Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3238373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: G72Ii+vCbAjLM5H7gPxyCuO1bwAbOiMNwN14XK1fZjA=
Subject key identifier: AC:F9:05:E6:63:93:DB:2B:BF:66:9B:6C:EA:E8:4D:C8:5E:FD:36:97
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 40B255237C3630ABB9134E0FC706D97CCB6775B5
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:19 +0000
ROA not before: Mon 26 Sep 2022 12:55:19 +0000
ROA not after: Mon 25 Sep 2023 13:00:19 +0000
asID: 59282
IP address blocks: 2400:d680:287::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:b2:55:23:7c:36:30:ab:b9:13:4e:0f:c7:06:d9:7c:cb:67:75:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:19 2022 GMT
Not After : Sep 25 13:00:19 2023 GMT
Subject: CN=ACF905E66393DB2BBF669B6CEAE84DC85EFD3697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:11:0e:03:13:f5:ee:9f:96:a2:a5:09:fb:b4:
dd:7d:02:da:b5:b7:75:b3:24:bb:02:e2:a8:f0:0f:
04:0c:b0:f8:81:d8:82:1b:57:d5:ef:80:15:db:da:
21:0f:8b:8c:58:cb:b1:ff:a4:75:22:f3:ba:11:0e:
b0:69:e2:dc:13:34:a3:2a:d8:15:60:18:09:a4:92:
1a:a3:75:ef:e9:27:79:50:56:ae:76:6c:19:db:11:
00:c5:e5:3d:9f:bb:c0:86:7a:5b:74:70:58:85:3a:
7b:5b:d2:27:1c:51:ae:e1:99:90:93:c2:05:59:2e:
cf:60:a7:26:20:74:4c:52:ac:df:7f:1d:e3:36:d3:
f8:40:71:0e:4f:04:13:1c:df:24:b4:9c:b4:57:28:
66:de:ba:60:11:21:54:08:c9:86:da:41:07:e6:bf:
d6:71:62:76:85:bf:f9:59:c7:b9:d7:77:80:6e:5b:
7e:9b:c6:5d:ad:ee:5e:ad:48:3c:8f:20:d7:cb:23:
43:18:27:e5:02:64:5a:24:3a:52:1a:fd:07:76:89:
c9:45:d2:d5:bb:bb:c9:6b:b9:7a:fc:ba:78:9b:4f:
41:e8:25:df:d3:26:a4:f3:fc:63:4a:34:24:53:a2:
8b:aa:02:bf:20:b2:14:fd:8d:7e:09:b6:ad:86:9f:
06:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F9:05:E6:63:93:DB:2B:BF:66:9B:6C:EA:E8:4D:C8:5E:FD:36:97
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:287::/48
Signature Algorithm: sha256WithRSAEncryption
33:3d:b5:f1:ff:f4:bd:4a:17:07:b3:54:16:34:67:3f:1e:36:
e5:2c:ff:a8:7c:6a:0a:c3:01:d7:06:98:34:1f:6f:87:1f:60:
ec:5d:4e:78:31:2c:dd:7c:a1:c6:9a:e6:10:8f:e3:5c:c6:19:
e0:6f:11:ce:49:ed:0e:c1:68:33:92:3b:5a:18:c8:0b:bb:ab:
9c:77:32:30:e1:b8:7b:0d:00:e0:1f:d6:4f:9f:56:11:89:24:
04:c1:b5:fc:d1:a0:28:78:59:08:a8:80:a6:df:00:69:86:7b:
19:ba:d7:2c:3e:90:24:a8:60:e1:c1:0d:9a:0b:8b:bc:69:8a:
f4:da:88:b5:fa:b2:4e:86:0e:55:a3:8f:27:fc:95:b4:01:37:
3d:c9:0c:64:f1:81:78:36:87:b8:d2:b3:92:ee:31:14:c9:89:
51:ff:b4:04:2a:d4:c1:78:87:2f:3b:d1:41:71:9a:07:9e:37:
4e:aa:d5:fe:27:eb:22:b5:dc:ed:73:10:e6:50:37:ab:2f:53:
c5:ef:44:de:31:72:be:25:7d:d9:17:13:06:fe:05:e6:dc:83:
19:a6:af:96:54:d5:6b:ba:a7:a6:eb:79:47:92:0e:a0:66:db:
1d:bc:c9:a9:7a:6a:d5:c4:99:e9:82:e7:a1:4a:fd:0f:2b:c6:
3b:d8:ca:ba
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUQLJVI3w2MKu5E04PxwbZfMtndbUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMjU1MTlaFw0yMzA5MjUxMzAwMTlaMDMxMTAvBgNV
BAMTKEFDRjkwNUU2NjM5M0RCMkJCRjY2OUI2Q0VBRTg0REM4NUVGRDM2OTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjEQ4DE/Xun5aipQn7tN19Atq1
t3WzJLsC4qjwDwQMsPiB2IIbV9XvgBXb2iEPi4xYy7H/pHUi87oRDrBp4twTNKMq
2BVgGAmkkhqjde/pJ3lQVq52bBnbEQDF5T2fu8CGelt0cFiFOntb0iccUa7hmZCT
wgVZLs9gpyYgdExSrN9/HeM20/hAcQ5PBBMc3yS0nLRXKGbeumARIVQIyYbaQQfm
v9ZxYnaFv/lZx7nXd4BuW36bxl2t7l6tSDyPINfLI0MYJ+UCZFokOlIa/Qd2iclF
0tW7u8lruXr8unibT0HoJd/TJqTz/GNKNCRToouqAr8gshT9jX4Jtq2GnwZnAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUrPkF5mOT2yu/Zpts6uhNyF79NpcwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzODM3M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
hzANBgkqhkiG9w0BAQsFAAOCAQEAMz218f/0vUoXB7NUFjRnPx425Sz/qHxqCsMB
1waYNB9vhx9g7F1OeDEs3XyhxprmEI/jXMYZ4G8RzkntDsFoM5I7WhjIC7urnHcy
MOG4ew0A4B/WT59WEYkkBMG1/NGgKHhZCKiApt8AaYZ7GbrXLD6QJKhg4cENmguL
vGmK9NqItfqyToYOVaOPJ/yVtAE3PckMZPGBeDaHuNKzku4xFMmJUf+0BCrUwXiH
LzvRQXGaB543TqrV/ifrIrXc7XMQ5lA3qy9Txe9E3jFyviV92RcTBv4F5tyDGaav
llTVa7qnput5R5IOoGbbHbzJqXpq1cSZ6YLnoUr9DyvGO9jKug==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org