Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a63633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: pFFU8gcpa/k///adyGHPcJaxBQDIlgQssq0O3XhgJ24=
Subject key identifier: CC:D2:C0:01:67:4E:DC:7F:BE:C3:7D:76:23:38:89:70:20:D5:2B:74
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6F1A78F1821E851C4E7D7A52D030342AD666430B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:19 +0000
ROA not before: Mon 26 Sep 2022 07:56:19 +0000
ROA not after: Mon 25 Sep 2023 08:01:19 +0000
asID: 59282
IP address blocks: 2400:d680:cc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:1a:78:f1:82:1e:85:1c:4e:7d:7a:52:d0:30:34:2a:d6:66:43:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:19 2022 GMT
Not After : Sep 25 08:01:19 2023 GMT
Subject: CN=CCD2C001674EDC7FBEC37D762338897020D52B74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:87:46:59:d9:a4:30:59:b2:e3:e1:82:40:db:
51:cf:2e:4f:44:e6:38:0b:0f:86:6a:71:86:3d:4e:
a6:6e:ad:e6:ea:a4:ed:21:81:1b:b8:dc:f8:04:74:
7c:53:d5:e8:94:39:0b:04:02:59:77:da:91:85:3f:
57:5e:97:cb:3d:76:76:f4:a2:3f:9a:77:da:03:20:
3a:4f:a8:f1:7d:e4:6a:96:62:57:26:49:4b:4c:d9:
88:a1:97:e1:72:bf:6e:17:35:15:7a:81:4b:49:73:
92:4c:e0:d6:85:63:18:d4:a9:12:3a:5a:0c:5d:57:
90:09:20:92:5b:30:fa:3e:d7:10:43:da:71:85:f1:
68:93:d6:3b:06:8d:8e:5b:a0:8f:e5:fc:19:26:c5:
57:06:98:20:3f:04:55:9e:ba:6d:3e:e1:d3:5b:2e:
80:9b:f4:b8:33:72:29:7e:f9:ed:4f:42:38:ce:f4:
f8:68:af:54:29:9a:42:91:d0:9d:f9:08:c5:d6:12:
e3:bc:87:c3:ba:4e:0a:07:59:a2:7f:62:30:5c:27:
79:72:04:f4:fe:b4:fa:25:44:d8:c9:1e:a7:1d:5b:
0a:62:bb:aa:3b:bd:76:83:d4:2f:ca:8d:34:c5:9b:
ab:d8:48:5d:7a:5e:6f:23:88:7f:78:f6:46:8a:33:
8b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:D2:C0:01:67:4E:DC:7F:BE:C3:7D:76:23:38:89:70:20:D5:2B:74
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a63633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:cc::/48
Signature Algorithm: sha256WithRSAEncryption
26:23:de:a5:21:e8:58:18:99:27:e3:01:86:0a:11:05:63:5c:
5b:ae:a7:b0:6b:b2:fe:05:d8:d2:e0:8c:2d:d3:76:66:31:da:
f1:c1:2d:65:38:9d:b3:0d:e4:5e:6c:57:e8:f2:e4:4b:2f:99:
ff:44:58:b6:e1:b0:d1:16:90:6a:32:14:9b:b3:c4:38:12:c0:
c7:8e:18:4c:03:f4:4d:5f:c8:b0:9e:df:e1:7a:2d:78:0e:72:
89:e9:cf:58:25:72:15:ae:38:1d:1e:87:2a:28:19:54:28:1a:
24:2f:4e:9c:87:49:69:45:84:87:1a:c0:cc:81:46:6b:98:e9:
1c:7d:c3:62:91:a4:08:30:2a:94:7c:97:87:e7:29:2a:ff:7a:
20:8d:9a:3b:49:7c:84:78:09:05:8e:3b:a9:dc:03:5d:06:b9:
bc:fa:60:6f:f0:3e:f7:d0:ad:fe:a3:16:bc:70:c2:88:6d:7e:
e5:9c:0f:47:65:29:41:dd:be:d3:8c:03:9c:c8:65:0c:86:04:
e2:8c:60:29:ff:26:d7:af:a6:0f:36:33:66:9e:9d:69:63:08:
7f:64:22:30:10:cc:80:25:47:2f:0d:13:a4:ae:40:03:a4:64:
e1:5b:c6:4f:1b:b7:1d:5f:ba:79:94:fd:a0:51:b3:c1:c3:0f:
2b:58:ce:33
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUbxp48YIehRxOfXpS0DA0KtZmQwswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MTlaFw0yMzA5MjUwODAxMTlaMDMxMTAvBgNV
BAMTKENDRDJDMDAxNjc0RURDN0ZCRUMzN0Q3NjIzMzg4OTcwMjBENTJCNzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOh0ZZ2aQwWbLj4YJA21HPLk9E
5jgLD4ZqcYY9TqZurebqpO0hgRu43PgEdHxT1eiUOQsEAll32pGFP1del8s9dnb0
oj+ad9oDIDpPqPF95GqWYlcmSUtM2Yihl+Fyv24XNRV6gUtJc5JM4NaFYxjUqRI6
WgxdV5AJIJJbMPo+1xBD2nGF8WiT1jsGjY5boI/l/BkmxVcGmCA/BFWeum0+4dNb
LoCb9Lgzcil++e1PQjjO9Phor1QpmkKR0J35CMXWEuO8h8O6TgoHWaJ/YjBcJ3ly
BPT+tPolRNjJHqcdWwpiu6o7vXaD1C/KjTTFm6vYSF16Xm8jiH949kaKM4tHAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUzNLAAWdO3H++w312IziJcCDVK3QwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjM2MzNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAMww
DQYJKoZIhvcNAQELBQADggEBACYj3qUh6FgYmSfjAYYKEQVjXFuup7Brsv4F2NLg
jC3TdmYx2vHBLWU4nbMN5F5sV+jy5Esvmf9EWLbhsNEWkGoyFJuzxDgSwMeOGEwD
9E1fyLCe3+F6LXgOconpz1glchWuOB0ehyooGVQoGiQvTpyHSWlFhIcawMyBRmuY
6Rx9w2KRpAgwKpR8l4fnKSr/eiCNmjtJfIR4CQWOO6ncA10Gubz6YG/wPvfQrf6j
FrxwwohtfuWcD0dlKUHdvtOMA5zIZQyGBOKMYCn/Jtevpg82M2aenWljCH9kIjAQ
zIAlRy8NE6SuQAOkZOFbxk8btx1funmU/aBRs8HDDytYzjM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org