Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/323430353a63303a643530303a3a2f34302d3430203d3e20313338383831.roa
File: 323430353a63303a643530303a3a2f34302d3430203d3e20313338383831.roa (raw, json)
Hash identifier: a04KTT8+HcfWUZUtoBSP87d8NWPEmZqwxT0pCoCeHec=
Subject key identifier: 40:AF:E0:A6:8D:83:39:2D:66:BB:F4:3C:E2:16:21:75:BF:A8:D8:00
Certificate issuer: /CN=02AC8DC3B003059A7040EDCFC881D9C93B064C18
Certificate serial: 62FC6B865EFA0F6909CA02AD2C5E213277699043
Authority key identifier: 02:AC:8D:C3:B0:03:05:9A:70:40:ED:CF:C8:81:D9:C9:3B:06:4C:18
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/02AC8DC3B003059A7040EDCFC881D9C93B064C18.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/323430353a63303a643530303a3a2f34302d3430203d3e20313338383831.roa
Signing time: Thu 04 May 2023 01:48:43 +0000
ROA not before: Thu 04 May 2023 01:43:43 +0000
ROA not after: Thu 02 May 2024 01:48:43 +0000
asID: 138881
IP address blocks: 2405:c0:d500::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:fc:6b:86:5e:fa:0f:69:09:ca:02:ad:2c:5e:21:32:77:69:90:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02AC8DC3B003059A7040EDCFC881D9C93B064C18
Validity
Not Before: May 4 01:43:43 2023 GMT
Not After : May 2 01:48:43 2024 GMT
Subject: CN=40AFE0A68D83392D66BBF43CE2162175BFA8D800
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6f:69:b6:e5:01:89:d4:db:86:c2:00:63:4d:
1c:ba:f4:32:86:5a:e1:05:3f:c4:6a:be:85:a8:ee:
cd:eb:d6:98:1a:8d:4d:41:ee:6f:db:60:65:53:6f:
f7:0d:a9:b6:71:da:8a:6c:13:09:2c:f3:48:b7:9a:
f7:08:a0:ce:03:94:17:9e:be:21:5d:85:d7:49:e4:
6b:dc:de:37:bd:ac:09:30:4f:fb:71:d0:1b:1c:85:
62:b2:1b:b0:e0:1f:41:39:79:49:14:d4:00:88:13:
a3:c1:da:ba:ca:ce:1e:c0:b5:1d:8b:15:4c:67:d5:
98:db:3d:ac:77:50:24:fe:b5:9a:d9:4d:80:58:c2:
24:d6:02:a4:e0:f2:57:4d:8f:1d:5f:c6:72:2b:e6:
ad:42:34:d8:51:56:2e:a4:12:d2:05:ac:93:26:e4:
1a:98:8d:87:51:30:e9:fe:4b:b3:a7:11:aa:af:ef:
b9:a2:4e:16:cc:02:bc:c9:5d:c4:00:ca:bd:d7:62:
2b:28:f6:56:b2:41:e6:ff:2d:7f:9b:80:6d:d8:06:
fa:ad:5e:08:bb:df:f4:ab:8b:3e:dc:02:67:3b:04:
11:f5:0c:72:de:cc:44:65:f7:5d:9c:5a:07:61:37:
15:8b:1f:c4:68:91:c8:b8:61:a0:f4:8c:bf:2d:01:
e0:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:AF:E0:A6:8D:83:39:2D:66:BB:F4:3C:E2:16:21:75:BF:A8:D8:00
X509v3 Authority Key Identifier:
keyid:02:AC:8D:C3:B0:03:05:9A:70:40:ED:CF:C8:81:D9:C9:3B:06:4C:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/02AC8DC3B003059A7040EDCFC881D9C93B064C18.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/02AC8DC3B003059A7040EDCFC881D9C93B064C18.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/02cb0b3a-692d-442e-9308-903c02d5718f/0/323430353a63303a643530303a3a2f34302d3430203d3e20313338383831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:c0:d500::/40
