Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3238653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: MfPWVqQYVW6RH808saekTo/dAscYyI7g3TuoH7Aoiis=
Subject key identifier: 28:F3:B6:81:E6:5D:2C:C3:C4:1B:2C:99:A9:26:52:1D:F0:1D:38:F7
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3455CD84628A8E94BC7FED63A29C6097A63E06B9
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:21 +0000
ROA not before: Mon 26 Sep 2022 12:55:21 +0000
ROA not after: Mon 25 Sep 2023 13:00:21 +0000
asID: 59282
IP address blocks: 2400:d680:28e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:55:cd:84:62:8a:8e:94:bc:7f:ed:63:a2:9c:60:97:a6:3e:06:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:21 2022 GMT
Not After : Sep 25 13:00:21 2023 GMT
Subject: CN=28F3B681E65D2CC3C41B2C99A926521DF01D38F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:41:31:e9:4d:3c:f4:d6:21:ec:54:f4:45:c0:
ef:c6:51:69:fb:7f:02:71:c6:d3:64:39:42:19:0d:
37:e4:a4:f3:d2:f5:c1:ad:ea:0a:a6:fa:47:2f:96:
c9:a5:a1:e2:ee:be:bb:6b:9b:55:30:0a:73:78:cb:
bf:9d:76:88:d9:aa:3a:8a:f1:41:a3:80:fb:ae:e1:
3e:24:57:ef:48:3b:e3:3b:88:fa:4f:54:90:df:f5:
8a:ba:78:79:d3:93:eb:4c:84:17:cc:3a:b8:7b:9e:
b5:3d:64:be:aa:ea:34:b2:ab:7e:f6:18:98:dd:fe:
31:5d:28:18:59:e5:45:8d:15:d2:5a:1c:50:e2:f7:
a9:15:90:81:3e:0f:d0:47:13:b5:21:f5:e6:9d:82:
3c:2b:c0:6e:f9:0d:7f:c5:b0:74:3f:bc:13:10:d2:
24:b3:81:e9:b3:c8:35:a4:9c:2c:f9:44:26:53:00:
e2:1d:7a:89:d2:71:30:4b:fd:34:74:18:57:05:13:
58:3c:dd:81:0e:24:f0:ea:8b:19:78:1c:0e:03:a8:
0c:24:29:2f:8c:b2:e9:79:55:d8:23:0a:a8:42:29:
0d:06:bd:ed:1e:a9:54:4c:d8:83:92:e5:3d:7e:60:
d2:69:b5:15:bf:41:35:f1:49:f9:03:db:33:f3:08:
09:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:F3:B6:81:E6:5D:2C:C3:C4:1B:2C:99:A9:26:52:1D:F0:1D:38:F7
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3238653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:28e::/48
Signature Algorithm: sha256WithRSAEncryption
31:e0:6c:91:37:ea:dd:b5:f7:b8:fc:27:b3:00:49:2b:77:ca:
c0:a4:62:46:ea:42:6c:aa:85:a9:3d:bd:a2:08:fe:1d:af:6d:
c0:4f:46:7d:67:2e:71:ee:19:08:a1:a6:1c:c6:c8:0c:f9:6b:
f2:ee:75:92:5f:79:43:15:13:e7:e0:5f:6f:65:bd:46:20:34:
fe:e6:ba:6c:4c:2e:29:9a:3b:58:34:2a:d1:0f:12:a9:b4:43:
8f:7f:ad:f8:2c:c9:56:96:39:cc:ec:8b:43:fd:02:a7:7d:95:
f4:34:e6:0f:cf:98:2f:3f:c4:d0:22:e5:06:c5:6c:f6:4f:70:
c9:cb:20:e7:11:a6:2c:0d:c4:9a:5d:ec:64:cd:18:5b:fc:f3:
61:2d:02:54:de:41:03:ad:8b:69:1e:95:34:2e:ec:2e:a3:eb:
6f:c8:d5:b6:3f:9d:cc:56:12:29:e9:cb:3f:c2:02:ca:b3:86:
dc:f6:4f:48:62:ec:f1:e8:f2:dc:10:8c:a3:4c:b6:99:20:e3:
8f:1b:d8:e5:df:c8:c7:10:c2:fa:26:9e:44:46:9b:47:c0:96:
53:f7:93:ae:9e:5f:54:a2:88:5c:83:5b:0a:e3:25:b7:1c:e9:
3c:9c:4d:74:7f:e2:7b:2e:af:d9:3d:f4:8e:3b:6a:be:e0:a9:
8b:9d:eb:ed
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUNFXNhGKKjpS8f+1jopxgl6Y+BrkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMjU1MjFaFw0yMzA5MjUxMzAwMjFaMDMxMTAvBgNV
BAMTKDI4RjNCNjgxRTY1RDJDQzNDNDFCMkM5OUE5MjY1MjFERjAxRDM4RjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD3QTHpTTz01iHsVPRFwO/GUWn7
fwJxxtNkOUIZDTfkpPPS9cGt6gqm+kcvlsmloeLuvrtrm1UwCnN4y7+ddojZqjqK
8UGjgPuu4T4kV+9IO+M7iPpPVJDf9Yq6eHnTk+tMhBfMOrh7nrU9ZL6q6jSyq372
GJjd/jFdKBhZ5UWNFdJaHFDi96kVkIE+D9BHE7Uh9eadgjwrwG75DX/FsHQ/vBMQ
0iSzgemzyDWknCz5RCZTAOIdeonScTBL/TR0GFcFE1g83YEOJPDqixl4HA4DqAwk
KS+Msul5VdgjCqhCKQ0Gve0eqVRM2IOS5T1+YNJptRW/QTXxSfkD2zPzCAnlAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUKPO2geZdLMPEGyyZqSZSHfAdOPcwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzODY1M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
jjANBgkqhkiG9w0BAQsFAAOCAQEAMeBskTfq3bX3uPwnswBJK3fKwKRiRupCbKqF
qT29ogj+Ha9twE9GfWcuce4ZCKGmHMbIDPlr8u51kl95QxUT5+Bfb2W9RiA0/ua6
bEwuKZo7WDQq0Q8SqbRDj3+t+CzJVpY5zOyLQ/0Cp32V9DTmD8+YLz/E0CLlBsVs
9k9wycsg5xGmLA3Eml3sZM0YW/zzYS0CVN5BA62LaR6VNC7sLqPrb8jVtj+dzFYS
KenLP8ICyrOG3PZPSGLs8ejy3BCMo0y2mSDjjxvY5d/IxxDC+iaeREabR8CWU/eT
rp5fVKKIXINbCuMltxzpPJxNdH/iey6v2T30jjtqvuCpi53r7Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org