Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3364373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 9xiE8A77PVV8TuRcN+VrAWiBe/nC/a6UXpGszTQEkck=
Subject key identifier: 59:36:EB:D6:BB:C6:A1:52:4E:C0:04:1B:F9:4E:35:C3:DD:00:95:43
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 13D93C713B661F2323E7493C0C199C4B37DF2C6B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:40 +0000
ROA not before: Mon 26 Sep 2022 10:55:40 +0000
ROA not after: Mon 25 Sep 2023 11:00:40 +0000
asID: 59282
IP address blocks: 2400:d680:3d7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:d9:3c:71:3b:66:1f:23:23:e7:49:3c:0c:19:9c:4b:37:df:2c:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:40 2022 GMT
Not After : Sep 25 11:00:40 2023 GMT
Subject: CN=5936EBD6BBC6A1524EC0041BF94E35C3DD009543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:78:aa:7e:93:a0:e0:6f:b0:b2:d9:77:b3:d7:
b5:c3:82:80:a0:d0:46:47:39:2b:23:c2:85:f5:aa:
b3:62:c5:ec:f5:a1:1e:0d:e0:c0:9b:b6:c4:23:23:
d7:77:4d:7f:ca:fe:91:eb:01:ba:f4:2a:b2:da:e6:
0d:d2:24:9f:11:b0:91:58:7e:75:68:c9:5a:49:c6:
83:2e:d0:52:7c:a4:f6:9b:fe:69:96:55:a8:03:1e:
fe:64:1b:0a:91:b7:18:6f:31:c4:ff:2a:f7:60:c9:
03:90:ee:08:d0:b0:8d:98:10:e5:5f:47:1f:77:d2:
59:a6:e2:b9:c8:21:1c:9d:75:3f:f1:b4:e0:b6:f1:
c6:e1:f7:00:82:41:fa:25:30:7c:af:71:52:32:36:
2d:79:a9:04:9e:02:08:4a:ef:27:7c:94:df:88:ca:
f9:b9:dd:ee:60:98:b6:5a:ab:f4:69:d4:65:23:91:
fc:a8:c2:da:52:07:04:0f:f9:93:76:5a:97:42:a9:
70:f5:34:75:b7:c6:1d:b4:4c:c6:2a:30:ad:2d:fa:
1a:68:c8:df:f8:55:b8:22:92:c3:43:9a:ec:73:a3:
e5:08:1a:45:46:67:ff:4a:cb:76:b4:35:0c:68:71:
87:56:e9:fb:3a:54:e9:bd:85:ef:92:fc:ed:a7:10:
5e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:36:EB:D6:BB:C6:A1:52:4E:C0:04:1B:F9:4E:35:C3:DD:00:95:43
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3d7::/48
Signature Algorithm: sha256WithRSAEncryption
78:3f:1a:f7:e2:3c:3f:04:6c:65:6c:43:83:de:76:31:4c:20:
bb:33:f3:6f:a1:cb:df:2e:02:7c:f1:e5:1f:a2:bd:26:a2:1c:
6c:5e:bf:4c:ac:50:3a:da:16:84:d7:6b:a1:2f:b7:fd:89:d0:
ef:42:42:c4:9a:fd:6f:b7:b2:5d:1d:f7:aa:65:44:7c:4a:a1:
d1:ab:07:6b:8d:f3:dd:c0:a6:0d:04:32:be:73:da:a4:ea:f4:
5f:a2:19:4c:bd:3b:bf:10:f7:ad:02:c9:d4:d9:62:5d:c7:68:
58:de:ba:38:a8:9d:e2:7a:16:a5:2b:e6:af:51:30:af:83:5d:
96:34:f4:c8:2d:a6:90:b5:47:7e:76:1a:5c:9a:ce:78:e3:f7:
ec:ca:10:c8:8b:47:01:ba:fb:0d:c8:e2:ae:63:e3:9f:79:f4:
ec:76:23:50:f4:10:59:ed:b6:27:c9:ab:63:14:4f:5c:79:cc:
13:69:56:b4:b9:bd:b1:f4:54:bf:b9:bc:8d:2d:a0:76:7d:c3:
ee:65:d8:90:70:70:2c:29:40:2d:9a:9c:21:9b:9b:64:5f:8f:
57:aa:a4:25:5e:af:a3:29:1e:78:ca:36:76:17:42:d5:df:f5:
c6:8b:76:26:e7:a6:8c:cb:af:91:b2:df:2d:9b:07:31:0b:1e:
0a:66:bc:38
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUE9k8cTtmHyMj50k8DBmcSzffLGswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1NDBaFw0yMzA5MjUxMTAwNDBaMDMxMTAvBgNV
BAMTKDU5MzZFQkQ2QkJDNkExNTI0RUMwMDQxQkY5NEUzNUMzREQwMDk1NDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPeKp+k6Dgb7Cy2Xez17XDgoCg
0EZHOSsjwoX1qrNixez1oR4N4MCbtsQjI9d3TX/K/pHrAbr0KrLa5g3SJJ8RsJFY
fnVoyVpJxoMu0FJ8pPab/mmWVagDHv5kGwqRtxhvMcT/KvdgyQOQ7gjQsI2YEOVf
Rx930lmm4rnIIRyddT/xtOC28cbh9wCCQfolMHyvcVIyNi15qQSeAghK7yd8lN+I
yvm53e5gmLZaq/Rp1GUjkfyowtpSBwQP+ZN2WpdCqXD1NHW3xh20TMYqMK0t+hpo
yN/4VbgiksNDmuxzo+UIGkVGZ/9Ky3a0NQxocYdW6fs6VOm9he+S/O2nEF6ZAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUWTbr1rvGoVJOwAQb+U41w90AlUMwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzM2NDM3M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
1zANBgkqhkiG9w0BAQsFAAOCAQEAeD8a9+I8PwRsZWxDg952MUwguzPzb6HL3y4C
fPHlH6K9JqIcbF6/TKxQOtoWhNdroS+3/YnQ70JCxJr9b7eyXR33qmVEfEqh0asH
a43z3cCmDQQyvnPapOr0X6IZTL07vxD3rQLJ1NliXcdoWN66OKid4noWpSvmr1Ew
r4NdljT0yC2mkLVHfnYaXJrOeOP37MoQyItHAbr7DcjirmPjn3n07HYjUPQQWe22
J8mrYxRPXHnME2lWtLm9sfRUv7m8jS2gdn3D7mXYkHBwLClALZqcIZubZF+PV6qk
JV6voykeeMo2dhdC1d/1xot2JuemjMuvkbLfLZsHMQseCma8OA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org