjytR44bOGue851ZYNUqyT5PLbxiVgJ9tEl1IDSHsA16bi
FUTv4HGAHvp9Ane6RhtPJDUU/yZhqhJ+HfTmX6uSdymEmREKENBfUoxjqtsKcx68
F8pulez53myx7dHCD5dUYv/uvSnU9Jy95Wl5EAIw2A4Fzgza9wYIZmazVwuxAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUPjR8o0+aKxX52gHeDnHHbJnUaeIwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzNDY2M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
TzANBgkqhkiG9w0BAQsFAAOCAQEAHU1LQW4UP3tE/QkkV6viKtW4Ggth9zoZFIWj
zgymWX2rSwjfJ64VZQLNZHOF2E3DBoN8zMJz3F1AjnuldQRNxy8h8yDeAw3NQNIG
FhEHjLwzLIz9L1usz6Bw/Bzz9KA4B4/iCatlnh4K/igocQeKtauoB1LYObMtHlw+
KfT3oEJXLlNQYyShwdRxEfIctzFkKa5kOOOzYCpCjEhsf3+81DoNIj+xU+UX+pbe
xnPbg7t+3WuCOwKqT860MNoQSTVOn9O/F0EDjH4f1vr4fBDUH6nOjhEx822u7Fw0
Pr322xY2f2QC5sI2kG0Gkm4aU5KQFdeamnj9EOema9omnElaYg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org