Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a61323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 4VgAuk3VjKtVZxY4dBBsjT8i1BvmgOgCDdoOcxk7K/E=
Subject key identifier: B3:9B:C2:87:CD:35:43:6E:CA:81:28:93:5F:0C:D7:95:39:92:BA:61
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7C0F2F4F8902396F8304465AC6D8404E0616D918
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:44 +0000
ROA not before: Mon 26 Sep 2022 07:56:44 +0000
ROA not after: Mon 25 Sep 2023 08:01:44 +0000
asID: 59282
IP address blocks: 2400:d680:a2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:0f:2f:4f:89:02:39:6f:83:04:46:5a:c6:d8:40:4e:06:16:d9:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:44 2022 GMT
Not After : Sep 25 08:01:44 2023 GMT
Subject: CN=B39BC287CD35436ECA8128935F0CD7953992BA61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4a:50:c2:5f:a1:23:9e:1b:f5:d4:24:f7:0c:
33:d3:99:2e:8a:e1:21:06:49:1a:0a:3a:99:41:69:
f3:71:68:d1:7a:43:a0:b3:c9:7a:3b:56:1a:8a:b1:
34:89:77:57:98:24:f2:2b:25:30:04:52:97:6e:43:
41:10:d1:a4:87:05:67:0a:f3:50:3b:11:d4:14:95:
60:9a:50:0a:9d:d9:3f:cf:6e:02:d7:c6:a9:fe:d0:
d0:22:d8:63:be:b1:75:6a:2d:ba:f0:d3:07:9d:6e:
16:2e:8a:50:e7:15:a9:2e:08:6d:cc:df:91:08:16:
f9:89:5a:e9:ed:11:f3:2b:37:d6:2c:ed:a5:83:4d:
a1:4f:a2:4b:8e:fe:a4:ce:c4:16:d4:48:75:17:df:
56:c3:b8:da:9b:95:61:c5:f9:4d:a0:8a:e5:37:7b:
d7:b8:43:14:2c:ff:08:d0:cb:31:9d:c5:61:b8:bf:
9a:40:a0:6c:87:25:b4:5b:ff:fb:37:2f:bc:cb:55:
5b:c9:d1:7f:91:a7:83:80:3d:ca:e3:19:87:33:f1:
9f:40:41:db:84:d9:02:8f:c8:7b:13:e9:2f:50:0b:
94:b9:ee:c3:30:f1:2b:2a:fc:c0:11:40:9c:46:44:
ef:a6:33:4f:51:6b:c5:5f:c9:82:4a:f9:db:7d:b0:
d5:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:9B:C2:87:CD:35:43:6E:CA:81:28:93:5F:0C:D7:95:39:92:BA:61
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a61323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:a2::/48
Signature Algorithm: sha256WithRSAEncryption
0e:9c:38:93:de:57:9d:68:e5:67:3f:fc:e7:11:48:53:af:18:
64:20:72:3d:c7:28:49:7d:f7:a1:84:29:bb:0a:54:d9:0d:ab:
dc:23:86:97:7b:78:5b:de:0a:ea:f6:6c:45:80:f5:05:6a:87:
a2:cb:b8:c3:ee:21:6c:28:9d:22:96:fe:be:63:1d:f9:bc:53:
a6:93:ea:38:a9:35:2e:26:95:2f:85:64:c6:de:d7:b2:f9:76:
07:9c:4f:71:f1:8a:06:29:e0:ee:f5:b4:b5:73:b7:95:2a:93:
56:78:c6:ea:66:81:2a:f3:c4:9b:6a:55:ef:c3:65:ed:00:52:
3c:b4:19:be:4e:c3:4c:b1:12:ad:26:70:9b:05:65:ec:c5:a5:
62:b4:64:86:f2:e3:8a:49:12:07:ea:6c:9b:b9:e3:2b:14:d2:
45:59:67:f1:7a:72:74:8a:7f:d6:fe:d1:67:7d:29:3a:0b:d3:
4a:ef:63:60:6b:b1:42:a5:ae:18:da:76:f7:8c:65:8d:f2:df:
ed:ed:3d:ae:55:1e:9c:0f:43:07:2f:fb:ba:df:6a:85:70:4a:
d9:dc:6e:36:21:22:bf:42:be:e8:2f:1f:ae:08:fb:d4:a3:28:
47:1c:6a:50:ce:fe:1d:b9:89:0a:07:ae:52:77:ea:b7:d3:d1:
e8:6e:38:18
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUfA8vT4kCOW+DBEZaxthATgYW2RgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2NDRaFw0yMzA5MjUwODAxNDRaMDMxMTAvBgNV
BAMTKEIzOUJDMjg3Q0QzNTQzNkVDQTgxMjg5MzVGMENENzk1Mzk5MkJBNjEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmSlDCX6Ejnhv11CT3DDPTmS6K
4SEGSRoKOplBafNxaNF6Q6CzyXo7VhqKsTSJd1eYJPIrJTAEUpduQ0EQ0aSHBWcK
81A7EdQUlWCaUAqd2T/PbgLXxqn+0NAi2GO+sXVqLbrw0wedbhYuilDnFakuCG3M
35EIFvmJWuntEfMrN9Ys7aWDTaFPokuO/qTOxBbUSHUX31bDuNqblWHF+U2giuU3
e9e4QxQs/wjQyzGdxWG4v5pAoGyHJbRb//s3L7zLVVvJ0X+Rp4OAPcrjGYcz8Z9A
QduE2QKPyHsT6S9QC5S57sMw8Ssq/MARQJxGRO+mM09Ra8VfyYJK+dt9sNX7AgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUs5vCh801Q27KgSiTXwzXlTmSumEwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjEzMjNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAKIw
DQYJKoZIhvcNAQELBQADggEBAA6cOJPeV51o5Wc//OcRSFOvGGQgcj3HKEl996GE
KbsKVNkNq9wjhpd7eFveCur2bEWA9QVqh6LLuMPuIWwonSKW/r5jHfm8U6aT6jip
NS4mlS+FZMbe17L5dgecT3HxigYp4O71tLVzt5Uqk1Z4xupmgSrzxJtqVe/DZe0A
Ujy0Gb5Ow0yxEq0mcJsFZezFpWK0ZIby44pJEgfqbJu54ysU0kVZZ/F6cnSKf9b+
0Wd9KToL00rvY2BrsUKlrhjadveMZY3y3+3tPa5VHpwPQwcv+7rfaoVwStncbjYh
Ir9CvugvH64I+9SjKEccalDO/h25iQoHrlJ36rfT0ehuOBg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org