Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a64633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: TxL06bMINxNb0ZAdiN6oly06YQbKJbN1k7Aply5xcBY=
Subject key identifier: D3:EE:11:C9:E1:78:4C:F9:79:20:C0:5D:FC:40:07:CD:D2:D3:01:16
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 798E0B6D7B0E21977FFA599707A34C1E6CBC1C6D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:22 +0000
ROA not before: Mon 26 Sep 2022 07:57:22 +0000
ROA not after: Mon 25 Sep 2023 08:02:22 +0000
asID: 59282
IP address blocks: 2400:d680:dc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:8e:0b:6d:7b:0e:21:97:7f:fa:59:97:07:a3:4c:1e:6c:bc:1c:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:22 2022 GMT
Not After : Sep 25 08:02:22 2023 GMT
Subject: CN=D3EE11C9E1784CF97920C05DFC4007CDD2D30116
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4d:ff:2e:76:7a:d1:8f:cb:37:42:8e:8f:6a:
f0:e7:3d:a9:54:23:e1:6c:cc:4f:87:9a:75:85:b0:
c4:f3:b1:f2:dd:4c:87:c0:58:ff:92:ab:b3:fc:19:
a7:a2:ad:c1:3b:a4:2d:58:b3:3e:b5:60:13:c9:2a:
58:69:60:83:14:4b:d3:70:7e:d6:80:92:c9:73:f6:
02:86:71:05:21:c2:53:06:8a:97:85:88:09:6e:ba:
6d:ea:ae:27:7d:b5:70:21:4a:1d:75:dc:91:1f:50:
73:35:ff:c8:30:b7:c0:ee:06:a3:bf:b4:fc:24:f8:
d4:bd:0f:4e:65:c4:20:98:5c:a1:eb:e1:ae:e8:86:
58:eb:c6:34:8a:06:7f:54:3a:4a:8a:e6:72:2b:c9:
f4:ef:9e:74:0c:36:d7:2c:50:8b:5c:9e:e3:04:35:
9c:04:50:0a:81:3e:5b:7c:0a:91:63:6e:eb:f8:57:
6c:07:cf:8d:91:2d:4c:30:31:7e:49:00:fa:33:c8:
5e:e4:7a:4c:eb:5f:c0:84:f2:7b:c4:6f:de:a9:13:
e6:1a:1f:c8:88:a8:07:6c:10:9f:54:50:dc:4e:50:
70:38:7f:20:f3:9d:0e:77:b2:a2:20:1c:07:8c:db:
5f:91:9e:e0:d9:a0:8f:d4:8f:e6:95:30:26:1f:fc:
26:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:EE:11:C9:E1:78:4C:F9:79:20:C0:5D:FC:40:07:CD:D2:D3:01:16
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:dc::/48
Signature Algorithm: sha256WithRSAEncryption
6a:67:0e:e8:90:65:26:80:da:31:96:d1:5f:a6:c6:fe:d8:1d:
bf:f7:dc:36:93:71:c1:63:62:fd:f5:03:ef:c8:ba:dc:2b:bb:
8e:fa:65:57:a6:79:dd:ce:30:70:c6:99:42:50:f2:9f:d9:bf:
d8:38:18:41:68:4b:51:33:bb:67:d5:5e:34:ed:5d:91:ac:a4:
b5:6d:fe:ca:8f:60:da:4b:e7:62:46:b4:04:3d:8a:e7:0d:18:
10:d0:2d:af:c4:54:ad:3b:9d:27:23:86:8b:cc:43:2f:5c:f9:
89:e5:19:8e:ae:58:45:3d:3a:97:f4:69:7e:2e:f4:20:8f:f8:
1b:16:c1:af:30:f8:61:fb:d7:d1:e1:89:c3:c4:55:4d:17:07:
e6:92:f9:99:ee:aa:b0:08:a7:19:78:25:18:74:25:d3:c1:5d:
9d:a9:b2:25:be:b6:f5:fc:a5:08:6d:03:65:34:b7:21:3a:9a:
0d:31:ab:0a:4b:78:df:3f:04:88:0b:b4:86:7c:a7:17:0f:3f:
d8:30:c4:15:aa:8e:f3:8c:20:09:2e:ef:2a:d0:02:a3:d2:5d:
f1:a9:3a:85:24:8e:ff:55:05:c9:6e:f2:39:2f:8c:12:de:bc:
0b:cc:33:63:f8:7c:a3:31:9e:51:c6:ab:47:bd:48:dc:3c:ed:
df:02:9e:75
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUeY4LbXsOIZd/+lmXB6NMHmy8HG0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MjJaFw0yMzA5MjUwODAyMjJaMDMxMTAvBgNV
BAMTKEQzRUUxMUM5RTE3ODRDRjk3OTIwQzA1REZDNDAwN0NERDJEMzAxMTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5Tf8udnrRj8s3Qo6PavDnPalU
I+FszE+HmnWFsMTzsfLdTIfAWP+Sq7P8GaeircE7pC1Ysz61YBPJKlhpYIMUS9Nw
ftaAkslz9gKGcQUhwlMGipeFiAluum3qrid9tXAhSh113JEfUHM1/8gwt8DuBqO/
tPwk+NS9D05lxCCYXKHr4a7ohljrxjSKBn9UOkqK5nIryfTvnnQMNtcsUItcnuME
NZwEUAqBPlt8CpFjbuv4V2wHz42RLUwwMX5JAPozyF7kekzrX8CE8nvEb96pE+Ya
H8iIqAdsEJ9UUNxOUHA4fyDznQ53sqIgHAeM21+RnuDZoI/Uj+aVMCYf/CYDAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQU0+4RyeF4TPl5IMBd/EAHzdLTARYwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjQ2MzNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAANww
DQYJKoZIhvcNAQELBQADggEBAGpnDuiQZSaA2jGW0V+mxv7YHb/33DaTccFjYv31
A+/Iutwru476ZVemed3OMHDGmUJQ8p/Zv9g4GEFoS1Ezu2fVXjTtXZGspLVt/sqP
YNpL52JGtAQ9iucNGBDQLa/EVK07nScjhovMQy9c+YnlGY6uWEU9Opf0aX4u9CCP
+BsWwa8w+GH719HhicPEVU0XB+aS+ZnuqrAIpxl4JRh0JdPBXZ2psiW+tvX8pQht
A2U0tyE6mg0xqwpLeN8/BIgLtIZ8pxcPP9gwxBWqjvOMIAku7yrQAqPSXfGpOoUk
jv9VBclu8jkvjBLevAvMM2P4fKMxnlHGq0e9SNw87d8CnnU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org