Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3261393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: GLC88LslZzNpYR4GXktQp8M8cfPM1h0SRkZRCkXbd9k=
Subject key identifier: 0B:1B:25:67:4B:A8:85:75:03:51:57:C3:4A:71:61:CF:54:BB:E6:53
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 42A2DF4657FF2BF5E01D9FA69212CBDD60EA0035
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:11 +0000
ROA not before: Mon 26 Sep 2022 12:55:11 +0000
ROA not after: Mon 25 Sep 2023 13:00:11 +0000
asID: 59282
IP address blocks: 2400:d680:2a9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:a2:df:46:57:ff:2b:f5:e0:1d:9f:a6:92:12:cb:dd:60:ea:00:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:11 2022 GMT
Not After : Sep 25 13:00:11 2023 GMT
Subject: CN=0B1B25674BA88575035157C34A7161CF54BBE653
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:25:62:1e:29:b4:53:b8:e8:62:b7:97:8a:9d:
8f:f0:d9:ad:52:9c:7e:d5:95:47:c6:09:e9:4b:4d:
ee:50:ad:c3:ba:e2:a0:c8:14:f5:df:35:11:1e:26:
dd:b8:69:81:81:44:1f:f3:ea:b6:4c:9b:bd:43:78:
92:7c:9f:3e:6d:0d:c1:09:c7:09:92:87:7c:be:23:
dc:e9:6e:0a:41:dc:91:a9:9e:1b:f3:29:1d:fd:a5:
00:4f:90:95:80:61:2b:88:02:01:ca:ba:9f:6b:5f:
0e:9f:f0:77:5b:54:85:fb:63:ed:09:5e:5b:ee:8d:
65:ca:48:54:b8:35:79:6c:06:3f:85:a0:ca:7c:e1:
ed:4a:3c:ae:08:32:85:23:cf:10:2d:c8:e1:27:60:
28:73:de:b2:21:5f:2b:c6:14:87:52:53:10:09:7e:
8b:f9:cb:51:83:2b:e4:cc:f0:b9:a2:82:ef:fe:6b:
29:0a:d9:b5:3a:2c:69:01:7c:ec:2b:e1:64:1d:68:
66:73:e8:a7:49:71:66:cf:f5:d5:8a:b7:c6:95:8e:
c1:95:db:57:96:2f:e7:5a:1e:f9:2d:ab:01:8e:17:
d0:03:d3:41:9c:97:49:4d:d1:b0:50:03:26:6d:45:
8e:c1:a2:69:89:e0:4e:c1:af:79:77:e7:89:2c:bd:
64:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:1B:25:67:4B:A8:85:75:03:51:57:C3:4A:71:61:CF:54:BB:E6:53
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2a9::/48
Signature Algorithm: sha256WithRSAEncryption
92:26:d9:a3:6a:5e:df:ba:57:cb:e2:18:2e:35:2e:c6:31:9b:
64:db:b4:db:5b:5c:92:17:3c:4d:ab:4f:87:bd:c2:81:14:31:
64:20:5d:80:50:39:6f:cb:8d:bc:4f:a8:78:da:cd:3b:87:ba:
c3:9b:84:08:70:91:06:35:3a:9e:a6:4a:b0:86:5c:fd:ab:0d:
5e:9d:d6:66:ab:6d:e6:64:9b:e6:b9:ed:17:2a:ee:dd:08:60:
34:d8:bd:d6:16:ad:cb:a4:98:c2:02:55:0d:03:1a:05:3a:ca:
98:56:f5:6d:a5:ed:ba:b8:c8:df:a4:a5:7c:76:e9:47:98:f1:
5b:1d:31:51:0d:eb:c9:0f:7f:ff:22:d3:a7:e1:63:f8:28:af:
7d:a5:17:21:9e:8d:4a:14:44:95:b6:19:43:39:27:b9:63:24:
45:0b:0b:1d:8e:48:96:54:6a:ea:0e:5a:6d:f9:7a:c7:57:3c:
43:af:f0:af:ef:59:64:84:37:7c:e4:50:d8:e3:cc:b9:77:54:
f6:96:21:ea:31:dc:58:8f:3e:71:bc:6d:80:78:6d:88:84:cf:
8d:0e:2a:9e:14:a7:ed:cb:34:dc:48:83:c2:13:5f:b2:35:b1:
41:79:c1:0f:31:ff:df:8a:74:6f:6a:54:a2:c8:02:f6:9c:de:
24:05:f2:e9
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUQqLfRlf/K/XgHZ+mkhLL3WDqADUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMjU1MTFaFw0yMzA5MjUxMzAwMTFaMDMxMTAvBgNV
BAMTKDBCMUIyNTY3NEJBODg1NzUwMzUxNTdDMzRBNzE2MUNGNTRCQkU2NTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqJWIeKbRTuOhit5eKnY/w2a1S
nH7VlUfGCelLTe5QrcO64qDIFPXfNREeJt24aYGBRB/z6rZMm71DeJJ8nz5tDcEJ
xwmSh3y+I9zpbgpB3JGpnhvzKR39pQBPkJWAYSuIAgHKup9rXw6f8HdbVIX7Y+0J
XlvujWXKSFS4NXlsBj+FoMp84e1KPK4IMoUjzxAtyOEnYChz3rIhXyvGFIdSUxAJ
fov5y1GDK+TM8Lmigu/+aykK2bU6LGkBfOwr4WQdaGZz6KdJcWbP9dWKt8aVjsGV
21eWL+daHvktqwGOF9AD00Gcl0lN0bBQAyZtRY7BommJ4E7Br3l354ksvWRDAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUCxslZ0uohXUDUVfDSnFhz1S75lMwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzI2MTM5M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
qTANBgkqhkiG9w0BAQsFAAOCAQEAkibZo2pe37pXy+IYLjUuxjGbZNu021tckhc8
TatPh73CgRQxZCBdgFA5b8uNvE+oeNrNO4e6w5uECHCRBjU6nqZKsIZc/asNXp3W
Zqtt5mSb5rntFyru3QhgNNi91haty6SYwgJVDQMaBTrKmFb1baXturjI36SlfHbp
R5jxWx0xUQ3ryQ9//yLTp+Fj+CivfaUXIZ6NShRElbYZQzknuWMkRQsLHY5IllRq
6g5abfl6x1c8Q6/wr+9ZZIQ3fORQ2OPMuXdU9pYh6jHcWI8+cbxtgHhtiITPjQ4q
nhSn7cs03EiDwhNfsjWxQXnBDzH/34p0b2pUosgC9pzeJAXy6Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org