Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a38613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: HcNzea9dpeStjLhiZGTxcyYvCGH7DoShh3EN2VLFyAo=
Subject key identifier: B6:67:6E:B9:2D:82:34:92:8C:34:E5:6F:32:41:16:C4:54:A6:63:83
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 11C363854EA81FBF9CC9B57779ABCF57A7F32E98
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:10 +0000
ROA not before: Mon 26 Sep 2022 07:57:10 +0000
ROA not after: Mon 25 Sep 2023 08:02:10 +0000
asID: 59282
IP address blocks: 2400:d680:8a::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:c3:63:85:4e:a8:1f:bf:9c:c9:b5:77:79:ab:cf:57:a7:f3:2e:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:10 2022 GMT
Not After : Sep 25 08:02:10 2023 GMT
Subject: CN=B6676EB92D8234928C34E56F324116C454A66383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:81:fd:f4:1b:87:b9:6f:23:8b:73:eb:1f:74:
a1:12:03:f8:38:e9:e5:4e:06:21:39:53:0c:73:ca:
32:23:cf:eb:e2:e6:4b:25:c1:87:b9:02:1c:1d:0e:
30:2e:71:0a:41:f8:a9:c8:6b:47:1a:d1:26:ef:b9:
79:0f:d1:33:1b:ca:2d:45:06:dd:0b:e9:36:20:62:
00:8b:e8:84:02:40:94:b4:4b:34:60:67:ea:43:f3:
75:64:6b:da:d5:91:ab:5b:37:a1:4f:fb:a0:05:89:
ac:dc:1e:39:04:1e:a4:cf:b0:99:a3:ec:a1:a3:fe:
bb:d6:43:04:a8:4c:b3:2b:c1:4f:25:f9:a9:98:1b:
4a:2f:6a:94:6a:4e:c7:1b:90:30:30:37:aa:3f:de:
42:f7:a4:a2:d4:31:1f:0f:f7:fc:b6:93:21:c9:af:
85:42:35:b3:0f:66:f7:9b:69:d2:1d:9a:f6:e0:f7:
b8:c8:90:02:9f:d3:16:5c:b3:8b:d1:89:39:9d:9f:
77:92:96:18:a6:a4:63:47:bb:2f:3c:86:5b:c4:1b:
1a:6e:24:b4:5a:fb:31:8b:65:38:97:8d:e6:5a:33:
0d:8c:d1:8e:d3:3d:51:69:b8:13:90:30:d6:b1:2a:
44:cb:63:6e:40:2f:ef:7c:92:cd:43:01:06:55:f1:
bd:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:67:6E:B9:2D:82:34:92:8C:34:E5:6F:32:41:16:C4:54:A6:63:83
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:8a::/48
Signature Algorithm: sha256WithRSAEncryption
60:b3:16:30:aa:38:ef:87:01:f1:c4:b6:f3:7b:3a:3b:97:a4:
f5:7b:c0:c9:18:f7:ff:88:ef:8c:65:b0:74:9c:76:63:58:09:
5e:0d:23:29:0a:c8:38:d0:bd:7e:55:44:0d:fd:45:11:18:80:
0a:18:6a:c9:7b:a4:80:9d:ce:8d:a2:01:79:e2:3d:43:6f:27:
e4:ea:44:cf:06:de:2f:59:d1:72:ff:9b:fe:20:6d:f8:dd:7e:
70:1e:b3:53:a0:25:f1:7e:1c:5d:fe:84:00:3d:f7:66:80:0a:
1e:9f:7b:6e:e7:9e:bc:7c:0c:c1:14:f4:0c:8a:58:46:f3:d2:
42:28:1e:e2:8d:db:cb:65:60:2d:02:a8:9b:6d:d1:9e:e9:4a:
99:95:56:55:57:f7:c7:7e:35:09:6f:a5:8b:9f:9c:09:bb:a7:
b4:21:c7:20:cb:c7:ec:fe:11:f1:20:e3:08:fe:98:08:bc:44:
fb:54:99:bd:d0:7a:e0:ec:24:60:59:58:70:41:96:3c:01:88:
0e:b2:54:bd:b5:e7:38:4b:c6:37:05:71:fa:2e:f4:b9:d7:1d:
96:06:31:b2:ec:05:c4:bb:45:20:1b:77:23:5e:dd:70:cf:38:
62:0d:52:e4:be:2f:31:6f:80:55:65:e5:d6:14:cc:84:ce:2d:
69:12:34:5b
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUEcNjhU6oH7+cybV3eavPV6fzLpgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MTBaFw0yMzA5MjUwODAyMTBaMDMxMTAvBgNV
BAMTKEI2Njc2RUI5MkQ4MjM0OTI4QzM0RTU2RjMyNDExNkM0NTRBNjYzODMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJgf30G4e5byOLc+sfdKESA/g4
6eVOBiE5UwxzyjIjz+vi5kslwYe5AhwdDjAucQpB+KnIa0ca0SbvuXkP0TMbyi1F
Bt0L6TYgYgCL6IQCQJS0SzRgZ+pD83Vka9rVkatbN6FP+6AFiazcHjkEHqTPsJmj
7KGj/rvWQwSoTLMrwU8l+amYG0ovapRqTscbkDAwN6o/3kL3pKLUMR8P9/y2kyHJ
r4VCNbMPZvebadIdmvbg97jIkAKf0xZcs4vRiTmdn3eSlhimpGNHuy88hlvEGxpu
JLRa+zGLZTiXjeZaMw2M0Y7TPVFpuBOQMNaxKkTLY25AL+98ks1DAQZV8b0nAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUtmduuS2CNJKMNOVvMkEWxFSmY4MwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzg2MTNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAIow
DQYJKoZIhvcNAQELBQADggEBAGCzFjCqOO+HAfHEtvN7OjuXpPV7wMkY9/+I74xl
sHScdmNYCV4NIykKyDjQvX5VRA39RREYgAoYasl7pICdzo2iAXniPUNvJ+TqRM8G
3i9Z0XL/m/4gbfjdfnAes1OgJfF+HF3+hAA992aACh6fe27nnrx8DMEU9AyKWEbz
0kIoHuKN28tlYC0CqJtt0Z7pSpmVVlVX98d+NQlvpYufnAm7p7QhxyDLx+z+EfEg
4wj+mAi8RPtUmb3QeuDsJGBZWHBBljwBiA6yVL215zhLxjcFcfou9LnXHZYGMbLs
BcS7RSAbdyNe3XDPOGINUuS+LzFvgFVl5dYUzITOLWkSNFs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org