Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3264363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: dUxmS0CkqjgCbkfPEuw/WSuzOeI3wPGK1pps/aeJfhw=
Subject key identifier: 44:ED:8B:44:D0:B6:1E:0A:E3:69:BF:09:3A:AE:89:0E:80:42:70:C8
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 62420AE93E81A165C49E03BC928ACE9B7BC68575
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:18 +0000
ROA not before: Mon 26 Sep 2022 12:55:18 +0000
ROA not after: Mon 25 Sep 2023 13:00:18 +0000
asID: 59282
IP address blocks: 2400:d680:2d6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:42:0a:e9:3e:81:a1:65:c4:9e:03:bc:92:8a:ce:9b:7b:c6:85:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:18 2022 GMT
Not After : Sep 25 13:00:18 2023 GMT
Subject: CN=44ED8B44D0B61E0AE369BF093AAE890E804270C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:4a:43:d7:ca:ba:bd:22:56:c4:4c:86:84:24:
a1:f4:5a:31:af:fa:59:0c:6d:64:d8:69:5b:b6:8d:
87:9f:86:99:a7:9f:4b:d6:73:1d:51:d5:6f:d1:fd:
db:6b:8a:c3:65:07:41:68:87:42:5f:4e:87:f9:80:
fd:cf:42:cc:4c:aa:6e:aa:33:1f:ff:13:48:6e:88:
34:8e:bf:cf:e9:67:fa:fa:8f:31:7a:12:65:a4:0a:
f2:02:03:5f:d6:9d:f0:55:da:03:71:56:ef:07:6a:
08:1a:d4:14:98:54:0b:ac:9e:66:12:5a:6c:b5:bd:
82:ec:8f:59:65:ae:f5:0c:2d:05:b6:76:79:1a:e9:
cd:a9:b0:eb:15:85:f4:e2:e8:21:68:0d:a5:21:56:
b2:e7:bb:5c:7a:dc:68:86:6e:44:a8:e7:04:f2:99:
5a:dd:c7:72:b2:2e:fe:0c:7d:cb:18:aa:cc:d9:8a:
f0:bf:59:39:0c:c5:1a:b6:00:d3:4e:9d:b0:f1:7f:
90:03:42:45:ce:56:be:ef:ff:4b:70:2c:ef:e7:1d:
dd:56:54:dc:f8:db:a4:35:50:34:66:c4:5d:5f:52:
78:22:8d:0f:f5:ef:d6:ea:b8:d1:42:f4:60:83:18:
dd:0d:aa:5b:10:84:ff:a5:de:c8:06:9e:04:e1:7d:
0f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:ED:8B:44:D0:B6:1E:0A:E3:69:BF:09:3A:AE:89:0E:80:42:70:C8
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3264363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2d6::/48
Signature Algorithm: sha256WithRSAEncryption
66:56:7b:e6:ba:21:25:66:34:3b:27:ea:eb:10:71:e0:ce:b5:
56:ab:b9:18:d5:ac:5a:06:69:b4:bb:9e:28:18:e5:0c:7d:b5:
07:62:db:4e:32:18:ee:78:41:4f:c9:9f:ec:ba:b7:96:a9:a3:
10:3a:30:02:3d:68:c7:bd:39:55:de:77:dc:3c:b7:31:82:b8:
bf:7b:91:4a:f6:c3:fe:8e:4a:e0:18:f9:e5:ff:ab:a6:43:4f:
f1:a9:1b:40:89:d6:c2:df:f7:e9:18:40:3d:bd:1f:a8:16:cd:
36:38:68:91:a4:47:1a:37:ef:16:9b:3e:e5:90:97:b4:98:66:
3a:4a:d9:1b:a4:9f:7d:dc:6d:2e:b3:de:0d:7f:51:a9:04:04:
e1:ae:9e:2a:19:a7:92:a2:fe:d0:4c:d7:2c:76:00:d2:4c:93:
e5:98:23:49:ee:4a:ec:12:76:c6:d5:96:ac:a8:3a:6a:58:ba:
8b:c5:63:e8:b0:0f:da:7b:a5:85:39:e7:1f:e5:6a:ac:2e:6c:
d0:f0:93:34:43:f7:7f:78:1f:66:23:f7:ee:3f:9c:b9:4b:1f:
f3:d5:2e:97:3a:4b:36:c4:68:a0:b2:46:e3:57:12:a9:f6:05:
bd:7c:b5:20:7f:5a:80:c7:8c:7a:b0:95:c6:16:79:9f:c1:1f:
fa:63:0d:06
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUYkIK6T6BoWXEngO8korOm3vGhXUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMjU1MThaFw0yMzA5MjUxMzAwMThaMDMxMTAvBgNV
BAMTKDQ0RUQ4QjQ0RDBCNjFFMEFFMzY5QkYwOTNBQUU4OTBFODA0MjcwQzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzSkPXyrq9IlbETIaEJKH0WjGv
+lkMbWTYaVu2jYefhpmnn0vWcx1R1W/R/dtrisNlB0Foh0JfTof5gP3PQsxMqm6q
Mx//E0huiDSOv8/pZ/r6jzF6EmWkCvICA1/WnfBV2gNxVu8Hagga1BSYVAusnmYS
Wmy1vYLsj1llrvUMLQW2dnka6c2psOsVhfTi6CFoDaUhVrLnu1x63GiGbkSo5wTy
mVrdx3KyLv4MfcsYqszZivC/WTkMxRq2ANNOnbDxf5ADQkXOVr7v/0twLO/nHd1W
VNz426Q1UDRmxF1fUngijQ/179bquNFC9GCDGN0NqlsQhP+l3sgGngThfQ8XAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQURO2LRNC2Hgrjab8JOq6JDoBCcMgwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzI2NDM2M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
1jANBgkqhkiG9w0BAQsFAAOCAQEAZlZ75rohJWY0Oyfq6xBx4M61Vqu5GNWsWgZp
tLueKBjlDH21B2LbTjIY7nhBT8mf7Lq3lqmjEDowAj1ox705Vd533Dy3MYK4v3uR
SvbD/o5K4Bj55f+rpkNP8akbQInWwt/36RhAPb0fqBbNNjhokaRHGjfvFps+5ZCX
tJhmOkrZG6SffdxtLrPeDX9RqQQE4a6eKhmnkqL+0EzXLHYA0kyT5ZgjSe5K7BJ2
xtWWrKg6ali6i8Vj6LAP2nulhTnnH+VqrC5s0PCTNEP3f3gfZiP37j+cuUsf89Uu
lzpLNsRooLJG41cSqfYFvXy1IH9agMeMerCVxhZ5n8Ef+mMNBg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org