Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3363333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: jTSqNsUtnPmr2Zzzb8/xzkgcsGiGvzCLYZT7CixnUgk=
Subject key identifier: 98:56:1A:AC:A1:CF:E4:B6:29:7C:6B:6C:B1:4C:01:21:92:BE:F7:68
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0289705F0D79138A3A46007F4E5BB38F0CB4928C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:35 +0000
ROA not before: Mon 26 Sep 2022 10:55:35 +0000
ROA not after: Mon 25 Sep 2023 11:00:35 +0000
asID: 59282
IP address blocks: 2400:d680:3c3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:89:70:5f:0d:79:13:8a:3a:46:00:7f:4e:5b:b3:8f:0c:b4:92:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:35 2022 GMT
Not After : Sep 25 11:00:35 2023 GMT
Subject: CN=98561AACA1CFE4B6297C6B6CB14C012192BEF768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:53:d9:c9:ef:a8:18:de:d4:17:58:91:ec:79:
09:4c:8f:bf:15:60:2e:8c:2d:09:23:0b:b9:0d:24:
22:4d:a1:7b:20:14:2f:86:5d:4f:16:2f:bb:50:aa:
7f:13:69:91:21:f5:5b:2a:af:96:53:81:64:93:61:
54:7f:f4:fa:7f:0d:5f:65:77:27:16:78:ec:aa:e3:
83:dc:66:fa:84:4f:c9:20:75:b9:a5:84:00:80:97:
87:ab:63:a6:e2:89:a6:8c:11:aa:c2:e4:7f:d2:70:
62:c9:46:a0:ab:bd:71:44:c7:ec:9b:41:28:fe:ef:
70:5b:af:11:f8:56:03:d7:a0:3d:ab:da:4a:8e:ce:
5c:83:00:72:4d:e6:20:3d:b5:a0:6d:d4:55:1d:ed:
61:53:2e:02:27:69:ea:02:a5:67:c6:46:c6:e1:4c:
a5:c0:f1:77:1c:cb:95:96:48:73:09:f6:e3:48:ec:
a1:67:dd:59:28:c3:00:29:72:24:aa:b1:66:ec:d4:
18:81:01:ae:ca:c5:30:e2:0d:5f:07:d4:8a:83:88:
91:45:bc:3c:6b:e9:4d:b5:6c:e5:9c:c2:57:3a:af:
3b:b4:02:6d:01:2a:9b:3e:d8:32:b9:b3:14:41:bc:
84:b5:de:a7:04:2d:45:a1:1f:91:58:68:28:96:b2:
5d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:56:1A:AC:A1:CF:E4:B6:29:7C:6B:6C:B1:4C:01:21:92:BE:F7:68
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3c3::/48
Signature Algorithm: sha256WithRSAEncryption
1c:fa:a9:53:86:cc:0b:db:f8:b2:ab:df:31:e2:7e:52:53:f9:
e0:fa:95:8f:9a:19:26:ba:27:30:e6:ce:ab:ab:c9:c6:ba:6f:
c1:3f:9c:19:43:0c:16:bd:43:a9:95:fb:e1:46:a6:4b:aa:bd:
d6:a1:09:40:ae:63:e1:da:19:74:71:e9:4f:5b:44:b0:28:01:
1f:08:13:8a:6a:5f:4e:9a:51:e0:c2:3a:18:57:fb:16:36:7b:
24:a0:cc:fd:90:45:93:1e:64:ef:c7:0d:14:f2:2d:d3:28:29:
68:cd:e7:07:71:aa:ba:e9:27:c4:91:00:b5:30:ed:da:7f:16:
c9:a3:ce:61:bf:6a:11:46:4c:84:56:6a:71:4d:cd:dc:e4:b2:
fc:64:bd:d9:85:db:e8:25:3d:d1:52:ab:f5:2c:f1:5c:48:c5:
34:91:10:46:1d:92:0a:71:30:44:dc:dd:66:4a:50:bd:c1:7f:
26:f8:f7:c5:d3:c5:5d:4b:6e:bf:b4:76:6d:28:9d:96:94:25:
1f:35:34:92:6a:16:c2:12:04:f4:d9:8d:c7:9a:0a:d7:85:07:
f1:aa:e1:ed:6c:9b:90:e4:6f:cc:55:45:0b:27:41:24:33:cd:
3c:8d:7f:68:b4:67:6f:7c:b3:8d:35:41:c0:2d:9d:c4:3e:02:
d5:96:00:85
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUAolwXw15E4o6RgB/Tluzjwy0kowwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MzVaFw0yMzA5MjUxMTAwMzVaMDMxMTAvBgNV
BAMTKDk4NTYxQUFDQTFDRkU0QjYyOTdDNkI2Q0IxNEMwMTIxOTJCRUY3NjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSU9nJ76gY3tQXWJHseQlMj78V
YC6MLQkjC7kNJCJNoXsgFC+GXU8WL7tQqn8TaZEh9Vsqr5ZTgWSTYVR/9Pp/DV9l
dycWeOyq44PcZvqET8kgdbmlhACAl4erY6biiaaMEarC5H/ScGLJRqCrvXFEx+yb
QSj+73BbrxH4VgPXoD2r2kqOzlyDAHJN5iA9taBt1FUd7WFTLgInaeoCpWfGRsbh
TKXA8Xccy5WWSHMJ9uNI7KFn3VkowwApciSqsWbs1BiBAa7KxTDiDV8H1IqDiJFF
vDxr6U21bOWcwlc6rzu0Am0BKps+2DK5sxRBvIS13qcELUWhH5FYaCiWsl09AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUmFYarKHP5LYpfGtssUwBIZK+92gwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzM2MzMzM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
wzANBgkqhkiG9w0BAQsFAAOCAQEAHPqpU4bMC9v4sqvfMeJ+UlP54PqVj5oZJron
MObOq6vJxrpvwT+cGUMMFr1DqZX74UamS6q91qEJQK5j4doZdHHpT1tEsCgBHwgT
impfTppR4MI6GFf7FjZ7JKDM/ZBFkx5k78cNFPIt0ygpaM3nB3GquuknxJEAtTDt
2n8WyaPOYb9qEUZMhFZqcU3N3OSy/GS92YXb6CU90VKr9SzxXEjFNJEQRh2SCnEw
RNzdZkpQvcF/Jvj3xdPFXUtuv7R2bSidlpQlHzU0kmoWwhIE9NmNx5oK14UH8arh
7WybkORvzFVFCydBJDPNPI1/aLRnb3yzjTVBwC2dxD4C1ZYAhQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org