Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3266313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Kr7cIDcEoejwDsCYRb613FlSnfHRgKB5q4K/KtIFrAc=
Subject key identifier: 1A:04:A9:27:C0:BC:32:63:DD:0C:E7:D4:1B:40:9E:FB:88:BF:CC:B0
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 34AFE4943068EF12DCD5E7B61A0C4DF012AE9FBA
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:05 +0000
ROA not before: Mon 26 Sep 2022 12:55:05 +0000
ROA not after: Mon 25 Sep 2023 13:00:05 +0000
asID: 59282
IP address blocks: 2400:d680:2f1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:af:e4:94:30:68:ef:12:dc:d5:e7:b6:1a:0c:4d:f0:12:ae:9f:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:05 2022 GMT
Not After : Sep 25 13:00:05 2023 GMT
Subject: CN=1A04A927C0BC3263DD0CE7D41B409EFB88BFCCB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f4:64:a0:4e:da:dd:74:cc:6d:95:10:11:73:
0c:32:55:d9:03:ac:49:95:06:00:f8:8b:09:a4:6b:
52:84:c0:74:e5:7f:e1:cd:ac:3d:f7:f3:38:e0:4d:
51:1f:06:9a:2c:ba:e6:ac:d8:0c:e9:fa:15:62:8c:
f7:31:bd:a8:35:53:b5:b9:80:07:24:21:4e:a8:97:
d1:d1:db:83:d8:34:36:20:59:30:4c:0e:a8:d0:76:
e5:1b:3d:f3:10:ff:ef:28:d8:c3:10:a0:cb:9a:cb:
72:d7:f9:37:4f:2a:3e:47:2e:78:29:35:20:42:92:
d7:05:b2:05:f1:f8:27:68:b3:3b:5d:bb:85:37:bb:
17:d8:c8:20:7b:4e:51:55:f8:a0:9c:31:c0:d3:8d:
d8:84:ce:6a:65:86:a3:7d:7a:12:be:4a:73:d8:7f:
b6:c4:65:b8:28:df:9f:40:cd:f1:79:65:a8:fa:35:
42:da:ce:e2:1e:89:99:ec:16:a1:87:41:f9:30:89:
1c:e2:25:e3:ac:8f:3d:f0:e1:96:1e:6a:be:45:ad:
66:61:84:23:ca:e0:20:b1:36:76:d2:54:45:4d:ad:
a1:af:74:0e:b7:3b:e7:33:0a:29:f9:8d:d6:8c:9a:
f4:b2:57:e0:55:c8:6e:18:94:0f:25:a6:53:c5:09:
d3:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:04:A9:27:C0:BC:32:63:DD:0C:E7:D4:1B:40:9E:FB:88:BF:CC:B0
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3266313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2f1::/48
Signature Algorithm: sha256WithRSAEncryption
92:a7:8d:2d:93:a9:29:c5:54:b4:5e:d9:eb:d6:35:88:62:17:
32:a9:70:49:05:96:90:27:67:b5:d8:c3:79:31:ed:3e:a3:04:
b0:b8:77:95:76:e1:9b:35:ab:d7:94:4d:f0:41:73:f0:79:07:
1e:73:ab:ee:cb:38:9b:63:75:f1:bf:05:8f:33:ab:08:18:64:
88:29:6b:6e:6d:e0:7e:b3:3a:26:30:58:69:28:15:29:c1:2e:
85:8b:86:aa:e8:98:96:6b:fa:30:2f:b9:6f:34:8b:59:b7:47:
1a:77:3b:20:83:64:fe:0e:9b:ac:87:69:a3:ee:7e:7c:5a:e7:
9d:85:21:f9:17:10:67:02:01:c7:e4:fa:33:b0:9c:56:50:ba:
7b:26:dd:d2:ea:1b:fe:63:f0:59:b0:bc:41:a0:c7:e8:49:10:
5b:e8:af:74:a7:8a:12:0a:4e:08:ae:98:06:dd:2f:3e:61:44:
f5:18:9a:6d:32:63:9f:ac:04:75:94:67:07:26:b2:d9:5d:16:
5c:da:1d:b0:39:a1:bd:9f:d5:45:97:f8:13:e0:99:c9:72:bb:
0a:76:38:5b:68:af:87:2a:d0:59:5a:86:11:68:ea:f4:5e:3c:
5a:e8:40:0f:bc:84:ec:53:b3:bd:fe:f0:8e:5f:ce:bc:c9:9c:
74:4a:5e:19
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUNK/klDBo7xLc1ee2GgxN8BKun7owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMjU1MDVaFw0yMzA5MjUxMzAwMDVaMDMxMTAvBgNV
BAMTKDFBMDRBOTI3QzBCQzMyNjNERDBDRTdENDFCNDA5RUZCODhCRkNDQjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg9GSgTtrddMxtlRARcwwyVdkD
rEmVBgD4iwmka1KEwHTlf+HNrD338zjgTVEfBposuuas2Azp+hVijPcxvag1U7W5
gAckIU6ol9HR24PYNDYgWTBMDqjQduUbPfMQ/+8o2MMQoMuay3LX+TdPKj5HLngp
NSBCktcFsgXx+Cdosztdu4U3uxfYyCB7TlFV+KCcMcDTjdiEzmplhqN9ehK+SnPY
f7bEZbgo359AzfF5Zaj6NULazuIeiZnsFqGHQfkwiRziJeOsjz3w4ZYear5FrWZh
hCPK4CCxNnbSVEVNraGvdA63O+czCin5jdaMmvSyV+BVyG4YlA8lplPFCdPlAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUGgSpJ8C8MmPdDOfUG0Ce+4i/zLAwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzI2NjMxM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
8TANBgkqhkiG9w0BAQsFAAOCAQEAkqeNLZOpKcVUtF7Z69Y1iGIXMqlwSQWWkCdn
tdjDeTHtPqMEsLh3lXbhmzWr15RN8EFz8HkHHnOr7ss4m2N18b8FjzOrCBhkiClr
bm3gfrM6JjBYaSgVKcEuhYuGquiYlmv6MC+5bzSLWbdHGnc7IINk/g6brIdpo+5+
fFrnnYUh+RcQZwIBx+T6M7CcVlC6eybd0uob/mPwWbC8QaDH6EkQW+ivdKeKEgpO
CK6YBt0vPmFE9RiabTJjn6wEdZRnByay2V0WXNodsDmhvZ/VRZf4E+CZyXK7CnY4
W2ivhyrQWVqGEWjq9F48WuhAD7yE7FOzvf7wjl/OvMmcdEpeGQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:50 2024 by rpki-client on console-ams.rpki-client.org