Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a36313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: YJJoXq4oknuZz+wJZD5+kyeB+u5ZowoSohvNPU6Myow=
Subject key identifier: D0:A8:FA:62:CE:FA:68:39:6C:4D:35:51:C6:5B:A8:B5:4A:FC:E5:51
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 71D03A24C98B645D2721C67BE179A67FAC55C83B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:34 +0000
ROA not before: Mon 26 Sep 2022 07:56:34 +0000
ROA not after: Mon 25 Sep 2023 08:01:34 +0000
asID: 59282
IP address blocks: 2400:d680:61::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:d0:3a:24:c9:8b:64:5d:27:21:c6:7b:e1:79:a6:7f:ac:55:c8:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:34 2022 GMT
Not After : Sep 25 08:01:34 2023 GMT
Subject: CN=D0A8FA62CEFA68396C4D3551C65BA8B54AFCE551
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4c:95:8c:1a:8b:34:c1:f9:bd:61:fd:78:08:
7c:6b:47:0f:11:22:c3:23:11:e2:75:2e:46:aa:d3:
88:f0:a4:86:8c:f7:05:2a:f3:59:df:b0:79:95:eb:
58:3e:5c:f9:82:6e:62:42:9d:17:de:23:bd:12:eb:
8d:50:5b:2e:c8:ee:84:ff:10:7c:16:06:89:b0:1d:
51:e6:cd:2a:67:8f:6a:12:3e:43:22:06:2a:84:1a:
ce:3a:db:6c:5d:c1:ea:c6:9a:36:4c:75:da:d4:6e:
e6:17:6f:75:76:c7:19:a5:2b:3c:f4:93:94:34:ef:
7a:40:96:b2:db:e1:0f:d2:a6:fb:33:62:8e:36:91:
68:b6:e3:84:1f:b3:1d:79:a1:01:9e:19:4c:fc:f5:
ed:67:72:e7:c7:f1:d2:e1:b9:32:0d:77:3e:50:28:
2f:0f:dd:d3:70:57:84:36:74:fe:94:cc:67:08:48:
ef:87:aa:02:6e:fc:64:1b:74:a3:76:7f:6d:a1:e1:
c0:86:32:2c:81:0c:10:31:12:bd:4b:70:ef:36:7b:
6a:74:ba:8b:c7:e6:2f:db:82:ad:d0:a4:5b:72:22:
37:a2:7e:a7:65:36:ea:ab:b6:8f:44:45:c8:37:16:
5b:4b:2c:57:a5:a4:13:eb:55:eb:47:91:36:3d:61:
e1:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:A8:FA:62:CE:FA:68:39:6C:4D:35:51:C6:5B:A8:B5:4A:FC:E5:51
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:61::/48
Signature Algorithm: sha256WithRSAEncryption
6e:c0:75:f2:2b:64:71:bf:6a:9f:4f:aa:d8:0d:8f:a1:e8:36:
32:e6:18:f1:a4:7a:cd:c6:6a:0e:4c:41:da:e1:cc:7d:af:f7:
04:db:8f:55:73:18:3f:97:e1:a7:45:00:bb:fb:10:46:58:e9:
39:0f:19:27:52:f1:a3:69:f7:99:52:a3:9c:51:37:06:62:97:
74:ea:96:4a:cc:22:71:5d:97:f0:12:08:47:80:b5:b7:03:3d:
5f:27:f7:c0:56:5f:7e:4a:54:ce:20:6e:c3:af:59:c2:da:ec:
30:a2:f2:0f:5d:79:d1:96:9b:90:05:3c:6b:ec:e0:01:b1:62:
1b:26:d1:2b:d8:f9:f9:51:a7:29:6b:39:37:22:0e:08:a2:e1:
a7:21:00:6a:8f:67:c4:b0:d7:64:30:2b:fd:c1:56:61:25:96:
f6:de:a4:d3:7c:be:4d:44:9a:ef:b8:00:89:a9:86:92:8d:0f:
46:05:85:b4:ea:0c:df:83:50:d5:61:06:a4:0e:ed:53:5b:85:
80:88:ec:05:76:b8:c4:7d:1c:1a:97:38:08:54:07:08:92:a3:
2d:b0:33:0f:d5:16:0a:c0:61:e1:3b:94:42:8d:97:17:55:30:
f4:44:f6:cd:33:2f:e6:90:6b:db:6b:dc:f2:9b:40:9c:2c:8a:
c8:8d:21:08
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUcdA6JMmLZF0nIcZ74Xmmf6xVyDswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MzRaFw0yMzA5MjUwODAxMzRaMDMxMTAvBgNV
BAMTKEQwQThGQTYyQ0VGQTY4Mzk2QzREMzU1MUM2NUJBOEI1NEFGQ0U1NTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjTJWMGos0wfm9Yf14CHxrRw8R
IsMjEeJ1Lkaq04jwpIaM9wUq81nfsHmV61g+XPmCbmJCnRfeI70S641QWy7I7oT/
EHwWBomwHVHmzSpnj2oSPkMiBiqEGs4622xdwerGmjZMddrUbuYXb3V2xxmlKzz0
k5Q073pAlrLb4Q/SpvszYo42kWi244Qfsx15oQGeGUz89e1ncufH8dLhuTINdz5Q
KC8P3dNwV4Q2dP6UzGcISO+HqgJu/GQbdKN2f22h4cCGMiyBDBAxEr1LcO82e2p0
uovH5i/bgq3QpFtyIjeifqdlNuqrto9ERcg3FltLLFelpBPrVetHkTY9YeGzAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQU0Kj6Ys76aDlsTTVRxluotUr85VEwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzYzMTNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAGEw
DQYJKoZIhvcNAQELBQADggEBAG7AdfIrZHG/ap9PqtgNj6HoNjLmGPGkes3Gag5M
QdrhzH2v9wTbj1VzGD+X4adFALv7EEZY6TkPGSdS8aNp95lSo5xRNwZil3TqlkrM
InFdl/ASCEeAtbcDPV8n98BWX35KVM4gbsOvWcLa7DCi8g9dedGWm5AFPGvs4AGx
Yhsm0SvY+flRpylrOTciDgii4achAGqPZ8Sw12QwK/3BVmEllvbepNN8vk1Emu+4
AImphpKND0YFhbTqDN+DUNVhBqQO7VNbhYCI7AV2uMR9HBqXOAhUBwiSoy2wMw/V
FgrAYeE7lEKNlxdVMPRE9s0zL+aQa9tr3PKbQJwsisiNIQg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org