Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a62303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: aG1Kz2cdEEByWa+9VaEihQQiKCOoqORIzu/VhnLMccU=
Subject key identifier: 10:3F:E8:6E:49:16:43:73:F1:8D:41:4F:91:50:C7:42:20:67:60:34
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0BAE71A0761AC9FCE10EBF86E208552524CA64E7
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:07 +0000
ROA not before: Mon 26 Sep 2022 07:57:07 +0000
ROA not after: Mon 25 Sep 2023 08:02:07 +0000
asID: 59282
IP address blocks: 2400:d680:b0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:ae:71:a0:76:1a:c9:fc:e1:0e:bf:86:e2:08:55:25:24:ca:64:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:07 2022 GMT
Not After : Sep 25 08:02:07 2023 GMT
Subject: CN=103FE86E49164373F18D414F9150C74220676034
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ec:31:58:72:a8:78:b1:8f:d6:de:0b:d2:29:
f7:63:6b:77:be:89:38:51:23:bb:8d:a5:d4:11:a1:
41:d7:cb:1b:8b:0d:e5:b3:c8:72:51:74:e7:fc:29:
32:bb:4e:a0:d0:d3:18:25:4a:e7:c8:52:94:c5:ce:
c4:3c:75:53:20:1c:c4:05:9d:5a:0e:27:30:0c:78:
03:50:6d:bd:ef:9e:d9:03:ed:07:80:9b:58:27:46:
02:db:46:1f:1d:28:19:97:1a:c8:ed:86:1e:12:49:
2b:7f:e4:bf:12:24:2f:6a:2d:bb:a7:11:98:18:a5:
8b:9e:7a:e7:a8:ba:eb:4f:7e:5b:52:76:4c:10:5e:
f1:39:a4:dd:69:41:94:6f:ae:20:e5:8b:c9:4d:70:
d8:9c:4d:8c:98:2a:14:9a:35:ad:78:12:5d:91:f1:
a7:54:7d:c6:ec:2e:57:a9:e4:6e:1b:cb:3b:7e:9a:
b6:c9:14:1f:f3:24:1b:26:cd:08:57:b0:84:b7:a6:
48:f8:0f:dc:0d:3e:d3:93:ba:94:70:fe:13:08:86:
5e:0a:65:42:ef:29:b4:ee:8f:55:10:46:93:53:56:
d3:24:7b:c4:77:d3:6e:64:cb:26:21:9c:08:05:74:
79:11:c3:f7:82:d5:f7:db:86:65:8d:b8:f3:19:22:
23:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:3F:E8:6E:49:16:43:73:F1:8D:41:4F:91:50:C7:42:20:67:60:34
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a62303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:b0::/48
Signature Algorithm: sha256WithRSAEncryption
1c:5c:b7:d0:b5:54:d1:0d:6a:ab:37:9a:0a:a2:fd:8c:c9:a3:
fd:f2:a7:73:dc:fd:76:ab:49:77:0a:94:86:03:1f:c8:76:1a:
16:49:f9:c4:71:42:7e:7a:a2:89:d0:1a:06:0a:df:80:a4:af:
59:4c:25:fc:e6:e3:cc:c3:7c:ca:33:e6:f4:87:d3:31:2d:f5:
67:86:8b:6d:28:6b:de:e8:0e:56:36:b5:3a:e6:63:a8:ba:c6:
b9:a7:4a:b8:3a:4a:73:e0:9b:94:23:c8:36:3b:17:f9:5f:cb:
80:43:4d:ae:e6:0d:d6:e5:5d:9a:94:4b:a8:bf:d7:18:1c:ba:
2e:48:45:10:e7:ea:c2:fd:28:ba:9b:4e:b4:9f:37:23:5c:40:
1e:96:b4:62:b7:ba:a5:4b:7a:a4:89:46:ba:db:18:de:93:be:
10:aa:5d:9d:8b:31:56:ef:a7:84:e1:2b:8c:c9:ea:20:92:d7:
18:7b:fd:f6:48:64:f3:9a:37:63:e6:dd:b7:8a:fb:cc:77:4a:
a7:9d:b0:f4:0d:fd:02:dc:08:5c:9f:ad:49:4b:c2:d1:f8:19:
07:13:17:15:84:b9:9c:78:87:e1:a3:84:42:01:5f:79:83:cd:
72:18:f2:e5:8b:0b:7d:31:d6:4d:97:ab:34:0c:53:e8:7d:38:
5c:97:f3:f9
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUC65xoHYayfzhDr+G4ghVJSTKZOcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MDdaFw0yMzA5MjUwODAyMDdaMDMxMTAvBgNV
BAMTKDEwM0ZFODZFNDkxNjQzNzNGMThENDE0RjkxNTBDNzQyMjA2NzYwMzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl7DFYcqh4sY/W3gvSKfdja3e+
iThRI7uNpdQRoUHXyxuLDeWzyHJRdOf8KTK7TqDQ0xglSufIUpTFzsQ8dVMgHMQF
nVoOJzAMeANQbb3vntkD7QeAm1gnRgLbRh8dKBmXGsjthh4SSSt/5L8SJC9qLbun
EZgYpYueeueouutPfltSdkwQXvE5pN1pQZRvriDli8lNcNicTYyYKhSaNa14El2R
8adUfcbsLlep5G4byzt+mrbJFB/zJBsmzQhXsIS3pkj4D9wNPtOTupRw/hMIhl4K
ZULvKbTuj1UQRpNTVtMke8R3025kyyYhnAgFdHkRw/eC1ffbhmWNuPMZIiNjAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUED/obkkWQ3PxjUFPkVDHQiBnYDQwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjIzMDNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAALAw
DQYJKoZIhvcNAQELBQADggEBABxct9C1VNENaqs3mgqi/YzJo/3yp3Pc/XarSXcK
lIYDH8h2GhZJ+cRxQn56oonQGgYK34Ckr1lMJfzm48zDfMoz5vSH0zEt9WeGi20o
a97oDlY2tTrmY6i6xrmnSrg6SnPgm5QjyDY7F/lfy4BDTa7mDdblXZqUS6i/1xgc
ui5IRRDn6sL9KLqbTrSfNyNcQB6WtGK3uqVLeqSJRrrbGN6TvhCqXZ2LMVbvp4Th
K4zJ6iCS1xh7/fZIZPOaN2Pm3beK+8x3SqedsPQN/QLcCFyfrUlLwtH4GQcTFxWE
uZx4h+GjhEIBX3mDzXIY8uWLC30x1k2XqzQMU+h9OFyX8/k=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org