Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3236313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: f0H5Q3CV7yVYHu39SBAA3wjmcsyxYK4dtP5I6HrLqM8=
Subject key identifier: 41:0A:6A:45:31:FB:E9:14:93:38:DC:6B:46:B6:F3:46:D7:48:E7:DC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5C6FD97D82EF104A5CAD7FC156A90A5BA6B45995
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:11 +0000
ROA not before: Mon 26 Sep 2022 09:55:11 +0000
ROA not after: Mon 25 Sep 2023 10:00:11 +0000
asID: 59282
IP address blocks: 2400:d680:261::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:6f:d9:7d:82:ef:10:4a:5c:ad:7f:c1:56:a9:0a:5b:a6:b4:59:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:11 2022 GMT
Not After : Sep 25 10:00:11 2023 GMT
Subject: CN=410A6A4531FBE9149338DC6B46B6F346D748E7DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d0:e7:c4:08:3d:8f:88:75:ca:94:6a:e5:e4:
17:9d:ab:ae:ff:d8:8f:ba:06:b2:5f:ca:e4:9b:7b:
48:1b:0f:01:ee:ac:53:c6:45:73:6a:25:8a:af:b9:
68:f4:67:cb:04:c7:eb:c1:93:9c:13:01:9b:02:8c:
17:f5:e5:03:56:87:74:6f:be:69:dc:21:f4:00:1c:
79:d0:af:a1:1a:19:58:d8:bd:7a:0a:68:b7:1d:da:
2c:9a:bd:80:ed:0e:ae:54:73:1a:fc:78:8c:66:79:
75:4b:5f:4c:30:b9:63:dc:21:eb:4d:6d:95:82:3f:
84:4a:3c:2d:32:1b:79:03:39:b6:2f:db:83:e7:cd:
0c:8f:f0:50:84:1f:ef:e4:d2:b2:9d:96:9b:09:06:
64:d6:5a:dd:a4:8e:58:2e:db:61:ca:a2:97:cd:65:
bc:20:28:e6:5b:a0:c3:d1:df:71:cb:5c:93:2b:51:
2d:9b:8c:ad:fe:0a:9f:81:8b:99:a0:b8:ef:88:9a:
ec:ce:fc:2d:84:c8:84:a8:72:d6:ae:9e:d3:cd:19:
2a:5c:a9:90:3a:cb:9c:76:2b:55:a2:9d:50:e9:fd:
6c:91:fb:e0:b3:8a:b8:7c:09:38:e8:2d:78:64:97:
7b:9a:32:c1:fd:04:0f:57:f8:8c:8e:78:d9:91:87:
ea:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:0A:6A:45:31:FB:E9:14:93:38:DC:6B:46:B6:F3:46:D7:48:E7:DC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:261::/48
Signature Algorithm: sha256WithRSAEncryption
7b:c3:43:54:d9:9b:ad:1b:68:e5:d0:f3:ef:23:7d:24:6c:44:
22:cf:69:0a:67:15:e8:e9:3d:fa:8b:6e:71:d2:70:ce:8b:16:
06:92:b8:e0:82:b0:56:15:10:ee:62:31:1a:83:11:55:51:48:
e9:e7:b3:83:4e:1f:bd:ab:b7:56:ba:c2:cd:e1:8b:79:7e:8d:
c8:f6:72:6f:6a:40:6b:8f:a1:94:08:77:b6:5c:7b:3e:d6:61:
8c:0f:59:a4:af:e8:61:dd:4c:8d:b4:ff:ee:fb:44:82:ab:62:
1e:d7:ba:e5:d7:ea:52:7c:1d:c8:37:3d:22:0e:f9:d3:73:47:
90:15:90:1d:cd:79:05:ea:99:22:3c:06:35:79:a1:0a:77:7e:
8b:96:6e:92:81:85:47:05:2d:e8:f8:ee:cf:d7:83:45:76:39:
e8:78:85:97:ab:39:44:f9:d2:e9:41:91:86:12:6d:86:da:eb:
6b:c8:39:7b:d2:2d:3e:5e:48:33:82:20:e9:fc:9c:2e:6f:67:
c0:b4:77:d0:57:f1:29:fd:da:b2:26:e2:a6:10:f6:00:2f:a2:
36:08:84:bd:5f:7a:92:14:42:e8:63:bc:ca:84:94:b4:53:b5:
a9:23:ea:fe:3e:37:4d:fe:b3:d2:99:63:2c:92:0b:d3:9c:d1:
63:93:45:23
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUXG/ZfYLvEEpcrX/BVqkKW6a0WZUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MTFaFw0yMzA5MjUxMDAwMTFaMDMxMTAvBgNV
BAMTKDQxMEE2QTQ1MzFGQkU5MTQ5MzM4REM2QjQ2QjZGMzQ2RDc0OEU3REMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC0OfECD2PiHXKlGrl5Bedq67/
2I+6BrJfyuSbe0gbDwHurFPGRXNqJYqvuWj0Z8sEx+vBk5wTAZsCjBf15QNWh3Rv
vmncIfQAHHnQr6EaGVjYvXoKaLcd2iyavYDtDq5Ucxr8eIxmeXVLX0wwuWPcIetN
bZWCP4RKPC0yG3kDObYv24PnzQyP8FCEH+/k0rKdlpsJBmTWWt2kjlgu22HKopfN
ZbwgKOZboMPR33HLXJMrUS2bjK3+Cp+Bi5mguO+ImuzO/C2EyISoctauntPNGSpc
qZA6y5x2K1WinVDp/WyR++Czirh8CTjoLXhkl3uaMsH9BA9X+IyOeNmRh+pvAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUQQpqRTH76RSTONxrRrbzRtdI59wwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzNjMxM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
YTANBgkqhkiG9w0BAQsFAAOCAQEAe8NDVNmbrRto5dDz7yN9JGxEIs9pCmcV6Ok9
+otucdJwzosWBpK44IKwVhUQ7mIxGoMRVVFI6eezg04fvau3VrrCzeGLeX6NyPZy
b2pAa4+hlAh3tlx7PtZhjA9ZpK/oYd1MjbT/7vtEgqtiHte65dfqUnwdyDc9Ig75
03NHkBWQHc15BeqZIjwGNXmhCnd+i5ZukoGFRwUt6Pjuz9eDRXY56HiFl6s5RPnS
6UGRhhJthtrra8g5e9ItPl5IM4Ig6fycLm9nwLR30FfxKf3asibiphD2AC+iNgiE
vV96khRC6GO8yoSUtFO1qSPq/j43Tf6z0pljLJIL05zRY5NFIw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org