Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3362613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Y04q7sQ8/L7gs7ULTx7R1kkdm9gX9RjaxJ00pUQSfvY=
Subject key identifier: 36:8C:B5:4A:91:11:77:B6:26:6C:E3:84:78:64:EE:98:60:E4:26:5B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 16C2F495FE6AD496618C04EDD3378A9300C6762F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:39 +0000
ROA not before: Mon 26 Sep 2022 10:55:39 +0000
ROA not after: Mon 25 Sep 2023 11:00:39 +0000
asID: 59282
IP address blocks: 2400:d680:3ba::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:c2:f4:95:fe:6a:d4:96:61:8c:04:ed:d3:37:8a:93:00:c6:76:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:39 2022 GMT
Not After : Sep 25 11:00:39 2023 GMT
Subject: CN=368CB54A911177B6266CE3847864EE9860E4265B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:91:f3:ce:57:60:a1:d9:70:38:b8:50:8a:7e:
89:fc:1b:3d:c7:20:95:9e:88:ef:fc:2e:44:8e:de:
90:6b:55:3d:10:d1:be:ef:01:da:e8:0a:7f:57:87:
e2:15:fc:03:c2:9a:94:28:4c:ad:6f:72:b5:54:e7:
c6:d2:d7:8f:ac:f8:39:8d:f8:d7:50:9a:69:30:45:
70:8b:10:24:67:10:a8:ca:df:a7:d4:08:ec:88:ce:
67:bd:6a:6e:26:28:f5:ac:69:77:d5:20:d2:66:7c:
c9:43:e2:af:86:1f:07:10:a6:26:62:28:1c:8f:84:
97:33:34:95:ac:ca:23:c9:a1:c9:c7:a1:7c:e3:e2:
91:9c:2a:9e:fe:0e:41:74:ee:30:dd:7a:4a:ae:be:
ad:c9:d6:9e:8f:c0:4c:b4:9f:a4:cf:87:d6:77:2b:
ba:98:28:4b:9a:b1:50:e0:41:99:27:b7:46:28:7d:
ff:11:2c:62:61:25:1e:71:db:1d:5e:6a:f1:29:d6:
da:46:06:d7:6f:a9:71:53:71:4c:9f:df:ec:28:1c:
51:9a:c0:3b:27:c7:f1:2d:30:d9:55:92:e9:49:36:
3d:aa:89:53:6a:97:a6:95:22:de:52:15:8d:52:be:
d8:df:88:ee:28:bb:82:73:fb:84:1d:d2:d1:fe:82:
3f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:8C:B5:4A:91:11:77:B6:26:6C:E3:84:78:64:EE:98:60:E4:26:5B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3ba::/48
Signature Algorithm: sha256WithRSAEncryption
1b:7b:de:6f:59:ba:44:bd:1e:56:04:b9:86:35:da:2d:15:e9:
3e:cd:b9:68:2b:26:8e:69:cd:31:fd:96:7a:85:cb:b6:93:32:
3f:a6:df:c9:cb:0b:57:45:9b:0e:5b:7f:09:bf:ea:6d:65:1e:
71:a3:f8:b5:16:e7:cc:44:73:f6:37:21:d9:14:45:4c:67:8e:
e6:71:18:28:92:20:7a:4d:2d:70:29:86:d6:6f:be:c4:c9:6c:
c6:b9:03:83:fd:35:df:91:32:e6:e4:d6:61:35:0a:f0:99:95:
21:b2:8f:9e:09:44:0d:a8:31:15:fe:a3:2e:f2:86:f4:2a:c4:
33:54:a9:bb:f9:88:71:c5:15:60:ab:e4:4a:ff:8b:33:28:fd:
f7:24:03:28:6a:b4:06:35:14:c8:39:a0:33:bd:6d:6a:f8:61:
9d:94:5e:83:98:49:99:2c:e6:c3:32:3a:0b:4c:4d:7e:c4:b2:
2b:1b:3a:38:1d:ef:4f:15:3c:77:65:22:03:28:3d:a3:e8:28:
d9:75:a0:05:57:32:94:a9:03:92:f5:51:94:a6:15:9c:b0:95:
92:3d:52:a3:38:94:8d:82:33:93:fd:02:94:9b:7e:af:34:aa:
49:d9:c3:1c:bb:51:e6:46:9b:36:ee:d3:38:59:d8:fd:0e:0e:
93:6c:7e:79
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUFsL0lf5q1JZhjATt0zeKkwDGdi8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MzlaFw0yMzA5MjUxMTAwMzlaMDMxMTAvBgNV
BAMTKDM2OENCNTRBOTExMTc3QjYyNjZDRTM4NDc4NjRFRTk4NjBFNDI2NUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhkfPOV2Ch2XA4uFCKfon8Gz3H
IJWeiO/8LkSO3pBrVT0Q0b7vAdroCn9Xh+IV/APCmpQoTK1vcrVU58bS14+s+DmN
+NdQmmkwRXCLECRnEKjK36fUCOyIzme9am4mKPWsaXfVINJmfMlD4q+GHwcQpiZi
KByPhJczNJWsyiPJocnHoXzj4pGcKp7+DkF07jDdekquvq3J1p6PwEy0n6TPh9Z3
K7qYKEuasVDgQZknt0Yoff8RLGJhJR5x2x1eavEp1tpGBtdvqXFTcUyf3+woHFGa
wDsnx/EtMNlVkulJNj2qiVNql6aVIt5SFY1SvtjfiO4ou4Jz+4Qd0tH+gj/FAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUNoy1SpERd7YmbOOEeGTumGDkJlswHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzM2MjYxM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
ujANBgkqhkiG9w0BAQsFAAOCAQEAG3veb1m6RL0eVgS5hjXaLRXpPs25aCsmjmnN
Mf2WeoXLtpMyP6bfycsLV0WbDlt/Cb/qbWUecaP4tRbnzERz9jch2RRFTGeO5nEY
KJIgek0tcCmG1m++xMlsxrkDg/0135Ey5uTWYTUK8JmVIbKPnglEDagxFf6jLvKG
9CrEM1Spu/mIccUVYKvkSv+LMyj99yQDKGq0BjUUyDmgM71tavhhnZReg5hJmSzm
wzI6C0xNfsSyKxs6OB3vTxU8d2UiAyg9o+go2XWgBVcylKkDkvVRlKYVnLCVkj1S
oziUjYIzk/0ClJt+rzSqSdnDHLtR5kabNu7TOFnY/Q4Ok2x+eQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org