Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a66313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: JJ78VJGAG67lo1Hbf07eERSK0t+bvB7vaHlIgknQs+I=
Subject key identifier: 1B:FD:25:3A:17:D8:1A:C3:C5:6C:70:65:55:E6:FB:89:B2:2D:6F:BB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 139708691E53E7E166CE441107200A40DE3733AB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:40 +0000
ROA not before: Mon 26 Sep 2022 07:56:40 +0000
ROA not after: Mon 25 Sep 2023 08:01:40 +0000
asID: 59282
IP address blocks: 2400:d680:f1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:97:08:69:1e:53:e7:e1:66:ce:44:11:07:20:0a:40:de:37:33:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:40 2022 GMT
Not After : Sep 25 08:01:40 2023 GMT
Subject: CN=1BFD253A17D81AC3C56C706555E6FB89B22D6FBB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:82:a2:2d:2c:d4:11:65:94:3f:a1:7b:16:f9:
92:5a:ac:35:8f:2f:15:ce:3f:62:f0:89:de:86:63:
cb:62:2d:f5:1d:99:b0:dd:cb:64:a1:91:f4:4b:21:
8c:55:ef:8c:42:7c:32:b5:f7:17:4c:83:92:26:97:
be:bf:25:ac:90:07:da:c1:22:a6:ad:7e:f1:6e:05:
18:c6:29:31:af:96:98:69:73:e8:b8:3f:2e:9b:91:
27:b4:05:5a:f5:40:1a:39:3c:b2:8d:6b:f3:67:01:
0e:88:bd:2b:f1:55:a9:93:fd:9b:19:2d:0a:fb:94:
e0:f6:d4:8b:ad:df:06:e7:28:68:d2:14:f9:ab:94:
67:a2:af:13:c5:8e:b4:fe:6e:c2:bf:ff:ad:f0:fa:
cd:f0:f4:78:61:be:f9:f0:19:89:68:76:1a:3f:99:
82:31:31:62:ed:28:97:7d:bf:3f:27:2c:61:ad:aa:
91:95:84:c8:5a:b4:e2:cd:e8:21:d6:c0:f9:d9:e4:
08:7d:7d:e1:c2:75:a4:61:78:46:1c:f9:10:59:76:
10:91:53:d2:de:c2:30:ab:83:f8:7e:59:40:84:20:
89:59:d7:10:0b:d8:dd:00:df:ff:8e:a2:3a:5f:95:
36:fd:5a:0c:d4:33:7d:4f:a7:d6:28:da:8a:19:86:
c9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:FD:25:3A:17:D8:1A:C3:C5:6C:70:65:55:E6:FB:89:B2:2D:6F:BB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:f1::/48
Signature Algorithm: sha256WithRSAEncryption
21:f8:fe:39:01:30:40:c1:e3:5f:f5:0f:d9:c5:78:81:d0:fb:
3c:6b:e8:dd:59:e2:ee:84:24:7e:79:d4:99:31:da:05:7d:6a:
89:a3:95:af:94:00:3f:e0:8f:41:d0:49:f0:f8:24:a8:88:cb:
fa:4e:38:a9:e9:bb:2c:06:df:bc:0d:1c:d3:5c:8f:92:84:c3:
43:4d:d8:4f:c9:0f:87:b9:3f:3f:09:54:e9:81:5c:2c:bb:be:
96:e4:61:92:53:97:a2:20:fc:3c:3e:12:2c:ae:92:f1:7e:25:
68:80:cd:c6:da:25:f6:95:ed:d6:aa:70:c0:6e:5e:63:b9:26:
b3:2c:de:88:78:4b:03:c5:6a:e7:ae:02:49:ab:37:bb:87:00:
a7:55:66:9e:73:a6:3c:95:1a:03:cd:1c:20:b3:7c:ed:c1:15:
22:d7:45:2b:08:b8:f8:a0:3b:e7:25:bc:fd:3a:37:5f:56:17:
1b:67:96:06:35:31:db:7b:6e:e3:3f:11:34:cd:bf:dd:d1:91:
d5:f3:50:37:fe:08:3f:19:55:01:e8:44:b6:38:78:e9:b7:0b:
92:fc:7b:76:f2:ee:a5:3c:2a:6d:22:7c:39:dc:9f:8f:1c:d2:
55:88:d8:3f:94:3f:a2:49:48:f4:bb:15:18:12:fa:b7:55:05:
2c:51:16:b9
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUE5cIaR5T5+FmzkQRByAKQN43M6swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2NDBaFw0yMzA5MjUwODAxNDBaMDMxMTAvBgNV
BAMTKDFCRkQyNTNBMTdEODFBQzNDNTZDNzA2NTU1RTZGQjg5QjIyRDZGQkIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDigqItLNQRZZQ/oXsW+ZJarDWP
LxXOP2Lwid6GY8tiLfUdmbDdy2ShkfRLIYxV74xCfDK19xdMg5Iml76/JayQB9rB
IqatfvFuBRjGKTGvlphpc+i4Py6bkSe0BVr1QBo5PLKNa/NnAQ6IvSvxVamT/ZsZ
LQr7lOD21Iut3wbnKGjSFPmrlGeirxPFjrT+bsK//63w+s3w9HhhvvnwGYlodho/
mYIxMWLtKJd9vz8nLGGtqpGVhMhatOLN6CHWwPnZ5Ah9feHCdaRheEYc+RBZdhCR
U9LewjCrg/h+WUCEIIlZ1xAL2N0A3/+OojpflTb9WgzUM31Pp9Yo2ooZhsllAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUG/0lOhfYGsPFbHBlVeb7ibItb7swHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjYzMTNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAPEw
DQYJKoZIhvcNAQELBQADggEBACH4/jkBMEDB41/1D9nFeIHQ+zxr6N1Z4u6EJH55
1Jkx2gV9aomjla+UAD/gj0HQSfD4JKiIy/pOOKnpuywG37wNHNNcj5KEw0NN2E/J
D4e5Pz8JVOmBXCy7vpbkYZJTl6Ig/Dw+EiyukvF+JWiAzcbaJfaV7daqcMBuXmO5
JrMs3oh4SwPFaueuAkmrN7uHAKdVZp5zpjyVGgPNHCCzfO3BFSLXRSsIuPigO+cl
vP06N19WFxtnlgY1Mdt7buM/ETTNv93RkdXzUDf+CD8ZVQHoRLY4eOm3C5L8e3by
7qU8Km0ifDncn48c0lWI2D+UP6JJSPS7FRgS+rdVBSxRFrk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org