Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a34643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: X6MEHkfVrtGLyIsuFythX0aiOzetp6aQX6y70hEBoes=
Subject key identifier: F1:80:0A:0F:01:C4:B4:82:7B:1C:3C:A2:8D:89:23:66:15:FA:D4:D0
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3CDB7CAC17AEBEF62779231E97E2AEB28290CA9F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:02 +0000
ROA not before: Mon 26 Sep 2022 07:57:02 +0000
ROA not after: Mon 25 Sep 2023 08:02:02 +0000
asID: 59282
IP address blocks: 2400:d680:4d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:db:7c:ac:17:ae:be:f6:27:79:23:1e:97:e2:ae:b2:82:90:ca:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:02 2022 GMT
Not After : Sep 25 08:02:02 2023 GMT
Subject: CN=F1800A0F01C4B4827B1C3CA28D89236615FAD4D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:32:9b:fe:ac:ce:10:07:03:ac:d0:7d:2e:cb:
94:e8:ed:9d:aa:c1:7f:64:58:a0:da:e1:ef:88:68:
8a:03:9f:a7:b4:83:2b:27:5b:a8:14:b1:54:6c:3a:
e6:b4:55:82:6c:24:19:88:35:09:bc:10:5a:7d:4a:
96:2e:63:6e:70:3b:17:a7:7f:af:c5:27:30:68:70:
e7:db:41:5c:47:81:0e:bd:b6:57:22:50:d7:4a:c5:
a3:59:1b:a7:de:e3:1e:f9:0e:59:dc:c0:c5:06:91:
b8:d4:35:3d:e9:bf:85:00:61:e7:60:eb:b2:07:08:
30:9d:bf:d4:18:b3:0e:9b:95:79:82:07:c0:82:78:
60:d9:9a:14:88:fa:96:54:89:f5:8e:23:f4:49:0e:
9a:60:55:63:a5:e6:c0:b9:78:19:f1:f1:cb:c2:74:
31:03:31:d6:e1:74:bb:43:b6:d4:ed:ed:aa:0e:48:
3a:c3:20:42:e0:62:19:84:82:83:00:d2:de:d9:b7:
65:5a:10:ae:61:4c:3b:8a:f7:26:1b:04:ca:a3:ad:
9b:52:aa:a0:d7:86:8f:8e:66:18:17:60:1f:6c:ae:
31:bb:98:cf:fe:15:34:32:b9:2d:b3:29:fc:a5:09:
8c:94:9e:58:17:e6:88:37:b8:ab:12:56:fb:74:99:
84:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:80:0A:0F:01:C4:B4:82:7B:1C:3C:A2:8D:89:23:66:15:FA:D4:D0
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a34643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:4d::/48
Signature Algorithm: sha256WithRSAEncryption
5a:7b:c2:4c:94:08:a2:e0:f9:5f:95:bd:ff:15:cd:f3:40:af:
41:8b:39:81:c4:32:56:54:6f:97:cd:a7:cc:f6:a8:1e:08:81:
97:9f:83:f2:c3:32:5e:7d:93:1c:b0:58:53:2d:df:51:f7:bb:
7a:19:81:46:eb:cf:9c:8e:72:15:29:0c:cb:4b:56:e9:c7:ab:
b8:34:94:3c:01:b7:ec:b7:32:db:9d:cc:c1:fc:09:53:2b:43:
ff:df:29:0f:69:b2:05:cd:d3:74:0b:5f:79:22:32:3a:a2:3d:
af:cd:31:69:31:0d:e0:96:03:95:4b:3b:c3:c3:5e:9e:b6:75:
dc:fb:b7:19:e3:ba:a7:23:96:92:70:40:78:a6:8e:49:11:8d:
c1:9a:ab:ed:17:28:5c:98:1e:0e:25:43:9c:5f:2c:e0:b5:1f:
85:36:d1:b6:8b:65:e0:03:c4:0e:80:62:78:fb:90:ce:88:1a:
c0:9e:9f:4d:2d:4f:04:87:e0:4f:97:7f:19:d8:43:65:c1:cd:
53:af:55:fa:b2:30:bf:2f:d4:8e:01:64:a8:fb:06:95:55:65:
3d:35:2b:fb:3a:94:5e:48:a9:76:b7:94:c6:98:9d:f1:1e:2d:
5d:f3:d1:48:20:01:ca:e2:86:f7:c3:93:53:34:d5:ee:13:45:
96:cc:f7:bc
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUPNt8rBeuvvYneSMel+KusoKQyp8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MDJaFw0yMzA5MjUwODAyMDJaMDMxMTAvBgNV
BAMTKEYxODAwQTBGMDFDNEI0ODI3QjFDM0NBMjhEODkyMzY2MTVGQUQ0RDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Mpv+rM4QBwOs0H0uy5To7Z2q
wX9kWKDa4e+IaIoDn6e0gysnW6gUsVRsOua0VYJsJBmINQm8EFp9SpYuY25wOxen
f6/FJzBocOfbQVxHgQ69tlciUNdKxaNZG6fe4x75DlncwMUGkbjUNT3pv4UAYedg
67IHCDCdv9QYsw6blXmCB8CCeGDZmhSI+pZUifWOI/RJDppgVWOl5sC5eBnx8cvC
dDEDMdbhdLtDttTt7aoOSDrDIELgYhmEgoMA0t7Zt2VaEK5hTDuK9yYbBMqjrZtS
qqDXho+OZhgXYB9srjG7mM/+FTQyuS2zKfylCYyUnlgX5og3uKsSVvt0mYQnAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQU8YAKDwHEtIJ7HDyijYkjZhX61NAwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzQ2NDNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAE0w
DQYJKoZIhvcNAQELBQADggEBAFp7wkyUCKLg+V+Vvf8VzfNAr0GLOYHEMlZUb5fN
p8z2qB4IgZefg/LDMl59kxywWFMt31H3u3oZgUbrz5yOchUpDMtLVunHq7g0lDwB
t+y3MtudzMH8CVMrQ//fKQ9psgXN03QLX3kiMjqiPa/NMWkxDeCWA5VLO8PDXp62
ddz7txnjuqcjlpJwQHimjkkRjcGaq+0XKFyYHg4lQ5xfLOC1H4U20baLZeADxA6A
Ynj7kM6IGsCen00tTwSH4E+XfxnYQ2XBzVOvVfqyML8v1I4BZKj7BpVVZT01K/s6
lF5IqXa3lMaYnfEeLV3z0UggAcrihvfDk1M01e4TRZbM97w=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org