Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a66343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: o/Hfg8HyU7A2qUfp2YyirmjarF/2aDh0WrBSFMxFpf8=
Subject key identifier: 22:E8:5B:C6:67:57:C2:76:CB:D0:6A:78:D6:9D:88:04:E9:6B:AD:42
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2607C4BC0A3131D4F76BC0F488A1309912B2F107
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:38 +0000
ROA not before: Mon 26 Sep 2022 07:56:38 +0000
ROA not after: Mon 25 Sep 2023 08:01:38 +0000
asID: 59282
IP address blocks: 2400:d680:f4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:07:c4:bc:0a:31:31:d4:f7:6b:c0:f4:88:a1:30:99:12:b2:f1:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:38 2022 GMT
Not After : Sep 25 08:01:38 2023 GMT
Subject: CN=22E85BC66757C276CBD06A78D69D8804E96BAD42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:df:94:cd:df:80:7c:15:07:dc:ec:fa:0f:a9:
90:3a:fe:0c:7b:f2:ea:38:07:6e:61:ee:1d:48:10:
9a:6d:46:81:02:98:20:bc:29:ea:78:79:3a:1a:e3:
f4:05:ac:55:02:9e:68:43:50:6f:e7:6d:0b:3d:66:
22:1a:13:8b:13:23:80:77:79:79:e4:80:e8:32:83:
a6:b9:52:52:c0:06:43:fe:c6:5a:2a:32:76:d5:14:
1d:8c:5a:09:6e:2f:79:b5:79:34:4b:f0:7d:40:da:
ee:0a:29:36:04:ab:21:3b:db:5a:b4:c3:73:c3:fd:
d1:89:c7:bc:0e:fa:35:f3:ce:8b:48:c3:6b:d3:a3:
d5:9a:3a:bf:ce:2c:9c:de:a4:55:70:56:4c:f4:4d:
9b:23:43:f0:fc:82:e9:16:ad:38:89:ff:b5:5c:4a:
37:c8:24:ab:19:c2:2c:1e:a8:65:f5:0b:c0:fc:75:
c9:00:0e:75:8c:24:a8:bd:c1:f7:85:70:0e:b2:90:
9e:25:9e:16:95:49:4d:a0:e4:33:ea:46:f0:b7:1b:
33:e4:2c:f0:c6:bf:b6:01:b5:58:8a:f9:69:c6:f8:
e3:a4:0b:83:17:3a:3d:2a:6e:a7:45:02:1f:eb:d3:
0a:88:e6:db:42:07:e4:b6:bc:97:12:84:ff:b9:75:
8b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E8:5B:C6:67:57:C2:76:CB:D0:6A:78:D6:9D:88:04:E9:6B:AD:42
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:f4::/48
Signature Algorithm: sha256WithRSAEncryption
77:30:84:11:06:22:54:81:0d:0d:c1:04:1d:c4:cf:a2:d5:c7:
fe:70:1b:8c:83:ea:1e:6e:15:6c:f4:f4:c0:8b:6d:1f:9e:c0:
d2:df:79:d0:96:8c:54:0a:d3:2c:75:cb:d1:3f:4d:e2:98:88:
53:67:e1:1f:b5:56:b1:ad:63:b9:91:79:9c:a0:af:67:61:ad:
41:6f:b1:7b:8c:eb:6f:e0:c5:85:bc:95:af:51:8c:47:cd:2e:
90:60:e4:0d:d3:99:f5:41:5a:70:31:2d:fb:cd:cf:7d:e4:cb:
e9:fd:ec:1b:f3:ac:ec:02:3b:8b:37:77:fc:b3:7f:29:26:ff:
45:45:0d:38:a3:a2:20:8f:c8:85:59:4c:e9:88:5c:29:28:4c:
83:8b:c5:a1:d8:dc:0f:13:f0:b4:29:6e:c2:33:36:74:4c:67:
94:03:c8:ad:58:b4:9e:17:5d:3f:39:f4:45:38:cc:29:68:53:
fc:59:79:e6:b7:cc:21:f5:d1:ff:bd:a4:de:49:ff:09:e5:a4:
ac:0f:0e:37:8b:fe:7b:2a:5a:e2:16:3b:da:6a:b1:20:07:cf:
18:b8:70:99:8e:6c:db:e7:05:e0:d4:09:17:f4:dd:c3:ac:72:
f4:ea:aa:df:1f:f4:cb:2a:ac:f6:df:be:f9:cb:3d:2c:9b:4d:
92:8d:26:8e
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUJgfEvAoxMdT3a8D0iKEwmRKy8QcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MzhaFw0yMzA5MjUwODAxMzhaMDMxMTAvBgNV
BAMTKDIyRTg1QkM2Njc1N0MyNzZDQkQwNkE3OEQ2OUQ4ODA0RTk2QkFENDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw35TN34B8FQfc7PoPqZA6/gx7
8uo4B25h7h1IEJptRoECmCC8Kep4eToa4/QFrFUCnmhDUG/nbQs9ZiIaE4sTI4B3
eXnkgOgyg6a5UlLABkP+xloqMnbVFB2MWgluL3m1eTRL8H1A2u4KKTYEqyE721q0
w3PD/dGJx7wO+jXzzotIw2vTo9WaOr/OLJzepFVwVkz0TZsjQ/D8gukWrTiJ/7Vc
SjfIJKsZwiweqGX1C8D8dckADnWMJKi9wfeFcA6ykJ4lnhaVSU2g5DPqRvC3GzPk
LPDGv7YBtViK+WnG+OOkC4MXOj0qbqdFAh/r0wqI5ttCB+S2vJcShP+5dYsrAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUIuhbxmdXwnbL0Gp41p2IBOlrrUIwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjYzNDNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAPQw
DQYJKoZIhvcNAQELBQADggEBAHcwhBEGIlSBDQ3BBB3Ez6LVx/5wG4yD6h5uFWz0
9MCLbR+ewNLfedCWjFQK0yx1y9E/TeKYiFNn4R+1VrGtY7mReZygr2dhrUFvsXuM
62/gxYW8la9RjEfNLpBg5A3TmfVBWnAxLfvNz33ky+n97BvzrOwCO4s3d/yzfykm
/0VFDTijoiCPyIVZTOmIXCkoTIOLxaHY3A8T8LQpbsIzNnRMZ5QDyK1YtJ4XXT85
9EU4zCloU/xZeea3zCH10f+9pN5J/wnlpKwPDjeL/nsqWuIWO9pqsSAHzxi4cJmO
bNvnBeDUCRf03cOscvTqqt8f9MsqrPbfvvnLPSybTZKNJo4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:51 2024 by rpki-client on console-ams.rpki-client.org