Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a37393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: ZS7/I1s6PUA/NkfHbNhxVcT2WaYTjMx49nXWaz4hnEM=
Subject key identifier: 14:23:F5:0B:92:05:9F:BB:28:3A:FA:C5:A3:B2:C7:05:6B:FB:77:AC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 24B10DFDBEF3BB99E102F0AC7E67881F4C612506
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:18 +0000
ROA not before: Mon 26 Sep 2022 07:56:18 +0000
ROA not after: Mon 25 Sep 2023 08:01:18 +0000
asID: 59282
IP address blocks: 2400:d680:79::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:b1:0d:fd:be:f3:bb:99:e1:02:f0:ac:7e:67:88:1f:4c:61:25:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:18 2022 GMT
Not After : Sep 25 08:01:18 2023 GMT
Subject: CN=1423F50B92059FBB283AFAC5A3B2C7056BFB77AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:98:74:e8:0b:e0:f8:31:90:7f:8e:b7:9c:2a:
e7:97:73:80:37:7d:4d:00:6d:2a:fd:b6:cb:6e:eb:
95:17:80:ae:e6:f0:39:f5:b6:b5:0e:5b:11:52:41:
ff:4f:f0:eb:c9:55:26:d0:b2:2d:74:fd:1b:1f:15:
a9:e9:fd:c5:87:69:00:67:ab:04:e3:d3:91:86:0f:
d1:75:0d:41:c2:96:c7:b7:fd:77:c6:f4:64:8a:a5:
c4:c8:b7:6a:de:fc:f5:b4:f1:63:14:e7:b6:7c:eb:
15:98:6a:35:49:d9:c9:7c:ed:21:29:b1:21:31:3d:
dc:29:c4:19:5c:69:40:7d:f2:03:ad:98:a4:06:a5:
e9:29:60:64:80:91:e5:fd:bb:ad:8e:8f:88:39:6e:
62:60:5b:d0:27:df:43:c9:f2:61:c4:b3:d9:7b:66:
a6:0c:a2:f4:71:41:65:d0:5d:b2:3e:36:ed:a3:06:
d0:70:ab:42:f7:37:36:b0:39:b4:12:c0:2a:ae:78:
06:a9:a3:7c:6e:b7:e7:d9:cf:84:d5:df:01:63:31:
8d:b7:b0:85:dc:10:ec:92:b4:9b:82:7c:d4:f6:f0:
2d:6b:c1:cf:64:09:75:91:64:2b:da:fa:b4:87:e2:
70:de:22:bc:20:44:00:b7:22:e5:a1:5b:75:14:9a:
c7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:23:F5:0B:92:05:9F:BB:28:3A:FA:C5:A3:B2:C7:05:6B:FB:77:AC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:79::/48
Signature Algorithm: sha256WithRSAEncryption
10:05:50:ad:39:10:5f:af:5e:30:d8:55:6f:1a:09:3c:d1:68:
1c:76:ca:85:f1:65:94:bb:cf:28:41:1c:76:90:d4:06:41:ac:
50:26:c0:e0:2f:5e:3f:8c:5d:71:7d:67:37:be:12:df:f0:f4:
45:35:71:2e:6e:b3:88:55:e0:68:1b:53:96:19:b4:4d:21:cd:
65:cb:e3:e6:7c:c4:0b:e1:cb:53:a6:ef:dd:81:95:41:aa:25:
43:f0:74:3d:8d:16:b7:9d:94:4f:ea:50:90:a4:a4:78:1e:a7:
28:f9:86:c5:0a:aa:94:98:de:64:3f:65:1a:29:81:c9:e2:6a:
b1:9c:9b:5b:45:9a:e0:21:b4:b6:72:ec:02:04:c7:e9:af:41:
43:37:73:43:ae:f0:d6:3d:7d:38:b4:d0:32:f8:be:a6:36:27:
1f:fd:3a:f8:6c:b4:0b:76:77:5d:1b:17:0a:99:a9:a8:d0:71:
b8:ab:4e:cc:47:79:6c:11:1f:49:a6:21:fa:e8:b5:85:76:3d:
dd:e2:18:d2:b0:6b:0c:61:43:81:e3:54:27:5b:1a:d5:ed:24:
d6:1b:ce:93:df:42:77:a6:2d:99:00:7b:1d:c8:61:54:d1:21:
b9:74:f5:bc:f4:73:8d:b6:50:c6:3d:50:e5:e4:53:4e:c3:73:
3f:3d:69:41
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUJLEN/b7zu5nhAvCsfmeIH0xhJQYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MThaFw0yMzA5MjUwODAxMThaMDMxMTAvBgNV
BAMTKDE0MjNGNTBCOTIwNTlGQkIyODNBRkFDNUEzQjJDNzA1NkJGQjc3QUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrmHToC+D4MZB/jrecKueXc4A3
fU0AbSr9tstu65UXgK7m8Dn1trUOWxFSQf9P8OvJVSbQsi10/RsfFanp/cWHaQBn
qwTj05GGD9F1DUHClse3/XfG9GSKpcTIt2re/PW08WMU57Z86xWYajVJ2cl87SEp
sSExPdwpxBlcaUB98gOtmKQGpekpYGSAkeX9u62Oj4g5bmJgW9An30PJ8mHEs9l7
ZqYMovRxQWXQXbI+Nu2jBtBwq0L3NzawObQSwCqueAapo3xut+fZz4TV3wFjMY23
sIXcEOyStJuCfNT28C1rwc9kCXWRZCva+rSH4nDeIrwgRAC3IuWhW3UUmsdbAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUFCP1C5IFn7soOvrFo7LHBWv7d6wwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzczOTNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAHkw
DQYJKoZIhvcNAQELBQADggEBABAFUK05EF+vXjDYVW8aCTzRaBx2yoXxZZS7zyhB
HHaQ1AZBrFAmwOAvXj+MXXF9Zze+Et/w9EU1cS5us4hV4GgbU5YZtE0hzWXL4+Z8
xAvhy1Om792BlUGqJUPwdD2NFredlE/qUJCkpHgepyj5hsUKqpSY3mQ/ZRopgcni
arGcm1tFmuAhtLZy7AIEx+mvQUM3c0Ou8NY9fTi00DL4vqY2Jx/9OvhstAt2d10b
FwqZqajQcbirTsxHeWwRH0mmIfrotYV2Pd3iGNKwawxhQ4HjVCdbGtXtJNYbzpPf
QnemLZkAex3IYVTRIbl09bz0c422UMY9UOXkU07Dcz89aUE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org