Signature Algorithm: sha256WithRSAEncryption
47:1f:9b:d0:7e:f3:55:ed:50:57:05:17:ae:84:1f:42:1e:33:
e9:dd:2d:49:0e:cd:03:6b:27:15:dd:be:0f:8c:c3:0e:86:40:
c3:dc:32:41:3b:25:76:71:9e:1b:cd:04:5c:c9:cb:50:0a:89:
d6:5c:c1:93:e1:86:73:84:f6:72:1f:d4:91:f3:14:54:94:1f:
69:10:86:43:ac:89:23:53:c5:92:ee:54:38:4f:ec:30:b2:05:
70:04:ea:f7:05:b6:4a:75:80:6c:5f:af:44:ed:2f:db:e7:bc:
34:be:20:76:83:c0:3d:85:09:f3:1f:50:ad:e1:f8:bc:be:58:
35:eb:0c:75:73:b3:eb:b2:80:a9:81:e0:38:cc:b9:f4:cc:98:
ac:c1:d9:e1:9e:c1:6d:25:d2:1e:d0:b5:60:3c:8f:93:4e:bf:
f2:2c:d6:c9:bd:f3:a2:a4:01:a1:97:fd:f7:c1:16:6c:b6:3b:
e5:29:54:e9:5c:58:d7:e6:03:3c:78:a3:62:f0:79:48:f9:f0:
77:a6:83:5c:fa:86:b6:16:cf:37:d7:a9:5f:76:cb:20:3b:5d:
b0:c8:d8:aa:73:e4:9b:7d:b6:80:41:de:1b:99:f4:18:3b:7d:
7b:82:e2:c2:4d:a6:ea:fb:e9:41:78:35:8a:a1:d0:77:cb:af:
93:f8:cb:3a
-----BEGIN CERTIFICATE-----
MIIFMDCCBBigAwIBAgIUYvxrhl76D2kJygKtLF4hMndpkEMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDJBQzhEQzNCMDAzMDU5QTcwNDBFRENGQzg4MUQ5Qzkz
QjA2NEMxODAeFw0yMzA1MDQwMTQzNDNaFw0yNDA1MDIwMTQ4NDNaMDMxMTAvBgNV
BAMTKDQwQUZFMEE2OEQ4MzM5MkQ2NkJCRjQzQ0UyMTYyMTc1QkZBOEQ4MDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClb2m25QGJ1NuGwgBjTRy69DKG
WuEFP8RqvoWo7s3r1pgajU1B7m/bYGVTb/cNqbZx2opsEwks80i3mvcIoM4DlBee
viFdhddJ5Gvc3je9rAkwT/tx0BschWKyG7DgH0E5eUkU1ACIE6PB2rrKzh7AtR2L
FUxn1ZjbPax3UCT+tZrZTYBYwiTWAqTg8ldNjx1fxnIr5q1CNNhRVi6kEtIFrJMm
5BqYjYdRMOn+S7OnEaqv77miThbMArzJXcQAyr3XYiso9layQeb/LX+bgG3YBvqt
Xgi73/Sriz7cAmc7BBH1DHLezERl912cWgdhNxWLH8Rokci4YaD0jL8tAeDFAgMB
AAGjggI6MIICNjAdBgNVHQ4EFgQUQK/gpo2DOS1mu/Q84hYhdb+o2AAwHwYDVR0j
BBgwFoAUAqyNw7ADBZpwQO3PyIHZyTsGTBgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w
MmNiMGIzYS02OTJkLTQ0MmUtOTMwOC05MDNjMDJkNTcxOGYvMC8wMkFDOERDM0Iw
MDMwNTlBNzA0MEVEQ0ZDODgxRDlDOTNCMDY0QzE4LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMDJBQzhEQzNCMDAzMDU5QTcwNDBFRENGQzg4MUQ5QzkzQjA2
NEMxOC5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAyY2IwYjNhLTY5MmQtNDQyZS05
MzA4LTkwM2MwMmQ1NzE4Zi8wLzMyMzQzMDM1M2E2MzMwM2E2NDM1MzAzMDNhM2Ey
ZjM0MzAyZDM0MzAyMDNkM2UyMDMxMzMzODM4MzgzMS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACQFAMDV
MA0GCSqGSIb3DQEBCwUAA4IBAQBHH5vQfvNV7VBXBReuhB9CHjPp3S1JDs0DaycV
3b4PjMMOhkDD3DJBOyV2cZ4bzQRcyctQConWXMGT4YZzhPZyH9SR8xRUlB9pEIZD
rIkjU8WS7lQ4T+wwsgVwBOr3BbZKdYBsX69E7S/b57w0viB2g8A9hQnzH1Ct4fi8
vlg16wx1c7PrsoCpgeA4zLn0zJiswdnhnsFtJdIe0LVgPI+TTr/yLNbJvfOipAGh
l/33wRZstjvlKVTpXFjX5gM8eKNi8HlI+fB3poNc+oa2Fs8316lfdssgO12wyNiq
c+SbfbaAQd4bmfQYO317guLCTabq++lBeDWKodB3y6+T+Ms6
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:01 2024 by rpki-client on console-fra.rpki-client.org