Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3361353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 2SgW5prsuxMxOHZecdruezeNFj/B+QwMmSUBR5tPMCc=
Subject key identifier: 4A:29:2D:31:B3:D2:A4:B5:6B:03:C8:9B:BD:E4:38:A3:28:A0:84:2A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5137145AA02FB562627F0345F2AA2BCEAD042562
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:48 +0000
ROA not before: Mon 26 Sep 2022 10:55:48 +0000
ROA not after: Mon 25 Sep 2023 11:00:48 +0000
asID: 59282
IP address blocks: 2400:d680:3a5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:37:14:5a:a0:2f:b5:62:62:7f:03:45:f2:aa:2b:ce:ad:04:25:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:48 2022 GMT
Not After : Sep 25 11:00:48 2023 GMT
Subject: CN=4A292D31B3D2A4B56B03C89BBDE438A328A0842A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:03:92:74:c8:5d:ed:73:07:f6:47:d3:97:ba:
4d:23:06:db:d4:43:fa:d9:e9:f6:36:f1:5a:8a:e2:
96:b5:51:20:56:0e:06:5f:f5:20:bd:83:15:e4:f8:
be:f7:2f:0d:81:d9:48:2b:df:28:96:59:b0:d3:69:
3c:00:fa:b3:61:60:8e:ad:30:c3:d6:a9:64:02:46:
0e:df:16:56:d8:9b:91:d3:90:ed:8c:94:2d:50:a8:
4c:4c:d5:a6:e4:5d:51:b9:3c:20:43:e7:88:47:6a:
e6:73:b6:6d:4f:1a:c6:b7:30:6e:77:d0:00:96:a4:
50:28:d2:8e:d2:5f:39:b5:06:d5:59:7d:58:e2:32:
a8:c2:8c:1b:2c:f2:1b:06:34:02:c5:20:6e:68:c4:
0c:85:5a:74:5f:46:f7:ef:fd:b6:5a:cb:e1:e1:ca:
5d:91:2d:e8:98:56:53:33:12:96:01:33:05:87:dc:
93:95:7a:53:31:1a:62:d9:3e:88:c1:8a:0f:85:ce:
c4:ad:34:5a:ec:a3:d6:2f:9f:df:28:e8:7b:fd:2b:
fd:66:bb:cf:19:56:ff:46:cc:4f:64:ae:fd:fc:af:
0f:76:3c:5a:1c:dc:20:af:31:3a:e9:95:2d:17:42:
0b:47:f9:bb:2d:f9:9d:76:50:ed:4f:c5:f5:b2:ff:
a6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:29:2D:31:B3:D2:A4:B5:6B:03:C8:9B:BD:E4:38:A3:28:A0:84:2A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3a5::/48
Signature Algorithm: sha256WithRSAEncryption
24:3d:d9:17:7b:d4:90:37:7a:68:27:6a:88:58:13:56:f3:98:
06:82:e3:84:9e:7b:78:1f:2a:ee:55:ce:6e:24:f1:6d:be:30:
95:d6:e0:4b:e2:1f:50:44:d9:55:76:4b:04:67:9c:a2:0f:2c:
dd:db:b1:04:36:28:3b:45:e2:13:fc:b9:b5:71:42:36:36:fe:
aa:64:cc:5f:39:9e:35:fc:d3:78:fb:8e:fb:08:44:66:1a:08:
a3:cd:8b:2c:ca:dd:dc:28:d1:59:00:3e:35:31:1b:8c:97:00:
f2:59:4f:84:7d:b4:ca:bb:c6:80:c1:fc:c4:4b:26:15:58:b9:
c7:aa:c8:1f:f9:5a:ad:0b:42:da:44:8e:c3:99:9c:bc:4c:74:
37:88:95:05:36:3b:43:4e:cf:5e:e6:c7:c6:ce:2c:8e:44:60:
f6:1b:fa:fd:3f:75:b8:3f:02:d6:1d:3b:57:9e:0b:e6:fc:c9:
3b:80:62:01:77:aa:92:f4:a2:7c:1f:79:60:be:43:68:77:95:
d2:a2:00:7b:c7:d2:15:1f:a1:68:65:8f:5b:46:63:e9:89:c5:
1b:c9:9e:4f:e9:32:78:62:01:d2:9a:1d:d9:df:e7:99:04:8d:
ae:29:60:e6:a9:ff:ad:b1:bf:ae:02:84:71:7d:fa:cb:7d:f4:
10:55:6a:f9
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUUTcUWqAvtWJifwNF8qorzq0EJWIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1NDhaFw0yMzA5MjUxMTAwNDhaMDMxMTAvBgNV
BAMTKDRBMjkyRDMxQjNEMkE0QjU2QjAzQzg5QkJERTQzOEEzMjhBMDg0MkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoA5J0yF3tcwf2R9OXuk0jBtvU
Q/rZ6fY28VqK4pa1USBWDgZf9SC9gxXk+L73Lw2B2Ugr3yiWWbDTaTwA+rNhYI6t
MMPWqWQCRg7fFlbYm5HTkO2MlC1QqExM1abkXVG5PCBD54hHauZztm1PGsa3MG53
0ACWpFAo0o7SXzm1BtVZfVjiMqjCjBss8hsGNALFIG5oxAyFWnRfRvfv/bZay+Hh
yl2RLeiYVlMzEpYBMwWH3JOVelMxGmLZPojBig+FzsStNFrso9Yvn98o6Hv9K/1m
u88ZVv9GzE9krv38rw92PFoc3CCvMTrplS0XQgtH+bst+Z12UO1PxfWy/6aDAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUSiktMbPSpLVrA8ibveQ4oyighCowHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzM2MTM1M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
pTANBgkqhkiG9w0BAQsFAAOCAQEAJD3ZF3vUkDd6aCdqiFgTVvOYBoLjhJ57eB8q
7lXObiTxbb4wldbgS+IfUETZVXZLBGecog8s3duxBDYoO0XiE/y5tXFCNjb+qmTM
XzmeNfzTePuO+whEZhoIo82LLMrd3CjRWQA+NTEbjJcA8llPhH20yrvGgMH8xEsm
FVi5x6rIH/larQtC2kSOw5mcvEx0N4iVBTY7Q07PXubHxs4sjkRg9hv6/T91uD8C
1h07V54L5vzJO4BiAXeqkvSifB95YL5DaHeV0qIAe8fSFR+haGWPW0Zj6YnFG8me
T+kyeGIB0pod2d/nmQSNrilg5qn/rbG/rgKEcX36y330EFVq+Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org