Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a37643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: q+AlAhPfU22lk+fExwhJQ7+Sjc1ikkij4DN4FR9fCyo=
Subject key identifier: E3:95:9F:CE:6B:43:7C:E9:34:EE:A4:EC:0E:29:C1:8F:AE:43:F1:D6
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5B45AF75C5585E005EC7F704C74AF75DE990DF73
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:06 +0000
ROA not before: Mon 26 Sep 2022 07:57:06 +0000
ROA not after: Mon 25 Sep 2023 08:02:06 +0000
asID: 59282
IP address blocks: 2400:d680:7d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:45:af:75:c5:58:5e:00:5e:c7:f7:04:c7:4a:f7:5d:e9:90:df:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:06 2022 GMT
Not After : Sep 25 08:02:06 2023 GMT
Subject: CN=E3959FCE6B437CE934EEA4EC0E29C18FAE43F1D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:4b:62:f6:5d:5e:93:bd:45:32:cf:67:1a:0b:
1a:3e:cb:a9:d9:a8:57:8a:82:4f:fc:6a:27:46:7e:
c8:6e:18:46:2d:ae:2e:6c:46:e5:11:24:03:c1:2e:
6d:a4:fc:79:e7:97:ac:a7:8e:48:aa:57:c3:d9:24:
99:26:95:c0:2f:08:47:2f:9e:e2:88:26:29:61:af:
4a:11:95:66:4a:70:26:a6:8b:16:d5:88:6e:8c:d1:
6b:eb:e0:15:56:d2:95:57:88:52:92:de:2f:a3:bd:
0b:28:8b:3d:14:10:7b:76:19:ed:b1:63:fe:b9:89:
e9:21:55:60:c1:8f:7e:0a:2e:27:12:5f:a8:aa:9b:
9d:fd:f3:65:f3:ce:43:3c:6d:75:c8:26:ed:4e:62:
76:07:38:73:33:72:04:74:5c:9b:2d:a3:16:c8:0e:
df:e1:17:42:87:ef:b4:8c:ed:a1:aa:f0:e1:17:8c:
90:04:df:ef:30:72:a3:10:46:d6:a9:ab:69:c1:78:
e2:e1:76:77:22:bd:69:3a:00:1f:80:55:d4:85:6b:
65:36:38:13:19:4f:ff:bd:cd:04:1f:cf:0d:38:d7:
da:b4:d6:7e:f0:8e:c4:93:b9:85:04:30:f3:97:4e:
b6:f0:e1:84:06:76:f0:9b:38:9a:e3:78:8a:b7:af:
8b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:95:9F:CE:6B:43:7C:E9:34:EE:A4:EC:0E:29:C1:8F:AE:43:F1:D6
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:7d::/48
Signature Algorithm: sha256WithRSAEncryption
04:79:c2:ee:39:cb:bc:80:9c:72:c0:7f:ef:63:7f:13:aa:7c:
77:ac:68:59:14:77:48:f8:e0:e4:b3:44:b8:df:42:5e:bd:87:
7e:a0:80:4c:f4:65:4d:4c:a4:f0:37:d4:75:6a:dc:98:65:4d:
37:0a:a5:23:90:c0:98:04:ab:5a:b6:48:b3:c1:ed:00:85:42:
fb:95:e9:13:83:b7:79:85:c4:85:cc:f0:66:2d:19:cd:7c:15:
9f:03:aa:5a:b9:37:3e:17:bf:7e:dc:32:b9:f5:35:14:c1:e5:
ec:88:92:fc:92:ce:6c:f5:4f:e0:66:00:f5:46:86:0b:17:04:
43:58:84:05:dd:49:92:77:b6:e3:5a:41:a4:9e:27:6c:a8:68:
b0:e1:a0:25:ee:3e:5f:46:15:f3:2a:06:d0:fe:f9:8b:40:ed:
d7:d2:67:47:c3:35:50:3d:fc:0d:67:ee:cb:d9:3a:28:fa:8d:
29:fa:7e:9d:10:2d:80:6f:34:d8:96:05:a6:3a:a4:ea:21:38:
e4:ad:a5:a8:f7:8b:fe:7e:8b:8e:91:b7:bd:c4:87:f5:99:4c:
5a:c0:92:f6:52:99:93:3e:fa:d6:cf:68:f7:a2:10:05:eb:ac:
24:5f:bf:a4:f3:c5:0a:9a:38:8a:8d:f5:b1:11:32:8e:40:03:
b7:ca:f8:4b
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUW0WvdcVYXgBex/cEx0r3XemQ33MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MDZaFw0yMzA5MjUwODAyMDZaMDMxMTAvBgNV
BAMTKEUzOTU5RkNFNkI0MzdDRTkzNEVFQTRFQzBFMjlDMThGQUU0M0YxRDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuS2L2XV6TvUUyz2caCxo+y6nZ
qFeKgk/8aidGfshuGEYtri5sRuURJAPBLm2k/Hnnl6ynjkiqV8PZJJkmlcAvCEcv
nuKIJilhr0oRlWZKcCamixbViG6M0Wvr4BVW0pVXiFKS3i+jvQsoiz0UEHt2Ge2x
Y/65iekhVWDBj34KLicSX6iqm53982XzzkM8bXXIJu1OYnYHOHMzcgR0XJstoxbI
Dt/hF0KH77SM7aGq8OEXjJAE3+8wcqMQRtapq2nBeOLhdncivWk6AB+AVdSFa2U2
OBMZT/+9zQQfzw0419q01n7wjsSTuYUEMPOXTrbw4YQGdvCbOJrjeIq3r4tlAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQU45WfzmtDfOk07qTsDinBj65D8dYwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzc2NDNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAH0w
DQYJKoZIhvcNAQELBQADggEBAAR5wu45y7yAnHLAf+9jfxOqfHesaFkUd0j44OSz
RLjfQl69h36ggEz0ZU1MpPA31HVq3JhlTTcKpSOQwJgEq1q2SLPB7QCFQvuV6ROD
t3mFxIXM8GYtGc18FZ8Dqlq5Nz4Xv37cMrn1NRTB5eyIkvySzmz1T+BmAPVGhgsX
BENYhAXdSZJ3tuNaQaSeJ2yoaLDhoCXuPl9GFfMqBtD++YtA7dfSZ0fDNVA9/A1n
7svZOij6jSn6fp0QLYBvNNiWBaY6pOohOOStpaj3i/5+i46Rt73Eh/WZTFrAkvZS
mZM++tbPaPeiEAXrrCRfv6TzxQqaOIqN9bERMo5AA7fK+Es=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org