Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3362663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 8R3JNTwE4nSR7C4gJkv/1p9xXCCd736v+YnZhJFzVJ8=
Subject key identifier: B7:1D:B9:FD:B6:0F:53:CC:3B:D6:A0:09:EC:C1:61:64:69:F7:4F:B8
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1580A708AAA56CCE64C9744912CA52BC55A5A861
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:27 +0000
ROA not before: Mon 26 Sep 2022 10:55:27 +0000
ROA not after: Mon 25 Sep 2023 11:00:27 +0000
asID: 59282
IP address blocks: 2400:d680:3bf::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:80:a7:08:aa:a5:6c:ce:64:c9:74:49:12:ca:52:bc:55:a5:a8:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:27 2022 GMT
Not After : Sep 25 11:00:27 2023 GMT
Subject: CN=B71DB9FDB60F53CC3BD6A009ECC1616469F74FB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:fb:db:78:a0:38:c3:d3:1f:d4:8d:5c:1a:21:
9e:c5:a4:3e:3b:06:f9:04:99:77:3c:5d:99:81:4a:
60:9a:86:56:e0:9c:4d:1f:5d:79:7c:ed:78:dc:44:
3c:69:2d:c0:be:4f:e8:ae:e7:e4:ee:8b:ca:81:2e:
7d:cd:9d:48:25:2b:99:d8:b1:ff:65:3b:2b:fe:da:
62:23:f8:23:4a:05:53:68:e0:29:49:5c:c8:32:18:
5b:2c:5c:e3:61:a6:f1:08:b7:b2:59:95:ad:33:25:
69:0a:65:51:9f:21:a5:a0:dc:2c:fa:8f:1d:93:46:
2e:de:34:1e:d5:cb:f5:17:4a:e3:3e:ce:4b:99:f9:
84:c1:96:92:63:de:14:78:84:bd:ea:b0:be:58:1e:
7a:fb:74:46:2d:ef:9c:ba:2c:d4:0c:34:2f:00:0d:
44:4c:2f:c4:64:8d:1a:0c:1a:c9:c9:71:92:f8:5e:
c1:48:01:f4:32:1c:ce:dc:74:95:fc:0f:2d:d7:dd:
d1:83:0c:3f:78:35:a7:dc:a0:4c:a0:2a:7d:28:f1:
d0:c7:03:2a:0c:0b:b2:6a:c7:bf:60:a9:44:6e:5a:
cb:a3:e5:46:f7:0b:91:ac:1c:86:93:55:2c:88:af:
11:ad:53:7b:2c:0b:bc:4e:f5:00:7a:ba:5f:6b:9c:
94:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:1D:B9:FD:B6:0F:53:CC:3B:D6:A0:09:EC:C1:61:64:69:F7:4F:B8
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3bf::/48
Signature Algorithm: sha256WithRSAEncryption
d0:f0:a1:c0:ef:68:be:a7:19:08:02:f0:02:ef:98:e0:15:45:
37:c8:53:f0:5d:21:b6:5f:1f:75:89:d9:57:fc:35:7d:b3:56:
03:68:f7:d9:73:8b:ca:e6:7c:30:43:d5:2f:a2:1c:c1:41:b2:
f9:01:38:99:06:c5:de:1a:a5:ca:89:08:a6:f0:35:12:40:54:
cb:ff:78:b1:99:04:c4:36:a6:61:70:23:0d:a4:85:6e:99:01:
65:2f:f2:16:9d:de:94:9c:38:2a:3c:cc:bd:31:79:cd:6a:23:
cd:e7:4f:c3:89:03:c3:cc:3e:98:f8:5d:fc:45:b6:89:88:e5:
57:36:5a:9c:9a:ef:79:78:69:e8:bb:92:ff:9b:26:b0:00:91:
11:06:ac:1b:34:13:d9:8c:e8:b1:77:9a:a6:01:79:d0:ac:67:
89:fe:4d:3d:38:51:bc:94:6a:eb:a8:1e:b0:62:ad:5e:8b:75:
25:55:1d:c9:0a:1f:52:1b:5c:54:52:3b:f2:e5:9f:5b:f3:b1:
99:e7:28:9d:41:fb:bc:cd:39:80:ef:b1:8c:f2:68:8a:83:23:
42:ad:60:75:0f:4d:a4:b6:8f:10:12:72:4c:01:6f:5f:9c:42:
9f:8e:3a:24:b7:70:ed:2a:6b:9e:00:9c:57:c0:6b:5b:fc:99:
d9:53:4b:e9
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUFYCnCKqlbM5kyXRJEspSvFWlqGEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MjdaFw0yMzA5MjUxMTAwMjdaMDMxMTAvBgNV
BAMTKEI3MURCOUZEQjYwRjUzQ0MzQkQ2QTAwOUVDQzE2MTY0NjlGNzRGQjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx+9t4oDjD0x/UjVwaIZ7FpD47
BvkEmXc8XZmBSmCahlbgnE0fXXl87XjcRDxpLcC+T+iu5+Tui8qBLn3NnUglK5nY
sf9lOyv+2mIj+CNKBVNo4ClJXMgyGFssXONhpvEIt7JZla0zJWkKZVGfIaWg3Cz6
jx2TRi7eNB7Vy/UXSuM+zkuZ+YTBlpJj3hR4hL3qsL5YHnr7dEYt75y6LNQMNC8A
DURML8RkjRoMGsnJcZL4XsFIAfQyHM7cdJX8Dy3X3dGDDD94NafcoEygKn0o8dDH
AyoMC7Jqx79gqURuWsuj5Ub3C5GsHIaTVSyIrxGtU3ssC7xO9QB6ul9rnJQJAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUtx25/bYPU8w71qAJ7MFhZGn3T7gwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzM2MjY2M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
vzANBgkqhkiG9w0BAQsFAAOCAQEA0PChwO9ovqcZCALwAu+Y4BVFN8hT8F0htl8f
dYnZV/w1fbNWA2j32XOLyuZ8MEPVL6IcwUGy+QE4mQbF3hqlyokIpvA1EkBUy/94
sZkExDamYXAjDaSFbpkBZS/yFp3elJw4KjzMvTF5zWojzedPw4kDw8w+mPhd/EW2
iYjlVzZanJrveXhp6LuS/5smsACREQasGzQT2YzosXeapgF50Kxnif5NPThRvJRq
66gesGKtXot1JVUdyQofUhtcVFI78uWfW/OxmeconUH7vM05gO+xjPJoioMjQq1g
dQ9NpLaPEBJyTAFvX5xCn446JLdw7SprngCcV8BrW/yZ2VNL6Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org