Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3333323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: rLAb5EnYD7+DZed6oBVDUb+zkxEFweqMMd9EWdi7KoE=
Subject key identifier: 1A:75:41:16:B7:74:17:EF:63:57:AB:63:BA:53:B0:42:D7:82:1E:69
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 07BFF15E508255FFD88D83942D89A9423BC5BA0D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:34 +0000
ROA not before: Mon 26 Sep 2022 09:55:34 +0000
ROA not after: Mon 25 Sep 2023 10:00:34 +0000
asID: 59282
IP address blocks: 2400:d680:332::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:bf:f1:5e:50:82:55:ff:d8:8d:83:94:2d:89:a9:42:3b:c5:ba:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:34 2022 GMT
Not After : Sep 25 10:00:34 2023 GMT
Subject: CN=1A754116B77417EF6357AB63BA53B042D7821E69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:08:d5:aa:87:70:cd:6b:62:d9:31:d1:93:52:
b6:1f:53:2e:94:42:14:98:ba:d8:5c:d4:73:88:02:
8b:ae:ac:2b:69:39:e3:53:f9:ac:0e:f7:c3:d1:46:
aa:49:34:b1:0a:6b:b4:d1:62:2b:62:47:96:d0:19:
f1:68:d7:5f:75:f8:68:09:39:ed:d5:b1:80:c4:ef:
f1:0d:78:37:47:2c:a0:30:39:63:ea:c5:7b:38:6e:
70:99:0b:29:02:21:cd:b1:f2:ce:05:01:e8:15:a9:
c8:0f:ae:da:60:3a:f9:64:8c:39:a8:e4:68:14:fa:
6f:4f:1a:71:32:eb:e1:ab:57:af:4c:da:d9:fc:9d:
7c:7b:3a:3b:42:6f:85:55:3b:e2:57:9d:b3:a4:06:
16:7d:d3:7b:23:d0:51:2b:c3:32:17:be:e1:71:bb:
48:79:0c:91:01:b5:99:fb:79:2f:8b:99:19:ff:59:
86:6f:18:84:e1:eb:31:db:7a:68:ce:ae:57:19:fc:
63:60:01:16:26:4a:fc:5b:72:a5:5b:5e:39:4a:29:
ff:37:b0:b2:ee:b1:90:7e:ab:c2:79:ae:2d:dd:ed:
10:86:55:00:83:8e:42:93:4a:25:30:39:cd:71:6e:
09:e7:96:01:0d:bf:09:2e:5b:8e:82:96:f2:36:aa:
ea:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:75:41:16:B7:74:17:EF:63:57:AB:63:BA:53:B0:42:D7:82:1E:69
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:332::/48
Signature Algorithm: sha256WithRSAEncryption
a4:6d:fe:86:00:dc:c4:9f:c5:b9:74:1e:7a:21:2d:0c:aa:35:
cd:b1:b6:0b:4d:0d:1f:ae:d5:5b:aa:6b:23:d6:23:a3:8c:04:
9c:e9:70:ff:1a:08:20:f2:f1:e4:96:bf:f9:0a:a4:63:13:ed:
11:77:df:52:cb:2e:b7:3f:31:b2:b4:10:51:34:7f:5d:4d:8e:
65:34:02:a3:07:d2:9c:5c:98:2d:b4:a7:23:12:ca:a5:8e:4f:
97:57:b7:ce:1a:96:c5:47:f1:05:74:6a:53:3e:e9:c8:c0:5e:
eb:3b:02:cd:7b:bc:cc:9e:91:02:88:8c:57:9e:e3:5e:db:20:
3e:01:e6:1c:28:f1:a9:c0:b4:ee:3a:e5:fb:b0:23:f9:ce:b2:
5e:b8:03:58:af:de:4d:74:3e:f8:fb:2c:71:4e:3b:f7:9a:49:
6f:4b:44:8d:4e:46:30:0b:5a:09:fa:7e:45:f8:06:e1:52:ae:
cd:54:a4:90:bf:10:88:df:bb:15:c5:fc:92:16:4a:95:e5:b0:
4d:15:80:68:78:48:36:82:2f:4f:95:af:5f:3c:1d:a3:37:b2:
3e:8e:4e:a8:09:cd:01:47:3e:dc:80:04:be:1e:d5:9d:11:bf:
64:0f:d7:48:f3:78:9f:d1:a0:87:21:36:c5:fa:75:fc:01:74:
ff:d1:2e:1f
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUB7/xXlCCVf/YjYOULYmpQjvFug0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MzRaFw0yMzA5MjUxMDAwMzRaMDMxMTAvBgNV
BAMTKDFBNzU0MTE2Qjc3NDE3RUY2MzU3QUI2M0JBNTNCMDQyRDc4MjFFNjkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxCNWqh3DNa2LZMdGTUrYfUy6U
QhSYuthc1HOIAouurCtpOeNT+awO98PRRqpJNLEKa7TRYitiR5bQGfFo1191+GgJ
Oe3VsYDE7/ENeDdHLKAwOWPqxXs4bnCZCykCIc2x8s4FAegVqcgPrtpgOvlkjDmo
5GgU+m9PGnEy6+GrV69M2tn8nXx7OjtCb4VVO+JXnbOkBhZ903sj0FErwzIXvuFx
u0h5DJEBtZn7eS+LmRn/WYZvGITh6zHbemjOrlcZ/GNgARYmSvxbcqVbXjlKKf83
sLLusZB+q8J5ri3d7RCGVQCDjkKTSiUwOc1xbgnnlgENvwkuW46ClvI2qurDAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUGnVBFrd0F+9jV6tjulOwQteCHmkwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzMzMyM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
MjANBgkqhkiG9w0BAQsFAAOCAQEApG3+hgDcxJ/FuXQeeiEtDKo1zbG2C00NH67V
W6prI9Yjo4wEnOlw/xoIIPLx5Ja/+QqkYxPtEXffUssutz8xsrQQUTR/XU2OZTQC
owfSnFyYLbSnIxLKpY5Pl1e3zhqWxUfxBXRqUz7pyMBe6zsCzXu8zJ6RAoiMV57j
XtsgPgHmHCjxqcC07jrl+7Aj+c6yXrgDWK/eTXQ++PsscU4795pJb0tEjU5GMAta
Cfp+RfgG4VKuzVSkkL8QiN+7FcX8khZKleWwTRWAaHhINoIvT5WvXzwdozeyPo5O
qAnNAUc+3IAEvh7VnRG/ZA/XSPN4n9GghyE2xfp1/AF0/9EuHw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org