Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3331613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: q3mrJKq6uDF0bHTWWjTofFd908HnBOkXXVNRU30TYe8=
Subject key identifier: DF:50:28:A3:17:33:67:16:D4:B8:E2:88:A0:09:9A:2A:E7:B0:90:15
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3F4C0ADD9493DD35DAE02340DE42FA6C2BC82DC8
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:27 +0000
ROA not before: Mon 26 Sep 2022 09:55:27 +0000
ROA not after: Mon 25 Sep 2023 10:00:27 +0000
asID: 59282
IP address blocks: 2400:d680:31a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:4c:0a:dd:94:93:dd:35:da:e0:23:40:de:42:fa:6c:2b:c8:2d:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:27 2022 GMT
Not After : Sep 25 10:00:27 2023 GMT
Subject: CN=DF5028A317336716D4B8E288A0099A2AE7B09015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:25:22:86:a4:17:01:e8:8e:a6:a2:de:eb:a0:
e7:2e:7b:fb:c4:e6:b7:36:34:84:8b:fb:44:f8:f1:
cb:e3:5c:ba:b3:18:7e:55:ec:59:9b:c8:b2:0a:43:
5d:7a:f4:be:20:6f:bb:a0:ed:f6:70:f9:13:92:1f:
11:0c:5b:61:2f:b2:5b:44:20:ff:f1:96:64:cd:61:
f0:41:0a:07:af:db:8e:a1:8b:e0:1c:0b:54:ad:e2:
32:45:84:b7:5f:9f:89:cd:e7:85:88:a4:bb:ff:e9:
d0:51:1b:99:11:f6:87:3f:d6:47:30:dc:22:3f:8a:
6b:f5:b0:25:b8:de:66:eb:bb:60:ac:57:c3:3d:0c:
5e:68:63:84:8a:53:a0:ee:2c:36:df:c6:da:58:56:
7c:23:26:5d:f9:a3:c7:79:d6:c6:b5:b4:08:cc:d1:
b4:4a:20:b8:79:0e:55:c4:34:da:7d:f3:ca:bd:61:
ee:34:04:0e:88:51:f0:69:2e:50:f1:9f:da:51:00:
80:61:bc:e4:83:15:84:5c:4c:b1:d6:f8:3f:12:15:
83:48:35:2a:46:e8:a0:31:1b:dc:5d:a2:ce:4b:02:
af:a8:8c:a6:33:16:f8:53:1c:b3:5d:87:01:22:75:
aa:3d:16:82:0c:8d:3c:d8:9c:38:0e:91:8a:f2:4c:
05:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:50:28:A3:17:33:67:16:D4:B8:E2:88:A0:09:9A:2A:E7:B0:90:15
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:31a::/48
Signature Algorithm: sha256WithRSAEncryption
57:48:9e:4b:53:3b:a4:44:5a:4e:35:66:ed:62:3a:8e:9e:19:
95:df:ef:1a:3d:47:0f:f5:9b:7d:69:63:8a:c2:7c:a1:9f:65:
72:de:1d:4a:c2:0a:d2:50:a5:40:8c:db:2c:80:11:74:55:c3:
d7:22:de:46:0a:14:65:cb:84:8e:76:cd:19:51:6f:f4:5e:ca:
99:f2:ba:ff:23:80:9e:61:f6:c6:99:ed:4d:64:13:8d:32:70:
fa:92:f0:10:64:ee:09:8e:37:b9:6a:f4:8e:03:4d:97:5f:0d:
ab:16:0f:c6:a0:3a:1d:af:93:c1:c1:23:ac:fc:20:bb:50:77:
99:d1:b5:fa:f5:09:33:89:c5:6a:42:e2:e4:d6:77:64:d3:46:
b7:07:87:b0:14:35:47:b9:a6:09:20:ac:36:fc:41:da:7e:4a:
9d:5b:b8:51:69:e1:f1:b2:8b:18:05:cd:ad:7f:08:fb:7c:d9:
aa:f2:19:86:99:08:8f:22:ca:5d:a5:0c:f8:c4:48:ee:62:5b:
6f:00:da:fe:99:a7:79:17:13:12:aa:c1:fa:5e:ba:eb:49:fd:
5e:24:c1:9c:a4:58:a9:d6:b0:9c:69:39:ec:4a:c3:48:a4:b6:
62:ee:47:8e:bf:a8:ea:7a:83:31:dd:6a:ac:d5:d9:f3:a8:23:
80:15:0a:c4
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUP0wK3ZST3TXa4CNA3kL6bCvILcgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MjdaFw0yMzA5MjUxMDAwMjdaMDMxMTAvBgNV
BAMTKERGNTAyOEEzMTczMzY3MTZENEI4RTI4OEEwMDk5QTJBRTdCMDkwMTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtJSKGpBcB6I6mot7roOcue/vE
5rc2NISL+0T48cvjXLqzGH5V7FmbyLIKQ1169L4gb7ug7fZw+ROSHxEMW2EvsltE
IP/xlmTNYfBBCgev246hi+AcC1St4jJFhLdfn4nN54WIpLv/6dBRG5kR9oc/1kcw
3CI/imv1sCW43mbru2CsV8M9DF5oY4SKU6DuLDbfxtpYVnwjJl35o8d51sa1tAjM
0bRKILh5DlXENNp988q9Ye40BA6IUfBpLlDxn9pRAIBhvOSDFYRcTLHW+D8SFYNI
NSpG6KAxG9xdos5LAq+ojKYzFvhTHLNdhwEidao9FoIMjTzYnDgOkYryTAVrAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU31AooxczZxbUuOKIoAmaKuewkBUwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzMTYxM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
GjANBgkqhkiG9w0BAQsFAAOCAQEAV0ieS1M7pERaTjVm7WI6jp4Zld/vGj1HD/Wb
fWljisJ8oZ9lct4dSsIK0lClQIzbLIARdFXD1yLeRgoUZcuEjnbNGVFv9F7KmfK6
/yOAnmH2xpntTWQTjTJw+pLwEGTuCY43uWr0jgNNl18NqxYPxqA6Ha+TwcEjrPwg
u1B3mdG1+vUJM4nFakLi5NZ3ZNNGtweHsBQ1R7mmCSCsNvxB2n5KnVu4UWnh8bKL
GAXNrX8I+3zZqvIZhpkIjyLKXaUM+MRI7mJbbwDa/pmneRcTEqrB+l6660n9XiTB
nKRYqdawnGk57ErDSKS2Yu5Hjr+o6nqDMd1qrNXZ86gjgBUKxA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org