Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3335393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: g5gJh0m4MTTSxHioXw2/eRflrOPOEHudLTyHNP4aeEM=
Subject key identifier: 82:A1:55:77:5F:16:05:97:4B:9D:91:C2:4F:7A:F3:14:1B:F2:56:9B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 59442D7379FE7CB2A5A80E61709360EFD8B1B883
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:29 +0000
ROA not before: Mon 26 Sep 2022 10:55:29 +0000
ROA not after: Mon 25 Sep 2023 11:00:29 +0000
asID: 59282
IP address blocks: 2400:d680:359::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:44:2d:73:79:fe:7c:b2:a5:a8:0e:61:70:93:60:ef:d8:b1:b8:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:29 2022 GMT
Not After : Sep 25 11:00:29 2023 GMT
Subject: CN=82A155775F1605974B9D91C24F7AF3141BF2569B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:7e:f3:69:fc:e8:0f:fa:18:b7:ce:87:ff:c7:
0a:eb:ef:7e:da:73:45:b3:1c:83:9b:d8:dd:6a:89:
cc:a6:5d:dd:72:83:30:7e:c1:73:79:e6:ab:95:4b:
f4:d8:2d:f7:0d:fd:c0:82:2f:77:5b:61:a1:c8:af:
a6:e2:a1:93:50:51:ec:14:77:b3:13:87:85:07:46:
ef:85:4a:56:d5:3a:7a:8d:87:f3:09:42:3b:2b:3a:
16:4b:32:e7:5f:00:ad:a7:0f:eb:5c:71:22:5a:24:
c4:44:bd:c3:d9:9c:93:ed:58:15:ad:dd:1a:9a:0c:
62:44:a2:cb:8a:20:1b:42:b7:10:02:d1:79:ae:e3:
6c:3c:0c:29:60:f3:f2:6b:43:13:82:49:cd:38:7c:
3d:7a:0a:8a:34:b8:65:8b:a6:1b:89:f2:44:12:df:
eb:94:47:48:a5:01:77:39:8e:4b:d4:ed:18:f7:5c:
cf:b1:cc:e2:55:c9:28:ef:49:31:2f:48:25:6e:e5:
44:fc:f4:cc:25:64:80:cb:22:39:78:d4:15:8b:83:
4e:4c:8e:bc:dc:9f:70:4c:62:75:ef:a7:f7:5f:c3:
a8:45:a5:38:0c:09:2f:0d:9b:74:f9:13:44:f9:49:
5f:bb:da:ad:54:a6:a2:99:81:53:e6:94:31:46:28:
70:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A1:55:77:5F:16:05:97:4B:9D:91:C2:4F:7A:F3:14:1B:F2:56:9B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3335393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:359::/48
Signature Algorithm: sha256WithRSAEncryption
d0:39:10:a6:50:51:2d:af:18:34:54:22:73:2e:a1:1a:14:ad:
d5:4a:ef:bc:7b:c9:a6:99:74:62:b5:c9:ba:32:a7:02:74:30:
62:66:1c:9b:2c:25:91:5a:7f:29:79:0b:59:1b:6d:03:83:da:
10:bd:83:f7:4b:b9:d9:3f:84:6e:00:b7:f1:80:d8:51:37:3c:
3c:04:4b:0a:d4:ad:7e:67:ee:70:12:f1:58:ec:65:ef:b7:1f:
db:51:55:00:85:7a:aa:01:f0:fa:f1:f1:4a:b0:2d:62:89:87:
3c:33:49:fc:0b:e3:d2:9c:d4:0d:47:e5:a9:6e:f3:47:e2:a7:
74:3d:4c:30:fc:6d:d2:e6:7b:d8:be:44:ad:f9:76:a8:b2:3e:
0b:a5:12:5b:67:ec:45:a0:36:ab:5e:5f:7b:21:7d:4e:6d:04:
e8:06:2d:79:36:ac:46:e8:f7:b0:c4:a3:23:01:a3:94:0d:e9:
ea:e7:b0:92:0d:7b:f4:81:98:14:22:e6:ba:04:3e:1a:bc:1f:
e6:5c:25:2d:5d:43:4c:e9:90:29:4c:b2:53:c8:43:42:30:74:
f1:45:7c:52:5b:79:86:d2:75:81:97:40:27:0a:ec:cf:c9:d8:
f1:b4:55:f1:3f:4c:5c:83:1e:2f:16:83:2b:73:9e:4a:b2:16:
b6:c2:ac:af
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUWUQtc3n+fLKlqA5hcJNg79ixuIMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MjlaFw0yMzA5MjUxMTAwMjlaMDMxMTAvBgNV
BAMTKDgyQTE1NTc3NUYxNjA1OTc0QjlEOTFDMjRGN0FGMzE0MUJGMjU2OUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMfvNp/OgP+hi3zof/xwrr737a
c0WzHIOb2N1qicymXd1ygzB+wXN55quVS/TYLfcN/cCCL3dbYaHIr6bioZNQUewU
d7MTh4UHRu+FSlbVOnqNh/MJQjsrOhZLMudfAK2nD+tccSJaJMREvcPZnJPtWBWt
3RqaDGJEosuKIBtCtxAC0Xmu42w8DClg8/JrQxOCSc04fD16Coo0uGWLphuJ8kQS
3+uUR0ilAXc5jkvU7Rj3XM+xzOJVySjvSTEvSCVu5UT89MwlZIDLIjl41BWLg05M
jrzcn3BMYnXvp/dfw6hFpTgMCS8Nm3T5E0T5SV+72q1UpqKZgVPmlDFGKHA1AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUgqFVd18WBZdLnZHCT3rzFBvyVpswHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzNTM5M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
WTANBgkqhkiG9w0BAQsFAAOCAQEA0DkQplBRLa8YNFQicy6hGhSt1UrvvHvJppl0
YrXJujKnAnQwYmYcmywlkVp/KXkLWRttA4PaEL2D90u52T+EbgC38YDYUTc8PARL
CtStfmfucBLxWOxl77cf21FVAIV6qgHw+vHxSrAtYomHPDNJ/Avj0pzUDUflqW7z
R+KndD1MMPxt0uZ72L5Erfl2qLI+C6USW2fsRaA2q15feyF9Tm0E6AYteTasRuj3
sMSjIwGjlA3p6uewkg179IGYFCLmugQ+Grwf5lwlLV1DTOmQKUyyU8hDQjB08UV8
Ult5htJ1gZdAJwrsz8nY8bRV8T9MXIMeLxaDK3OeSrIWtsKsrw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org