Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a64353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: eqkowGcP7YCiQlIViQ/4GQS7NcRstsPmkIayuDbsD0k=
Subject key identifier: 9B:A2:64:AA:0B:CF:E7:E9:55:1C:A5:2C:F6:04:67:3F:00:21:7B:36
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 02B8EDBBED3F18A358EDF9816504D3EFB5E053D5
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:37 +0000
ROA not before: Mon 26 Sep 2022 07:56:37 +0000
ROA not after: Mon 25 Sep 2023 08:01:37 +0000
asID: 59282
IP address blocks: 2400:d680:d5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:b8:ed:bb:ed:3f:18:a3:58:ed:f9:81:65:04:d3:ef:b5:e0:53:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:37 2022 GMT
Not After : Sep 25 08:01:37 2023 GMT
Subject: CN=9BA264AA0BCFE7E9551CA52CF604673F00217B36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7a:b7:1d:06:b0:71:77:c1:79:8b:60:6c:be:
25:e1:9c:f9:5c:b8:36:45:07:da:ae:35:fd:34:78:
5d:1f:9a:10:81:3f:42:5e:ca:14:52:b9:f7:46:65:
aa:b8:49:c9:81:d3:1f:a3:44:d5:9b:e4:83:ac:ab:
3a:62:a8:6c:a1:86:da:2c:1e:3c:85:22:6d:cd:74:
8a:36:6d:10:25:b3:49:9a:9e:48:1f:35:c0:76:fc:
3a:f7:94:07:fe:16:76:e3:3f:dd:87:5f:4a:d7:3b:
79:31:a1:fb:6d:b2:ae:74:f6:8e:b0:4a:fc:68:21:
75:a8:d7:10:20:f6:19:02:ca:46:db:6c:8a:d8:01:
b2:1c:36:08:55:ca:2f:10:aa:3f:b8:bb:a8:89:f1:
55:09:9f:1f:5b:fb:4c:a1:b0:9d:87:60:c6:5b:50:
9a:b9:e8:cb:ca:b1:3b:20:29:b7:7c:50:93:7b:da:
e6:9d:62:e9:2c:4b:fc:89:a8:59:02:cd:36:c4:bb:
83:1f:f9:9f:f8:27:eb:ba:7d:a8:b3:fa:5e:56:4b:
cb:1e:7c:c4:8f:be:22:3e:e1:69:33:8b:4c:73:eb:
fe:bb:27:fc:a1:b9:0a:e1:fe:02:94:09:da:4b:28:
9b:e6:a2:71:e2:47:d3:ff:2a:c5:e0:20:11:96:47:
18:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:A2:64:AA:0B:CF:E7:E9:55:1C:A5:2C:F6:04:67:3F:00:21:7B:36
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:d5::/48
Signature Algorithm: sha256WithRSAEncryption
a1:4d:c2:de:02:23:76:e5:2c:ed:ef:45:e1:ff:39:eb:e4:12:
c6:cc:e2:77:14:9f:0b:51:73:79:8b:53:85:37:ea:fc:33:92:
15:99:b2:ef:48:5e:ca:e1:10:ff:cd:85:83:bc:f0:64:25:c4:
4e:68:30:a2:97:39:da:88:ee:6f:4c:ee:39:13:3c:07:60:89:
cf:93:67:fc:cf:eb:97:ac:65:8a:5a:c1:f3:26:6d:24:ed:32:
fd:ed:0d:ab:3a:5b:8b:f1:0d:65:dc:6d:94:ea:64:f2:aa:e0:
0d:68:b7:c1:c4:8a:af:e4:6d:c5:d8:d2:79:18:36:c4:54:6d:
a9:07:77:3f:f3:d7:b5:27:a7:fc:1b:0f:96:07:6c:80:c6:94:
0b:de:92:b6:a4:83:b1:0c:d9:5c:e1:66:23:b2:1f:37:1f:9c:
48:e7:97:20:0d:60:c1:a6:c6:d4:ba:2a:d0:08:dd:c2:00:6c:
23:22:6a:e3:e5:a9:18:45:c9:88:a4:7a:ef:3a:1e:72:1a:ca:
a3:3e:c0:9b:9b:45:0f:72:84:6e:3c:e7:35:67:eb:68:ba:7b:
48:34:62:1b:31:d6:3f:3c:84:82:6f:43:cf:76:c7:24:6b:ab:
60:ef:90:f9:5f:0a:5d:6e:21:d6:6d:b0:dd:a5:09:df:0f:d7:
2c:07:ba:ce
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUArjtu+0/GKNY7fmBZQTT77XgU9UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MzdaFw0yMzA5MjUwODAxMzdaMDMxMTAvBgNV
BAMTKDlCQTI2NEFBMEJDRkU3RTk1NTFDQTUyQ0Y2MDQ2NzNGMDAyMTdCMzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9ercdBrBxd8F5i2BsviXhnPlc
uDZFB9quNf00eF0fmhCBP0JeyhRSufdGZaq4ScmB0x+jRNWb5IOsqzpiqGyhhtos
HjyFIm3NdIo2bRAls0mankgfNcB2/Dr3lAf+FnbjP92HX0rXO3kxofttsq509o6w
SvxoIXWo1xAg9hkCykbbbIrYAbIcNghVyi8Qqj+4u6iJ8VUJnx9b+0yhsJ2HYMZb
UJq56MvKsTsgKbd8UJN72uadYuksS/yJqFkCzTbEu4Mf+Z/4J+u6faiz+l5WS8se
fMSPviI+4Wkzi0xz6/67J/yhuQrh/gKUCdpLKJvmonHiR9P/KsXgIBGWRxhDAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUm6JkqgvP5+lVHKUs9gRnPwAhezYwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjQzNTNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAANUw
DQYJKoZIhvcNAQELBQADggEBAKFNwt4CI3blLO3vReH/OevkEsbM4ncUnwtRc3mL
U4U36vwzkhWZsu9IXsrhEP/NhYO88GQlxE5oMKKXOdqI7m9M7jkTPAdgic+TZ/zP
65esZYpawfMmbSTtMv3tDas6W4vxDWXcbZTqZPKq4A1ot8HEiq/kbcXY0nkYNsRU
bakHdz/z17Unp/wbD5YHbIDGlAvekrakg7EM2VzhZiOyHzcfnEjnlyANYMGmxtS6
KtAI3cIAbCMiauPlqRhFyYikeu86HnIayqM+wJubRQ9yhG485zVn62i6e0g0Yhsx
1j88hIJvQ892xyRrq2DvkPlfCl1uIdZtsN2lCd8P1ywHus4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org