Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3264343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: e5ZtE32tpK1cr67uhgUE0TcOMzdsKouLfTRdYuw3tpk=
Subject key identifier: 95:53:B1:83:A0:BE:E3:1B:0B:D7:D4:12:83:69:E3:C1:A5:37:40:24
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5ADDB292E58EE55CCD84FF163B6A9426B3E62520
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:02 +0000
ROA not before: Mon 26 Sep 2022 12:55:02 +0000
ROA not after: Mon 25 Sep 2023 13:00:02 +0000
asID: 59282
IP address blocks: 2400:d680:2d4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:dd:b2:92:e5:8e:e5:5c:cd:84:ff:16:3b:6a:94:26:b3:e6:25:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:02 2022 GMT
Not After : Sep 25 13:00:02 2023 GMT
Subject: CN=9553B183A0BEE31B0BD7D4128369E3C1A5374024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:94:1e:18:68:3b:da:a0:a6:19:cd:8a:e3:5d:
be:14:41:eb:3d:7e:ea:30:d9:fa:e0:e2:2d:df:40:
e2:e0:82:8e:5e:42:c8:c0:5d:49:66:b6:49:b1:ee:
4b:b4:a8:21:1d:23:c1:c4:93:9c:a4:6d:72:60:ca:
85:e1:ab:ac:a5:40:6d:57:46:d7:97:f7:d4:d9:62:
c6:d1:7d:de:d6:51:a4:9e:80:89:23:b3:13:2c:4d:
75:9e:6f:99:83:ef:b7:ca:d6:cc:5e:6e:30:1e:f8:
c5:b9:15:be:00:06:34:34:b1:f3:15:32:45:5d:cb:
c7:2a:55:60:07:3e:a1:7c:3d:78:8c:fe:da:0d:d2:
a2:3e:56:0b:f0:5b:fb:43:b1:51:a0:c5:35:e1:ab:
66:2d:6d:69:86:ce:7d:02:49:d3:00:37:38:93:42:
8b:d5:94:0e:a9:cd:58:9e:7b:e5:18:81:9c:89:cd:
f0:70:6b:43:3e:30:6d:8f:82:b2:94:7b:d0:f8:81:
59:29:59:d1:2a:fd:5e:12:85:3a:ca:1c:b2:3b:6e:
d9:40:5b:9c:2f:ca:96:3f:d6:cd:9d:37:c2:25:66:
9b:e6:4d:79:f0:6f:e8:16:ba:aa:ff:e7:d1:5c:bb:
1f:10:a0:5d:bf:de:97:26:2c:58:90:2a:cc:99:26:
40:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:53:B1:83:A0:BE:E3:1B:0B:D7:D4:12:83:69:E3:C1:A5:37:40:24
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2d4::/48
Signature Algorithm: sha256WithRSAEncryption
7c:8d:e0:5c:54:51:e7:50:16:2f:6f:cc:73:1b:0a:ed:55:95:
f9:e5:4f:c2:7b:d3:6c:1a:d3:ae:78:35:f2:89:15:aa:43:d8:
3a:72:50:69:5c:cf:09:56:de:60:64:b1:85:07:7d:30:97:16:
aa:7f:09:3e:01:df:c7:6b:6f:76:56:c2:07:d9:cd:cd:3b:14:
23:3d:59:99:88:92:8f:20:4b:e7:1b:e8:45:32:80:ba:05:f1:
4c:4c:09:ca:8f:ad:06:52:da:8e:f6:d5:96:10:13:0a:5a:93:
30:a7:f6:f3:9d:18:86:43:69:4a:2e:7e:96:03:f0:dd:a7:30:
0e:e7:ed:f2:29:1f:4f:cd:c7:1f:e2:59:64:95:7a:7c:90:81:
28:78:c5:d6:76:b6:36:25:3f:3a:c2:8d:bb:12:1c:0f:cd:52:
ce:ec:70:4c:de:f6:9f:3e:02:03:c0:12:e4:6f:20:a4:5d:de:
e1:bb:d0:c3:68:4b:ac:23:86:3c:d4:02:b6:ec:79:ea:eb:42:
ed:a0:09:ee:0c:43:2c:e7:7e:d5:3e:f5:12:36:a7:de:a2:5b:
95:16:71:06:aa:ad:00:15:af:11:1a:cd:69:b1:26:9c:0f:f7:
7a:c8:86:a8:64:74:c5:22:d9:62:ad:c6:9a:a8:4c:8a:a0:e2:
d9:85:c6:1d
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUWt2ykuWO5VzNhP8WO2qUJrPmJSAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMjU1MDJaFw0yMzA5MjUxMzAwMDJaMDMxMTAvBgNV
BAMTKDk1NTNCMTgzQTBCRUUzMUIwQkQ3RDQxMjgzNjlFM0MxQTUzNzQwMjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7lB4YaDvaoKYZzYrjXb4UQes9
fuow2frg4i3fQOLggo5eQsjAXUlmtkmx7ku0qCEdI8HEk5ykbXJgyoXhq6ylQG1X
RteX99TZYsbRfd7WUaSegIkjsxMsTXWeb5mD77fK1sxebjAe+MW5Fb4ABjQ0sfMV
MkVdy8cqVWAHPqF8PXiM/toN0qI+VgvwW/tDsVGgxTXhq2YtbWmGzn0CSdMANziT
QovVlA6pzViee+UYgZyJzfBwa0M+MG2PgrKUe9D4gVkpWdEq/V4ShTrKHLI7btlA
W5wvypY/1s2dN8IlZpvmTXnwb+gWuqr/59Fcux8QoF2/3pcmLFiQKsyZJkDHAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUlVOxg6C+4xsL19QSg2njwaU3QCQwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzI2NDM0M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
1DANBgkqhkiG9w0BAQsFAAOCAQEAfI3gXFRR51AWL2/McxsK7VWV+eVPwnvTbBrT
rng18okVqkPYOnJQaVzPCVbeYGSxhQd9MJcWqn8JPgHfx2tvdlbCB9nNzTsUIz1Z
mYiSjyBL5xvoRTKAugXxTEwJyo+tBlLajvbVlhATClqTMKf2850YhkNpSi5+lgPw
3acwDuft8ikfT83HH+JZZJV6fJCBKHjF1na2NiU/OsKNuxIcD81SzuxwTN72nz4C
A8AS5G8gpF3e4bvQw2hLrCOGPNQCtux56utC7aAJ7gxDLOd+1T71Ejan3qJblRZx
BqqtABWvERrNabEmnA/3esiGqGR0xSLZYq3GmqhMiqDi2YXGHQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org