Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3339623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: D7YCcd3Yd/FhLQo0qsjavU+BtZK8EC1wAujPLZ2snxs=
Subject key identifier: 3A:D3:2E:26:29:B7:EF:03:FA:9B:3D:29:FC:8C:A7:9C:BA:1F:23:25
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 08009F203BAA706484D57AA792A77C68EC7AE540
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:34 +0000
ROA not before: Mon 26 Sep 2022 10:55:34 +0000
ROA not after: Mon 25 Sep 2023 11:00:34 +0000
asID: 59282
IP address blocks: 2400:d680:39b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:00:9f:20:3b:aa:70:64:84:d5:7a:a7:92:a7:7c:68:ec:7a:e5:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:34 2022 GMT
Not After : Sep 25 11:00:34 2023 GMT
Subject: CN=3AD32E2629B7EF03FA9B3D29FC8CA79CBA1F2325
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b7:1e:f1:96:04:10:39:62:62:31:4d:82:e0:
a7:a9:a0:f9:c6:c0:49:9d:6f:24:b0:6a:88:be:fc:
5c:b5:22:a4:02:7f:93:11:dd:82:7f:1d:98:66:2a:
f9:4e:f3:56:81:20:9a:b4:cc:65:41:df:f4:68:96:
7b:21:10:e2:97:44:64:f4:3e:a7:b2:f7:80:77:2f:
90:59:c8:1d:a9:81:47:98:6a:9a:95:85:55:85:58:
02:0b:98:df:ea:3f:d3:ca:46:46:83:c5:0e:84:3c:
06:7e:5b:64:3d:9f:33:c0:2e:cb:e1:17:d4:90:e5:
8d:fd:ea:e3:ea:7b:cf:ee:85:58:8e:7c:1d:42:7a:
8e:c3:78:c8:56:30:a0:52:e8:64:45:46:6e:ad:bc:
76:18:8b:55:d8:6f:11:e2:90:62:64:f3:71:74:ea:
29:c1:7b:0a:fa:be:7b:11:e7:cc:69:88:42:b2:8a:
d8:50:ba:ba:bd:c5:84:0d:f7:04:b3:15:36:62:30:
8f:e7:11:3c:28:39:da:97:1e:a2:0a:28:4f:e8:eb:
9c:1c:e7:82:94:ab:e0:ea:01:79:41:ce:b3:88:65:
2e:53:f5:1b:d8:9a:73:05:c3:af:80:e7:3b:cd:f1:
01:37:d3:7e:0d:e7:65:02:15:26:62:e8:23:13:db:
50:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:D3:2E:26:29:B7:EF:03:FA:9B:3D:29:FC:8C:A7:9C:BA:1F:23:25
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:39b::/48
Signature Algorithm: sha256WithRSAEncryption
0e:5d:a3:49:9c:99:c5:ab:65:be:6d:b6:25:ee:3c:52:21:04:
b7:91:a1:97:aa:ca:66:6e:9b:eb:18:bc:c8:f6:2d:6d:c3:34:
28:e2:f9:2f:64:05:ec:9b:a7:15:f0:ef:a9:4c:e8:77:32:35:
55:db:8d:b0:4c:d1:fd:66:23:5f:30:87:3c:8c:27:20:b2:9c:
cb:25:71:31:af:b0:ed:ca:3c:4f:ce:f6:62:7f:a1:81:33:13:
1a:1f:22:da:4c:df:9c:fe:ad:cc:57:f8:bd:bb:76:9a:6c:35:
4b:5e:b8:57:ee:ce:39:ce:33:42:60:61:5e:bb:6b:64:b0:ec:
3a:df:02:ac:e8:dc:76:cc:88:42:e2:d9:4b:3c:60:93:89:6c:
62:9e:a2:a2:ea:58:2f:e2:44:b0:2f:d0:0c:45:88:e1:9d:a9:
70:ea:9f:fc:6a:10:25:5b:27:37:cd:b7:78:55:29:74:86:8d:
52:ce:88:a6:08:d9:d6:bb:35:a7:6b:36:68:2e:99:f6:0b:5b:
e6:04:42:9b:40:ea:4f:50:ec:e3:c4:7b:80:c3:e6:6d:69:04:
73:5a:dc:5b:fb:67:4c:1f:36:49:99:5f:9d:e5:ac:03:83:3c:
ab:f5:04:58:04:a7:f5:94:80:8d:94:ca:41:2a:3a:22:ab:b3:
3d:64:69:38
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUCACfIDuqcGSE1Xqnkqd8aOx65UAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MzRaFw0yMzA5MjUxMTAwMzRaMDMxMTAvBgNV
BAMTKDNBRDMyRTI2MjlCN0VGMDNGQTlCM0QyOUZDOENBNzlDQkExRjIzMjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBtx7xlgQQOWJiMU2C4KepoPnG
wEmdbySwaoi+/Fy1IqQCf5MR3YJ/HZhmKvlO81aBIJq0zGVB3/RolnshEOKXRGT0
Pqey94B3L5BZyB2pgUeYapqVhVWFWAILmN/qP9PKRkaDxQ6EPAZ+W2Q9nzPALsvh
F9SQ5Y396uPqe8/uhViOfB1Ceo7DeMhWMKBS6GRFRm6tvHYYi1XYbxHikGJk83F0
6inBewr6vnsR58xpiEKyithQurq9xYQN9wSzFTZiMI/nETwoOdqXHqIKKE/o65wc
54KUq+DqAXlBzrOIZS5T9RvYmnMFw6+A5zvN8QE3034N52UCFSZi6CMT21BZAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUOtMuJim37wP6mz0p/IynnLofIyUwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzOTYyM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
mzANBgkqhkiG9w0BAQsFAAOCAQEADl2jSZyZxatlvm22Je48UiEEt5Ghl6rKZm6b
6xi8yPYtbcM0KOL5L2QF7JunFfDvqUzodzI1VduNsEzR/WYjXzCHPIwnILKcyyVx
Ma+w7co8T872Yn+hgTMTGh8i2kzfnP6tzFf4vbt2mmw1S164V+7OOc4zQmBhXrtr
ZLDsOt8CrOjcdsyIQuLZSzxgk4lsYp6ioupYL+JEsC/QDEWI4Z2pcOqf/GoQJVsn
N823eFUpdIaNUs6IpgjZ1rs1p2s2aC6Z9gtb5gRCm0DqT1Ds48R7gMPmbWkEc1rc
W/tnTB82SZlfneWsA4M8q/UEWASn9ZSAjZTKQSo6IquzPWRpOA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org