Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3333623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: vl+LguK8cPy+j1aZJPQF2w5HI9BtniQOGL8UxtibgqU=
Subject key identifier: 81:49:E9:5E:9B:54:8F:44:9D:6F:5F:DF:7F:B7:C4:45:1B:B0:43:F5
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 71F2ACC46D1CFC13090D6125C5F12E760CF2561F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:10 +0000
ROA not before: Mon 26 Sep 2022 09:55:10 +0000
ROA not after: Mon 25 Sep 2023 10:00:10 +0000
asID: 59282
IP address blocks: 2400:d680:33b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:f2:ac:c4:6d:1c:fc:13:09:0d:61:25:c5:f1:2e:76:0c:f2:56:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:10 2022 GMT
Not After : Sep 25 10:00:10 2023 GMT
Subject: CN=8149E95E9B548F449D6F5FDF7FB7C4451BB043F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3b:82:8f:fb:42:28:37:b4:cf:46:b0:ff:0c:
62:5f:6f:d5:51:38:bb:de:92:ed:f4:84:19:06:d0:
24:8a:f0:b5:27:fd:82:bd:f5:04:43:b7:14:11:21:
81:95:16:5a:ad:68:c7:22:11:e4:9c:16:1e:f5:37:
4c:5a:a4:5c:bf:25:06:e4:29:a0:65:1b:44:1d:55:
53:8a:33:3e:12:11:15:21:06:22:6c:85:13:ac:a2:
6b:c2:5a:a8:2c:f2:85:2e:35:3c:6d:18:60:60:a1:
ee:13:22:36:08:58:f3:ee:66:45:3b:79:89:a0:23:
3f:5d:a7:1d:8e:f4:69:2a:19:3d:26:16:1c:f4:f4:
93:4b:25:14:fa:40:51:fa:85:8c:c3:d5:62:ae:12:
af:66:97:cd:04:d2:34:a1:5b:88:93:5f:df:d1:2f:
5d:2f:b5:2f:d3:55:b0:11:b4:ce:85:8b:d7:2c:59:
84:4c:2d:2a:44:68:4b:dc:0b:94:1a:70:e7:4d:f1:
4a:04:e4:1c:dc:40:43:42:44:0b:14:72:50:6e:1e:
57:3f:6b:16:94:d1:e0:a8:61:36:78:49:14:f7:4f:
7a:ef:f1:e8:d8:52:33:40:7c:ac:b1:59:d9:66:a6:
32:02:63:77:84:4a:9b:8d:f4:dd:62:0e:5f:f3:03:
fd:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:49:E9:5E:9B:54:8F:44:9D:6F:5F:DF:7F:B7:C4:45:1B:B0:43:F5
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:33b::/48
Signature Algorithm: sha256WithRSAEncryption
15:b0:e6:34:25:c0:d4:67:90:45:a9:de:28:85:d2:12:d9:17:
b1:7d:fe:be:8e:57:11:21:1d:9b:71:76:b7:cc:42:10:03:1b:
9e:dd:1d:f6:2e:fc:0d:a7:9a:89:ca:de:fc:b9:84:45:10:bd:
88:e9:35:40:06:62:a2:00:5b:d9:f8:64:e1:3e:cc:ff:7a:cd:
af:d8:2b:01:ed:78:a2:0d:d5:21:9d:df:4d:83:37:1c:54:a3:
3d:69:dd:24:1e:70:f9:84:c6:1f:41:3c:85:05:4a:7a:8c:26:
b0:29:94:3b:30:ee:3e:de:4b:02:ab:73:b0:73:44:79:7f:b1:
3a:b1:bb:e5:ac:3c:af:22:52:64:dd:c0:90:45:7d:89:e5:14:
14:f8:4e:60:00:81:24:25:30:98:ca:9c:b8:56:c7:35:da:5b:
d7:76:23:06:76:bb:7c:0d:35:41:1e:22:37:a0:03:9a:4b:1e:
bc:f6:c1:ef:de:59:b4:d0:a1:ad:d0:93:48:76:2b:62:4c:83:
19:87:46:27:55:2e:7d:a7:d8:bf:1d:e4:75:d1:d7:69:42:0b:
f6:f3:eb:0b:18:a2:96:ac:03:02:7e:49:c1:b6:54:3d:59:66:
69:28:11:fc:cf:6a:2b:66:73:48:c0:9c:b6:4f:f4:e4:c1:2a:
12:32:62:06
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUcfKsxG0c/BMJDWElxfEudgzyVh8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MTBaFw0yMzA5MjUxMDAwMTBaMDMxMTAvBgNV
BAMTKDgxNDlFOTVFOUI1NDhGNDQ5RDZGNUZERjdGQjdDNDQ1MUJCMDQzRjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJO4KP+0IoN7TPRrD/DGJfb9VR
OLveku30hBkG0CSK8LUn/YK99QRDtxQRIYGVFlqtaMciEeScFh71N0xapFy/JQbk
KaBlG0QdVVOKMz4SERUhBiJshROsomvCWqgs8oUuNTxtGGBgoe4TIjYIWPPuZkU7
eYmgIz9dpx2O9GkqGT0mFhz09JNLJRT6QFH6hYzD1WKuEq9ml80E0jShW4iTX9/R
L10vtS/TVbARtM6Fi9csWYRMLSpEaEvcC5QacOdN8UoE5BzcQENCRAsUclBuHlc/
axaU0eCoYTZ4SRT3T3rv8ejYUjNAfKyxWdlmpjICY3eESpuN9N1iDl/zA/3bAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUgUnpXptUj0Sdb1/ff7fERRuwQ/UwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzMzYyM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
OzANBgkqhkiG9w0BAQsFAAOCAQEAFbDmNCXA1GeQRaneKIXSEtkXsX3+vo5XESEd
m3F2t8xCEAMbnt0d9i78Daeaicre/LmERRC9iOk1QAZiogBb2fhk4T7M/3rNr9gr
Ae14og3VIZ3fTYM3HFSjPWndJB5w+YTGH0E8hQVKeowmsCmUOzDuPt5LAqtzsHNE
eX+xOrG75aw8ryJSZN3AkEV9ieUUFPhOYACBJCUwmMqcuFbHNdpb13YjBna7fA01
QR4iN6ADmksevPbB795ZtNChrdCTSHYrYkyDGYdGJ1UufafYvx3kddHXaUIL9vPr
CxiilqwDAn5JwbZUPVlmaSgR/M9qK2ZzSMCctk/05MEqEjJiBg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org