Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3239653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: jDGTNQsyoIPUsZFJ3lyUHl4hCevdqnyuvWMUfvnBG0w=
Subject key identifier: E2:A6:C5:1F:B5:7A:D6:41:DF:B5:38:CD:C2:07:1A:14:D9:C7:6B:BB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 45DB5850BEAA9121CFF20081C91FF138C782D710
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:14 +0000
ROA not before: Mon 26 Sep 2022 12:55:14 +0000
ROA not after: Mon 25 Sep 2023 13:00:14 +0000
asID: 59282
IP address blocks: 2400:d680:29e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:db:58:50:be:aa:91:21:cf:f2:00:81:c9:1f:f1:38:c7:82:d7:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:14 2022 GMT
Not After : Sep 25 13:00:14 2023 GMT
Subject: CN=E2A6C51FB57AD641DFB538CDC2071A14D9C76BBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:05:f1:2e:c0:a8:a2:1d:73:70:de:b4:b6:67:
37:76:04:e2:0a:0a:51:6c:04:21:2d:6a:75:2d:2b:
76:e2:b6:6e:47:0c:dc:12:ac:a1:9c:13:dd:93:27:
ce:e9:43:b4:71:ec:f4:7a:7b:e0:77:ce:d6:8b:bd:
2e:99:89:f2:c9:af:df:a7:06:0d:cd:d4:20:ac:b2:
9f:7a:7f:5e:68:ff:79:f4:6f:bb:8d:18:a2:5c:a0:
72:6f:24:7d:8f:96:bb:44:f2:4d:e0:c8:f3:43:fe:
24:ea:19:33:66:07:43:aa:e7:e9:21:bd:89:ea:9f:
fc:97:a7:f2:97:4d:c4:4d:0f:85:80:c3:d8:af:77:
da:d8:54:83:b1:24:36:fc:91:ee:23:13:f4:f2:ef:
83:97:f0:79:e3:17:d5:7b:3b:ce:4e:68:a4:01:50:
75:78:6d:d9:f3:c9:08:d0:e5:ad:a0:81:7f:5c:17:
aa:56:72:74:4f:0e:3f:32:a9:f6:df:10:04:71:79:
dc:e1:f6:79:20:f0:50:d4:f7:e2:a7:fe:7c:ac:c6:
5d:a2:a3:dd:79:b1:ba:f4:7f:d2:d1:4c:2f:94:42:
34:a8:a8:ee:9d:c3:50:95:eb:7a:4c:95:a5:37:15:
9b:8f:7b:dc:30:a9:76:fd:64:d8:9d:9e:51:84:e7:
9f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:A6:C5:1F:B5:7A:D6:41:DF:B5:38:CD:C2:07:1A:14:D9:C7:6B:BB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3239653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:29e::/48
Signature Algorithm: sha256WithRSAEncryption
6d:6b:55:59:7e:36:55:d9:14:8d:b7:4a:28:81:74:6c:eb:06:
1f:7e:50:93:c1:7a:29:56:80:63:0e:6d:d3:7b:af:18:bc:bc:
1a:05:9e:39:59:45:eb:4f:df:5f:54:8d:62:a7:40:1d:fe:7d:
dd:1d:ed:95:60:81:db:06:82:df:d3:18:d0:35:57:8b:12:31:
61:72:bf:0d:8f:85:4b:e2:fb:c9:7f:56:25:2f:1a:f2:ea:f3:
13:c1:a9:37:ef:64:e4:0e:b6:45:82:9f:af:5c:a0:6c:8d:3b:
ce:96:c1:a0:9d:1c:0b:e5:28:19:71:eb:6b:02:c5:6e:37:f1:
44:18:73:6a:0e:f0:d4:5b:6f:d9:41:c2:57:db:2c:9f:cd:f8:
88:2f:d9:0d:58:d5:ce:22:2a:00:2d:16:09:28:0f:8f:f8:bd:
1c:1f:d4:69:e3:1c:48:2d:f3:22:d1:ff:08:16:bc:25:5e:42:
6e:20:43:da:79:80:b7:89:f5:af:66:b9:b0:92:b0:54:33:9f:
90:d3:26:45:bf:c6:0a:38:7d:6e:d3:ca:77:5f:1d:5e:d9:8a:
88:ab:e0:27:ad:fc:12:b4:25:e4:fb:0a:83:40:c2:3e:b2:fa:
4c:9e:95:77:37:f6:d5:d9:05:2c:f2:89:ca:e1:98:e0:ea:1b:
80:d8:01:29
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIURdtYUL6qkSHP8gCByR/xOMeC1xAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMjU1MTRaFw0yMzA5MjUxMzAwMTRaMDMxMTAvBgNV
BAMTKEUyQTZDNTFGQjU3QUQ2NDFERkI1MzhDREMyMDcxQTE0RDlDNzZCQkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9BfEuwKiiHXNw3rS2Zzd2BOIK
ClFsBCEtanUtK3bitm5HDNwSrKGcE92TJ87pQ7Rx7PR6e+B3ztaLvS6ZifLJr9+n
Bg3N1CCssp96f15o/3n0b7uNGKJcoHJvJH2PlrtE8k3gyPND/iTqGTNmB0Oq5+kh
vYnqn/yXp/KXTcRND4WAw9ivd9rYVIOxJDb8ke4jE/Ty74OX8HnjF9V7O85OaKQB
UHV4bdnzyQjQ5a2ggX9cF6pWcnRPDj8yqfbfEARxedzh9nkg8FDU9+Kn/nysxl2i
o915sbr0f9LRTC+UQjSoqO6dw1CV63pMlaU3FZuPe9wwqXb9ZNidnlGE55+9AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU4qbFH7V61kHftTjNwgcaFNnHa7swHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzOTY1M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
njANBgkqhkiG9w0BAQsFAAOCAQEAbWtVWX42VdkUjbdKKIF0bOsGH35Qk8F6KVaA
Yw5t03uvGLy8GgWeOVlF60/fX1SNYqdAHf593R3tlWCB2waC39MY0DVXixIxYXK/
DY+FS+L7yX9WJS8a8urzE8GpN+9k5A62RYKfr1ygbI07zpbBoJ0cC+UoGXHrawLF
bjfxRBhzag7w1Ftv2UHCV9ssn834iC/ZDVjVziIqAC0WCSgPj/i9HB/UaeMcSC3z
ItH/CBa8JV5CbiBD2nmAt4n1r2a5sJKwVDOfkNMmRb/GCjh9btPKd18dXtmKiKvg
J638ErQl5PsKg0DCPrL6TJ6Vdzf21dkFLPKJyuGY4OobgNgBKQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org