Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a35343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: D/ZiBNsbTr3WNDJ0yia7d/lBK4mMFE+h0G8o+opSo9I=
Subject key identifier: 37:25:82:DE:79:E0:C7:41:AB:1C:44:42:F9:BE:05:A0:80:DF:E3:FB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3CA4436BB639903F9011E9C44C9848E0501D084A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:51 +0000
ROA not before: Mon 26 Sep 2022 07:56:51 +0000
ROA not after: Mon 25 Sep 2023 08:01:51 +0000
asID: 59282
IP address blocks: 2400:d680:54::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:a4:43:6b:b6:39:90:3f:90:11:e9:c4:4c:98:48:e0:50:1d:08:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:51 2022 GMT
Not After : Sep 25 08:01:51 2023 GMT
Subject: CN=372582DE79E0C741AB1C4442F9BE05A080DFE3FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:93:95:42:75:c0:c0:e3:00:16:d1:f4:ec:54:
09:87:b3:73:38:f0:04:3f:e1:ab:4d:c3:76:28:a7:
c0:f1:04:b6:53:03:74:2a:4a:8a:29:59:67:df:02:
cd:63:c8:31:63:6a:64:c5:cc:bb:40:80:50:97:e0:
71:45:0e:c5:05:51:14:4f:69:ec:2b:81:04:12:38:
85:7c:7c:f7:74:6e:b9:74:56:f9:6f:13:01:eb:c1:
e0:88:5e:a9:69:ac:79:a0:bf:11:a1:27:a2:26:a8:
17:45:94:f8:b9:35:db:12:7f:a5:01:a4:cd:47:34:
6e:72:da:34:40:de:61:06:fa:6b:80:8e:1d:37:0d:
70:8d:3d:7d:72:d9:db:cd:0d:2a:d8:2f:e9:18:fa:
36:3f:b6:c6:93:50:39:8e:28:1d:1c:4a:1b:e6:cb:
a1:5a:c4:7b:bc:04:e5:62:dd:78:0e:7a:52:29:09:
85:74:d5:89:21:55:79:2a:ab:9d:0d:13:c7:31:1a:
b6:a6:4f:de:2e:9e:f5:44:1a:5c:0c:71:76:e5:9f:
6f:86:00:57:ec:8e:43:4f:bc:4b:08:af:25:cc:b1:
c3:5c:23:c9:d2:c9:d1:6f:3f:74:59:c2:fd:c1:bc:
ac:1b:83:d7:26:74:9c:99:29:6e:76:8b:ef:1a:10:
bc:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:25:82:DE:79:E0:C7:41:AB:1C:44:42:F9:BE:05:A0:80:DF:E3:FB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a35343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:54::/48
Signature Algorithm: sha256WithRSAEncryption
01:f0:7c:e9:72:c5:a9:b8:aa:3a:f3:13:d7:c8:21:cc:48:da:
98:c6:c2:d6:7d:72:fe:6e:4d:62:9c:c6:b3:72:d0:4c:8b:a7:
8f:76:3a:87:4c:15:ea:da:59:ed:47:af:8f:3b:d8:50:da:54:
b8:99:be:b8:7f:15:6d:cc:2d:08:d7:95:0e:96:da:a7:14:32:
00:42:1c:43:2a:9c:03:e5:cc:d5:05:6a:79:50:ba:32:e5:ec:
88:7f:bb:2e:2d:ad:03:00:62:cd:ac:65:a4:16:11:19:5e:f1:
b4:6c:c5:60:8b:19:c9:2f:a0:8d:a6:a4:2b:ca:b2:53:d0:96:
85:90:42:b7:85:ea:4d:0e:90:96:3b:13:8f:e7:9b:25:0e:03:
14:49:19:9d:dc:a2:08:66:bc:c1:23:dc:d9:30:d0:c8:8e:3c:
61:b6:7b:2f:9c:e6:b1:39:a0:71:a1:08:08:65:0d:ef:ea:4a:
43:04:6b:e6:b9:e8:58:70:87:bd:72:7d:e9:fc:79:4f:8f:52:
bd:1f:ce:16:8f:b4:6d:66:12:c7:72:68:65:d5:8d:ad:14:20:
b9:0a:44:cf:95:e2:ea:87:8f:22:53:21:d8:aa:78:65:8a:41:
51:d2:27:79:65:67:49:71:fc:f3:95:29:cf:96:66:7c:c6:69:
c0:dd:c6:d3
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUPKRDa7Y5kD+QEenETJhI4FAdCEowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2NTFaFw0yMzA5MjUwODAxNTFaMDMxMTAvBgNV
BAMTKDM3MjU4MkRFNzlFMEM3NDFBQjFDNDQ0MkY5QkUwNUEwODBERkUzRkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjk5VCdcDA4wAW0fTsVAmHs3M4
8AQ/4atNw3Yop8DxBLZTA3QqSoopWWffAs1jyDFjamTFzLtAgFCX4HFFDsUFURRP
aewrgQQSOIV8fPd0brl0VvlvEwHrweCIXqlprHmgvxGhJ6ImqBdFlPi5NdsSf6UB
pM1HNG5y2jRA3mEG+muAjh03DXCNPX1y2dvNDSrYL+kY+jY/tsaTUDmOKB0cShvm
y6FaxHu8BOVi3XgOelIpCYV01YkhVXkqq50NE8cxGramT94unvVEGlwMcXbln2+G
AFfsjkNPvEsIryXMscNcI8nSydFvP3RZwv3BvKwbg9cmdJyZKW52i+8aELxfAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUNyWC3nngx0GrHERC+b4FoIDf4/swHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzUzNDNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAFQw
DQYJKoZIhvcNAQELBQADggEBAAHwfOlyxam4qjrzE9fIIcxI2pjGwtZ9cv5uTWKc
xrNy0EyLp492OodMFeraWe1Hr4872FDaVLiZvrh/FW3MLQjXlQ6W2qcUMgBCHEMq
nAPlzNUFanlQujLl7Ih/uy4trQMAYs2sZaQWERle8bRsxWCLGckvoI2mpCvKslPQ
loWQQreF6k0OkJY7E4/nmyUOAxRJGZ3coghmvMEj3Nkw0MiOPGG2ey+c5rE5oHGh
CAhlDe/qSkMEa+a56Fhwh71yfen8eU+PUr0fzhaPtG1mEsdyaGXVja0UILkKRM+V
4uqHjyJTIdiqeGWKQVHSJ3llZ0lx/POVKc+WZnzGacDdxtM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org