Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a64383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: UB75MrVmc2vyzQS12NhplH7uDWsvbxeHhxOFmGA1Yuo=
Subject key identifier: 51:F4:AF:17:BF:15:9C:8F:62:53:48:2F:6A:04:35:87:06:E6:48:DE
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 32DCF5CBDC38279E3A801C43D0F1895301B16F16
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:47 +0000
ROA not before: Mon 26 Sep 2022 07:56:47 +0000
ROA not after: Mon 25 Sep 2023 08:01:47 +0000
asID: 59282
IP address blocks: 2400:d680:d8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:dc:f5:cb:dc:38:27:9e:3a:80:1c:43:d0:f1:89:53:01:b1:6f:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:47 2022 GMT
Not After : Sep 25 08:01:47 2023 GMT
Subject: CN=51F4AF17BF159C8F6253482F6A04358706E648DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7a:69:fd:95:c8:73:18:96:9f:66:3e:fe:91:
55:13:e2:c1:6e:33:38:93:de:9a:16:08:32:f7:5a:
2f:f5:48:59:80:91:66:8f:e5:bd:44:c2:71:73:85:
b3:4e:12:d8:1d:fe:50:ab:de:00:89:fb:eb:6f:83:
45:f7:93:35:b3:16:34:88:a3:fd:56:e8:f6:1a:ba:
b0:f7:08:3b:b2:f8:12:5e:f1:62:a3:d3:71:12:06:
ac:7b:1e:00:2a:9e:b1:1b:38:53:05:72:1f:0b:b9:
da:1a:98:a9:33:f8:2d:76:b9:0f:ee:45:b0:e1:b2:
92:3e:08:7e:29:db:79:8c:d9:83:82:87:3a:3b:47:
23:05:06:42:82:e4:0d:99:69:8f:f1:bb:15:4a:fb:
d9:a9:45:08:60:7d:42:b0:73:21:7c:51:fe:db:05:
fd:7f:6f:13:39:a7:00:e9:25:be:cb:b3:f2:93:df:
40:6e:76:7f:c9:c1:6a:b0:c2:9a:18:e0:61:a9:4b:
60:26:14:e4:c7:8b:af:05:be:ee:72:a2:cf:ab:d9:
f7:af:d5:50:54:72:61:c3:f7:f4:fa:57:1f:4f:39:
34:d2:79:e8:fa:50:ec:3e:6f:a3:73:f7:8d:f0:fb:
84:c3:63:83:14:9e:7d:32:a1:bc:27:f8:43:0a:a4:
8c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:F4:AF:17:BF:15:9C:8F:62:53:48:2F:6A:04:35:87:06:E6:48:DE
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:d8::/48
Signature Algorithm: sha256WithRSAEncryption
7b:da:ed:2f:a8:f3:7a:47:fd:f0:ea:81:c6:bd:2b:d8:70:b7:
60:76:b0:ee:03:71:29:da:35:c1:bc:46:d0:5e:06:d5:94:1f:
1b:fd:df:74:ee:c2:07:54:d9:44:4e:65:89:24:00:bf:3c:d4:
07:bf:4d:28:63:3c:e0:b4:83:a6:11:37:07:52:b0:bd:d2:e4:
5e:08:d8:c8:1e:6a:cf:15:dc:48:8f:16:d8:85:cb:27:e6:a7:
3f:a8:1e:47:3d:e4:88:25:de:d9:77:fe:dd:ed:80:71:56:55:
ca:c0:43:57:5d:6a:47:fd:57:d3:c8:17:bd:65:51:bd:dd:ac:
85:1c:e9:7f:24:2c:1e:d1:68:b7:95:12:56:bb:41:cc:2c:61:
e8:2b:5c:b9:9f:75:8a:68:e0:8e:12:4c:18:4c:a6:5d:db:8f:
29:f1:0a:81:73:cb:40:a7:bf:a4:65:bd:eb:4b:68:a6:cb:4c:
69:cd:3c:4d:01:c7:d9:6e:5d:69:ca:ae:c2:e9:94:25:58:7a:
88:c6:d5:58:7a:db:d4:df:55:2e:ec:d1:7c:c7:3d:9a:eb:4b:
52:77:d3:01:4c:0d:ea:6e:f1:b3:d9:c4:7a:ed:38:31:e1:7b:
90:62:83:ca:e4:88:7d:f4:b5:90:18:94:18:ea:1d:c5:0a:ca:
a8:10:4d:2e
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUMtz1y9w4J546gBxD0PGJUwGxbxYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2NDdaFw0yMzA5MjUwODAxNDdaMDMxMTAvBgNV
BAMTKDUxRjRBRjE3QkYxNTlDOEY2MjUzNDgyRjZBMDQzNTg3MDZFNjQ4REUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaemn9lchzGJafZj7+kVUT4sFu
MziT3poWCDL3Wi/1SFmAkWaP5b1EwnFzhbNOEtgd/lCr3gCJ++tvg0X3kzWzFjSI
o/1W6PYaurD3CDuy+BJe8WKj03ESBqx7HgAqnrEbOFMFch8LudoamKkz+C12uQ/u
RbDhspI+CH4p23mM2YOChzo7RyMFBkKC5A2ZaY/xuxVK+9mpRQhgfUKwcyF8Uf7b
Bf1/bxM5pwDpJb7Ls/KT30Budn/JwWqwwpoY4GGpS2AmFOTHi68Fvu5yos+r2fev
1VBUcmHD9/T6Vx9POTTSeej6UOw+b6Nz943w+4TDY4MUnn0yobwn+EMKpIxJAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUUfSvF78VnI9iU0gvagQ1hwbmSN4wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjQzODNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAANgw
DQYJKoZIhvcNAQELBQADggEBAHva7S+o83pH/fDqgca9K9hwt2B2sO4DcSnaNcG8
RtBeBtWUHxv933TuwgdU2UROZYkkAL881Ae/TShjPOC0g6YRNwdSsL3S5F4I2Mge
as8V3EiPFtiFyyfmpz+oHkc95Igl3tl3/t3tgHFWVcrAQ1ddakf9V9PIF71lUb3d
rIUc6X8kLB7RaLeVEla7QcwsYegrXLmfdYpo4I4STBhMpl3bjynxCoFzy0Cnv6Rl
vetLaKbLTGnNPE0Bx9luXWnKrsLplCVYeojG1Vh629TfVS7s0XzHPZrrS1J30wFM
Depu8bPZxHrtODHhe5Big8rkiH30tZAYlBjqHcUKyqgQTS4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org