Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3237613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: GJE2ogmVsujwAbQQ0rCCfJ+mMTwqD6ouXN7UwW/Zgws=
Subject key identifier: 34:DD:40:21:80:F8:9D:1E:AC:66:BA:EA:B5:04:FF:31:76:C6:04:6E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 513BAEF3AB86FF066C2E0E63EF84D1965CE1ECDE
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:02 +0000
ROA not before: Mon 26 Sep 2022 12:55:02 +0000
ROA not after: Mon 25 Sep 2023 13:00:02 +0000
asID: 59282
IP address blocks: 2400:d680:27a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:3b:ae:f3:ab:86:ff:06:6c:2e:0e:63:ef:84:d1:96:5c:e1:ec:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:02 2022 GMT
Not After : Sep 25 13:00:02 2023 GMT
Subject: CN=34DD402180F89D1EAC66BAEAB504FF3176C6046E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c9:8b:b5:67:95:19:5a:f1:e8:37:42:8a:e3:
b1:73:8d:c7:f7:38:b8:9b:56:fa:17:54:11:db:ad:
59:3c:ca:f4:03:ba:f3:a3:47:fb:7b:14:8e:a8:01:
4d:82:f3:46:49:43:89:6b:05:db:a5:2c:81:1e:1d:
9c:20:90:0e:e6:c6:e8:b4:ea:d5:41:68:a3:62:80:
71:b5:4e:1a:a9:72:84:5b:11:1a:83:d4:2d:0d:78:
15:91:7c:e4:c8:bf:65:ff:4f:a2:28:ab:0d:7d:97:
98:0a:28:fc:56:c5:4f:0c:0c:83:54:cb:4a:9c:c5:
a6:59:24:7b:ca:70:d3:d3:1e:42:0f:31:1c:1a:1a:
1a:ef:12:9f:5f:f8:f8:32:d0:97:64:3d:78:4d:75:
62:87:2c:a2:12:ce:f3:6a:fb:6e:3c:e7:26:c2:00:
2e:53:70:f7:2a:d5:a6:1e:b3:f5:e1:c3:9e:4f:9d:
98:47:d1:5d:2e:90:13:da:dc:ae:46:96:c0:b3:24:
70:e5:96:5c:d0:ff:16:a9:d7:ce:2c:5a:50:11:70:
d0:37:e6:93:be:fb:63:fc:fe:4d:9a:e2:58:36:b2:
ce:6a:ac:b0:60:20:55:12:fb:4c:a8:35:8d:fb:03:
f4:3a:11:65:c5:23:41:07:41:17:4a:ea:97:9d:c6:
38:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:DD:40:21:80:F8:9D:1E:AC:66:BA:EA:B5:04:FF:31:76:C6:04:6E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3237613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:27a::/48
Signature Algorithm: sha256WithRSAEncryption
25:b0:06:0b:90:a7:67:5f:85:a3:1b:9c:10:bc:bf:b8:d7:00:
7f:84:6b:57:bf:8d:e9:54:7d:37:d8:5c:62:37:48:19:69:b6:
65:cb:b7:89:a7:61:bf:07:28:c9:e4:94:bf:00:4a:d9:e3:6b:
db:76:f0:81:c5:af:f7:c4:df:b2:40:b3:dc:b7:1b:30:86:03:
7f:8f:43:b0:01:15:a7:fd:26:93:b4:2b:40:5f:98:c0:85:10:
3e:90:6d:05:7a:08:0e:e0:9a:34:8a:28:50:8c:77:68:ac:6c:
cc:bf:09:9d:2a:e9:59:6e:52:26:36:cf:95:53:f1:6b:42:51:
91:7d:9c:6b:bd:da:a7:d1:2e:0e:ad:e0:be:5e:ed:04:ef:a6:
18:fc:bb:1d:5d:a5:83:22:82:16:9f:96:7b:d3:bb:88:6b:ba:
13:bf:d3:58:b1:6b:0c:01:6d:7f:46:8c:b8:88:4a:02:ca:f8:
57:10:cd:a1:31:52:0c:c9:a2:e3:ca:cf:c7:d8:d6:71:86:2c:
60:cc:47:94:63:0c:a4:31:5b:b6:84:6c:dc:15:c7:94:02:c0:
8a:ef:85:24:64:50:03:ed:11:91:a1:e3:0d:6c:dc:d7:2b:f5:
95:83:2a:f7:b4:75:ce:e1:0f:b6:22:30:38:0e:7c:9e:42:75:
e1:4c:ed:32
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUUTuu86uG/wZsLg5j74TRllzh7N4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMjU1MDJaFw0yMzA5MjUxMzAwMDJaMDMxMTAvBgNV
BAMTKDM0REQ0MDIxODBGODlEMUVBQzY2QkFFQUI1MDRGRjMxNzZDNjA0NkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKyYu1Z5UZWvHoN0KK47Fzjcf3
OLibVvoXVBHbrVk8yvQDuvOjR/t7FI6oAU2C80ZJQ4lrBdulLIEeHZwgkA7mxui0
6tVBaKNigHG1ThqpcoRbERqD1C0NeBWRfOTIv2X/T6Ioqw19l5gKKPxWxU8MDINU
y0qcxaZZJHvKcNPTHkIPMRwaGhrvEp9f+Pgy0JdkPXhNdWKHLKISzvNq+2485ybC
AC5TcPcq1aYes/Xhw55PnZhH0V0ukBPa3K5GlsCzJHDlllzQ/xap184sWlARcNA3
5pO++2P8/k2a4lg2ss5qrLBgIFUS+0yoNY37A/Q6EWXFI0EHQRdK6pedxjj9AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUNN1AIYD4nR6sZrrqtQT/MXbGBG4wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzNzYxM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
ejANBgkqhkiG9w0BAQsFAAOCAQEAJbAGC5CnZ1+FoxucELy/uNcAf4RrV7+N6VR9
N9hcYjdIGWm2Zcu3iadhvwcoyeSUvwBK2eNr23bwgcWv98TfskCz3LcbMIYDf49D
sAEVp/0mk7QrQF+YwIUQPpBtBXoIDuCaNIooUIx3aKxszL8JnSrpWW5SJjbPlVPx
a0JRkX2ca73ap9EuDq3gvl7tBO+mGPy7HV2lgyKCFp+We9O7iGu6E7/TWLFrDAFt
f0aMuIhKAsr4VxDNoTFSDMmi48rPx9jWcYYsYMxHlGMMpDFbtoRs3BXHlALAiu+F
JGRQA+0RkaHjDWzc1yv1lYMq97R1zuEPtiIwOA58nkJ14UztMg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org