Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3338343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: sKxo8/QYwKEVRcvIUDGJQF72deYkcoqu9QCU+gk9VsI=
Subject key identifier: C1:51:5B:40:E0:22:A1:96:9C:AA:25:5D:2B:1A:02:25:65:1A:3E:5A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4579844DE2193A2E39CD6D2D2A6FE5B87B6DD0E9
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:38 +0000
ROA not before: Mon 26 Sep 2022 10:55:38 +0000
ROA not after: Mon 25 Sep 2023 11:00:38 +0000
asID: 59282
IP address blocks: 2400:d680:384::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:79:84:4d:e2:19:3a:2e:39:cd:6d:2d:2a:6f:e5:b8:7b:6d:d0:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:38 2022 GMT
Not After : Sep 25 11:00:38 2023 GMT
Subject: CN=C1515B40E022A1969CAA255D2B1A0225651A3E5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:4a:2e:86:d4:99:de:dd:38:08:1d:cd:cc:df:
94:0a:bf:8b:2a:ae:a6:8e:e7:5b:35:bb:ea:da:6e:
ea:ae:47:ff:81:08:e8:4f:8a:64:55:9a:45:21:1f:
86:f2:e6:4e:19:5a:b9:17:71:8c:b6:95:14:ec:b5:
21:a5:13:f4:0d:73:7e:ae:59:e0:e4:87:1b:b7:9d:
fc:d5:e7:88:1b:64:29:9d:94:55:90:7c:8e:2c:9b:
61:3c:0a:5a:c1:a1:77:64:ee:86:9f:9b:3f:4b:e7:
a9:b2:d8:b9:7d:75:4c:13:e0:8c:5d:b8:89:f8:b4:
09:09:5f:d1:bc:38:09:dc:cd:d7:d2:7c:7f:86:34:
ba:61:93:46:b8:99:bb:8f:24:dc:8a:24:73:f5:4c:
77:52:1a:1b:5e:ae:66:ba:ff:ee:cc:e8:b2:ac:65:
5b:0b:86:a6:4c:fe:db:45:ff:18:7f:76:94:9c:17:
83:12:f0:e0:e6:2a:b8:03:1e:4d:18:0e:7e:d5:f0:
85:cf:e7:76:13:4f:c4:c1:fe:ac:56:c1:de:89:dd:
e2:7f:d5:67:95:9c:d4:eb:0f:6b:08:a6:fe:e1:eb:
6a:51:2c:a4:39:65:e3:52:41:b6:76:7e:e4:c3:c6:
fd:e8:1e:47:53:99:27:24:6c:f9:66:99:c4:51:b2:
99:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:51:5B:40:E0:22:A1:96:9C:AA:25:5D:2B:1A:02:25:65:1A:3E:5A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3338343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:384::/48
Signature Algorithm: sha256WithRSAEncryption
ce:58:67:ea:1b:02:40:47:20:f2:75:a3:aa:ec:b7:a7:15:61:
dc:c4:c0:da:e8:ff:f1:c5:5e:5e:1d:75:65:8c:9c:31:80:c4:
f9:77:17:04:7d:76:5a:a3:42:9e:ca:be:5d:0f:22:25:9c:c9:
a7:14:be:0e:59:d3:14:7f:11:8e:bf:b7:a7:c2:1a:e2:ac:ec:
db:ed:cb:6a:52:aa:64:c3:13:dc:ca:f5:89:ed:d6:01:1d:bb:
3a:14:df:df:4c:58:47:74:05:ad:b4:40:88:2c:a4:86:fe:87:
8b:f1:5d:e5:70:73:80:0b:8c:63:d2:2f:18:b4:55:b5:2d:59:
0f:c7:c6:98:17:08:c1:a4:c2:aa:fb:5f:2d:09:71:73:bd:d2:
25:92:2d:66:5c:15:78:0d:57:cc:5b:b3:ae:9a:c6:26:6b:e7:
b9:ab:df:5d:c0:00:de:b9:0b:3e:a1:c3:1f:a9:f3:4b:37:6e:
dd:ee:03:7d:7f:3d:f3:dd:13:f7:bb:df:30:02:ad:6f:52:51:
b0:d0:f2:80:8e:c0:73:94:4d:3c:75:e7:41:9c:52:da:96:32:
7c:02:33:66:39:78:7c:af:5c:76:cc:24:7c:25:c7:f6:66:2c:
15:a3:fb:20:f3:4c:d3:e8:38:04:ea:35:1a:f6:ff:7c:1a:ed:
35:00:61:71
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIURXmETeIZOi45zW0tKm/luHtt0OkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MzhaFw0yMzA5MjUxMTAwMzhaMDMxMTAvBgNV
BAMTKEMxNTE1QjQwRTAyMkExOTY5Q0FBMjU1RDJCMUEwMjI1NjUxQTNFNUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcSi6G1Jne3TgIHc3M35QKv4sq
rqaO51s1u+rabuquR/+BCOhPimRVmkUhH4by5k4ZWrkXcYy2lRTstSGlE/QNc36u
WeDkhxu3nfzV54gbZCmdlFWQfI4sm2E8ClrBoXdk7oafmz9L56my2Ll9dUwT4Ixd
uIn4tAkJX9G8OAnczdfSfH+GNLphk0a4mbuPJNyKJHP1THdSGhterma6/+7M6LKs
ZVsLhqZM/ttF/xh/dpScF4MS8ODmKrgDHk0YDn7V8IXP53YTT8TB/qxWwd6J3eJ/
1WeVnNTrD2sIpv7h62pRLKQ5ZeNSQbZ2fuTDxv3oHkdTmSckbPlmmcRRspkhAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUwVFbQOAioZacqiVdKxoCJWUaPlowHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzODM0M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
hDANBgkqhkiG9w0BAQsFAAOCAQEAzlhn6hsCQEcg8nWjquy3pxVh3MTA2uj/8cVe
Xh11ZYycMYDE+XcXBH12WqNCnsq+XQ8iJZzJpxS+DlnTFH8Rjr+3p8Ia4qzs2+3L
alKqZMMT3Mr1ie3WAR27OhTf30xYR3QFrbRAiCykhv6Hi/Fd5XBzgAuMY9IvGLRV
tS1ZD8fGmBcIwaTCqvtfLQlxc73SJZItZlwVeA1XzFuzrprGJmvnuavfXcAA3rkL
PqHDH6nzSzdu3e4DfX89890T97vfMAKtb1JRsNDygI7Ac5RNPHXnQZxS2pYyfAIz
Zjl4fK9cdswkfCXH9mYsFaP7IPNM0+g4BOo1Gvb/fBrtNQBhcQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org