Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3364363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 86D3vohafvB4PjZtAn5KgpqJsK+bncrKEOnguKVkgb0=
Subject key identifier: 12:1D:27:8A:97:11:F6:40:02:F4:72:0F:98:F3:45:F6:58:BF:8C:7E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 523297783E8A5E91E5D458B55C7A425363EF9292
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:26 +0000
ROA not before: Mon 26 Sep 2022 10:55:26 +0000
ROA not after: Mon 25 Sep 2023 11:00:26 +0000
asID: 59282
IP address blocks: 2400:d680:3d6::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:32:97:78:3e:8a:5e:91:e5:d4:58:b5:5c:7a:42:53:63:ef:92:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:26 2022 GMT
Not After : Sep 25 11:00:26 2023 GMT
Subject: CN=121D278A9711F64002F4720F98F345F658BF8C7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:95:1e:86:78:3f:23:0a:bd:67:23:ac:59:ab:
ce:41:e6:61:e5:35:15:88:42:0f:5a:a2:39:7b:bd:
16:83:a7:e4:a1:9f:50:47:f6:45:ea:90:b4:f0:b3:
54:8a:82:ba:f3:6d:5d:41:8d:cd:43:74:56:92:91:
4c:0a:24:bd:e8:d4:5f:2c:a3:44:f2:ef:8c:0a:41:
01:86:53:a4:ca:07:0a:f4:63:d0:af:c4:ff:a6:de:
9b:9c:5f:07:db:6e:7b:7b:0c:0e:74:c1:e1:c9:3c:
c6:b9:cf:3e:9c:f4:7e:62:ab:e4:b6:42:55:fc:e7:
4f:9f:39:1e:0b:f6:fd:7c:9f:f4:c9:3c:ba:30:58:
89:83:e6:53:94:3f:7b:6b:78:1b:e9:0a:9a:72:aa:
06:8b:69:e0:4f:d6:1b:d5:0d:f0:0d:27:f6:39:f4:
60:2a:68:56:df:b9:a0:76:eb:da:27:1d:31:48:19:
26:dd:9d:10:2e:52:37:7d:a0:03:a1:98:6a:b6:20:
df:89:37:89:f3:ce:7c:6f:50:b3:51:cc:b1:d1:c9:
ac:a5:f0:b4:eb:c2:99:4e:28:c2:cb:8a:89:4d:bd:
1c:00:94:da:73:ca:e2:6f:50:53:8a:ae:9b:a0:0c:
6f:fe:bc:54:ec:d7:26:54:82:b8:6e:fd:be:74:76:
43:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:1D:27:8A:97:11:F6:40:02:F4:72:0F:98:F3:45:F6:58:BF:8C:7E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3d6::/48
Signature Algorithm: sha256WithRSAEncryption
6d:95:d7:61:29:fd:dc:25:94:0f:5b:f8:ec:51:27:42:02:9d:
a8:ed:81:a6:9a:88:56:4d:83:b9:02:bb:cb:d6:84:09:b1:12:
22:ff:9d:fc:a0:9b:3b:9b:4e:7c:f3:30:cd:3c:83:50:b5:76:
f0:1c:c5:9e:10:61:04:5b:e8:64:c1:db:a0:be:fd:87:0b:bf:
d5:b1:c0:96:59:c7:eb:83:a1:5d:b6:64:86:81:56:c5:ba:74:
98:b5:c1:d6:52:5e:24:25:36:b5:d4:4d:55:c9:cb:66:5e:22:
cd:9e:85:c6:63:93:bd:77:1b:21:94:e5:0e:a4:01:70:fc:73:
58:72:c8:62:f1:18:f8:b9:42:0e:48:e2:b5:44:a6:75:b9:27:
fe:a1:ca:31:80:8f:53:f0:2c:f3:96:17:7b:f7:44:bc:79:9c:
dc:69:99:1e:94:13:81:51:32:0e:dd:21:1d:85:d9:eb:80:ef:
66:c6:3b:37:a9:c9:9b:69:93:97:08:50:90:a8:23:4c:c0:c9:
c5:54:0b:32:35:c2:94:db:8b:f6:15:94:4a:af:95:95:a1:b6:
5c:d0:14:a1:b0:21:5f:ba:ec:6a:d8:c6:b8:7b:4d:d6:ba:be:
5f:27:44:9a:77:12:f5:92:14:76:7f:e0:6c:51:72:da:21:47:
b8:b4:28:63
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUUjKXeD6KXpHl1Fi1XHpCU2PvkpIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MjZaFw0yMzA5MjUxMTAwMjZaMDMxMTAvBgNV
BAMTKDEyMUQyNzhBOTcxMUY2NDAwMkY0NzIwRjk4RjM0NUY2NThCRjhDN0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQColR6GeD8jCr1nI6xZq85B5mHl
NRWIQg9aojl7vRaDp+Shn1BH9kXqkLTws1SKgrrzbV1Bjc1DdFaSkUwKJL3o1F8s
o0Ty74wKQQGGU6TKBwr0Y9CvxP+m3pucXwfbbnt7DA50weHJPMa5zz6c9H5iq+S2
QlX850+fOR4L9v18n/TJPLowWImD5lOUP3treBvpCppyqgaLaeBP1hvVDfANJ/Y5
9GAqaFbfuaB269onHTFIGSbdnRAuUjd9oAOhmGq2IN+JN4nzznxvULNRzLHRyayl
8LTrwplOKMLLiolNvRwAlNpzyuJvUFOKrpugDG/+vFTs1yZUgrhu/b50dkPdAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUEh0nipcR9kAC9HIPmPNF9li/jH4wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzM2NDM2M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
1jANBgkqhkiG9w0BAQsFAAOCAQEAbZXXYSn93CWUD1v47FEnQgKdqO2BppqIVk2D
uQK7y9aECbESIv+d/KCbO5tOfPMwzTyDULV28BzFnhBhBFvoZMHboL79hwu/1bHA
llnH64OhXbZkhoFWxbp0mLXB1lJeJCU2tdRNVcnLZl4izZ6FxmOTvXcbIZTlDqQB
cPxzWHLIYvEY+LlCDkjitUSmdbkn/qHKMYCPU/As85YXe/dEvHmc3GmZHpQTgVEy
Dt0hHYXZ64DvZsY7N6nJm2mTlwhQkKgjTMDJxVQLMjXClNuL9hWUSq+VlaG2XNAU
obAhX7rsatjGuHtN1rq+XydEmncS9ZIUdn/gbFFy2iFHuLQoYw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org