Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3335303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: F3c1Ixsqs1lCC1NmHsOhOBkWbQcFl0Eb7S7KfFHQBiE=
Subject key identifier: 23:87:8D:75:7F:30:18:49:8E:AB:36:5C:99:AD:39:E9:F8:2A:41:F7
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4C72776A8DA77831462F5269B1E61B63C2E74B84
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:30 +0000
ROA not before: Mon 26 Sep 2022 10:55:30 +0000
ROA not after: Mon 25 Sep 2023 11:00:30 +0000
asID: 59282
IP address blocks: 2400:d680:350::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:72:77:6a:8d:a7:78:31:46:2f:52:69:b1:e6:1b:63:c2:e7:4b:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:30 2022 GMT
Not After : Sep 25 11:00:30 2023 GMT
Subject: CN=23878D757F3018498EAB365C99AD39E9F82A41F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:39:eb:b4:2a:ba:7a:a3:ce:bf:4f:be:08:3d:
c4:0c:7e:ec:ed:7b:10:01:8e:57:93:ad:54:65:e0:
ee:e9:9d:a6:27:d3:b7:77:a6:32:34:90:27:15:88:
6f:b3:59:70:f6:8a:1e:5a:1a:55:4f:f4:b5:48:a1:
02:57:f8:4d:b3:24:b0:5d:2d:29:c1:f1:6b:ec:14:
4a:f9:b1:fa:12:95:36:35:f0:93:4f:d9:74:d5:4e:
eb:33:02:8e:59:96:47:aa:3e:d8:98:7c:67:fa:87:
f3:ca:e4:c7:09:97:59:82:86:de:0d:1b:99:2a:d6:
cf:af:88:cb:46:ce:cc:e9:64:03:cf:47:b9:32:dd:
00:43:e1:57:48:7c:ad:e4:f0:23:6c:fd:97:d9:f0:
6e:35:a8:93:41:46:55:6a:50:f7:d7:b7:af:6d:3a:
41:7e:25:27:21:ef:ca:12:36:44:04:7e:ab:19:a8:
a5:3a:2f:5b:85:88:6a:37:72:45:b9:4e:c1:9d:11:
a5:08:74:94:c1:de:b3:0d:ea:98:24:ac:ac:f2:ef:
d8:a7:5f:eb:2b:f3:41:ae:f7:d6:e1:fe:89:48:32:
b7:1b:ea:51:0a:0b:a9:08:0a:01:ab:36:d9:63:21:
eb:c4:03:dd:17:7d:a0:b0:01:3e:d3:c4:bd:4b:d3:
e4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:87:8D:75:7F:30:18:49:8E:AB:36:5C:99:AD:39:E9:F8:2A:41:F7
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:350::/48
Signature Algorithm: sha256WithRSAEncryption
d4:d4:12:82:e8:2a:b7:bf:aa:6e:8c:63:20:33:70:1f:9e:85:
ea:e6:8f:9a:2e:47:f8:46:97:f2:49:72:f9:64:15:78:7d:f6:
3b:11:4a:a8:e9:b5:15:86:2b:0a:4e:5b:a2:d0:f6:02:55:99:
93:80:96:6f:30:49:f0:5e:e3:62:b6:8e:4a:18:f8:4b:a7:12:
1d:4d:b6:de:be:48:22:ee:8a:f8:8e:9e:09:6b:e0:d6:61:05:
b6:a3:c1:b8:6a:b3:b3:26:98:44:a6:5f:29:6a:b3:c5:94:06:
c3:06:49:d9:04:dc:fc:63:48:5e:ed:a2:91:f5:3e:e2:4b:81:
de:2e:4b:31:d5:3b:08:0a:aa:47:84:38:18:9c:c3:a0:cd:e4:
da:0b:56:73:25:15:77:3a:f0:b5:45:68:f1:29:d5:ef:77:cb:
42:08:61:82:d1:53:72:b5:62:8c:06:53:c0:28:88:82:be:fe:
3d:5a:80:66:9d:a6:2d:6e:f1:82:a6:bc:b3:01:ee:67:f7:fd:
5d:a3:cb:a9:09:d7:e4:19:d2:a1:5d:1e:e6:01:43:2b:e6:28:
f8:7b:51:9a:a0:e6:41:af:fc:49:d0:c2:83:c1:2f:69:17:75:
f4:eb:cf:7e:97:3d:2a:f9:37:1f:32:85:78:ad:26:bd:13:f0:
4d:04:34:19
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUTHJ3ao2neDFGL1JpseYbY8LnS4QwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MzBaFw0yMzA5MjUxMTAwMzBaMDMxMTAvBgNV
BAMTKDIzODc4RDc1N0YzMDE4NDk4RUFCMzY1Qzk5QUQzOUU5RjgyQTQxRjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrOeu0Krp6o86/T74IPcQMfuzt
exABjleTrVRl4O7pnaYn07d3pjI0kCcViG+zWXD2ih5aGlVP9LVIoQJX+E2zJLBd
LSnB8WvsFEr5sfoSlTY18JNP2XTVTuszAo5ZlkeqPtiYfGf6h/PK5McJl1mCht4N
G5kq1s+viMtGzszpZAPPR7ky3QBD4VdIfK3k8CNs/ZfZ8G41qJNBRlVqUPfXt69t
OkF+JSch78oSNkQEfqsZqKU6L1uFiGo3ckW5TsGdEaUIdJTB3rMN6pgkrKzy79in
X+sr80Gu99bh/olIMrcb6lEKC6kICgGrNtljIevEA90XfaCwAT7TxL1L0+TvAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUI4eNdX8wGEmOqzZcma056fgqQfcwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzNTMwM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
UDANBgkqhkiG9w0BAQsFAAOCAQEA1NQSgugqt7+qboxjIDNwH56F6uaPmi5H+EaX
8kly+WQVeH32OxFKqOm1FYYrCk5botD2AlWZk4CWbzBJ8F7jYraOShj4S6cSHU22
3r5IIu6K+I6eCWvg1mEFtqPBuGqzsyaYRKZfKWqzxZQGwwZJ2QTc/GNIXu2ikfU+
4kuB3i5LMdU7CAqqR4Q4GJzDoM3k2gtWcyUVdzrwtUVo8SnV73fLQghhgtFTcrVi
jAZTwCiIgr7+PVqAZp2mLW7xgqa8swHuZ/f9XaPLqQnX5BnSoV0e5gFDK+Yo+HtR
mqDmQa/8SdDCg8EvaRd19OvPfpc9Kvk3HzKFeK0mvRPwTQQ0GQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org