Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3132383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 5AEBnWa1eE2BgsxSWpXi1ygwHcc72CvkbAyKMkWQFfk=
Subject key identifier: BB:BF:9B:A3:04:A8:5B:83:2E:58:02:E4:22:B0:44:33:FC:93:F5:FC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7063C996294C6EA8F797502BA54F281A21D0BA45
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:19 +0000
ROA not before: Mon 26 Sep 2022 07:56:19 +0000
ROA not after: Mon 25 Sep 2023 08:01:19 +0000
asID: 59282
IP address blocks: 2400:d680:128::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:63:c9:96:29:4c:6e:a8:f7:97:50:2b:a5:4f:28:1a:21:d0:ba:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:19 2022 GMT
Not After : Sep 25 08:01:19 2023 GMT
Subject: CN=BBBF9BA304A85B832E5802E422B04433FC93F5FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:02:7d:2b:1e:41:52:fb:57:ec:f6:a3:84:08:
81:d3:39:a9:6c:17:fa:d4:4c:2b:f1:7a:bd:da:fd:
8c:96:f2:01:c0:69:eb:90:02:6c:f6:01:de:55:77:
91:d0:f5:2b:a7:5f:f6:1f:2a:0b:04:84:c3:ed:be:
73:51:4c:7c:ad:c5:0f:02:6f:97:68:f3:95:9f:49:
1d:f8:79:96:00:ee:3d:6a:8a:7b:77:fd:83:50:79:
32:83:f3:a6:77:48:3a:1e:6c:a3:c9:db:ec:fd:72:
cb:e4:47:5d:5d:00:df:42:78:f4:7e:75:ec:51:b2:
6e:e6:51:d4:f3:0f:6e:cd:76:b5:58:0a:32:07:99:
9b:b1:9b:5f:b9:d5:29:31:01:3a:2d:22:58:ed:3a:
aa:7d:74:30:25:72:16:d6:db:de:b2:a6:56:8e:74:
dd:89:45:62:86:51:4b:aa:a4:ee:46:bc:f4:df:a3:
7f:cc:3e:8d:7e:c6:90:45:69:09:4a:1d:88:bc:b4:
f1:ba:9a:dd:59:ac:9d:43:53:99:ce:0d:d6:e2:97:
ad:c0:c3:05:2e:3b:9a:dc:60:29:06:30:ef:d0:a2:
fc:cd:1f:56:05:8c:1a:f0:2e:b7:f0:67:e1:a5:24:
92:e8:11:67:61:aa:69:99:a9:b3:d8:6d:69:e7:12:
ec:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:BF:9B:A3:04:A8:5B:83:2E:58:02:E4:22:B0:44:33:FC:93:F5:FC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3132383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:128::/48
Signature Algorithm: sha256WithRSAEncryption
70:6f:db:3b:83:09:ba:77:3a:1e:6a:6c:97:23:38:f3:ed:f6:
6f:ca:07:6b:9f:c8:e6:3e:08:6a:35:d4:fc:de:4a:6c:be:5e:
86:4c:42:75:e0:18:82:61:25:a2:40:cf:a9:0a:be:40:5a:13:
61:4e:5a:4f:50:3d:a6:cf:ae:70:59:b9:33:19:09:9c:9d:24:
10:48:74:4e:86:a8:1f:31:1f:fd:ac:09:c2:34:84:6b:2f:bd:
ff:1c:a4:8b:75:7a:80:6b:91:35:b1:c4:f8:4c:54:2c:20:f5:
1f:5a:8b:9b:5d:5e:c8:f5:7e:fc:2d:3f:4b:ec:e2:66:95:f4:
02:65:b2:ea:25:a3:6e:23:e8:a8:4d:92:cf:11:b3:9a:1a:ca:
a4:bb:85:69:4f:d6:98:f7:91:f9:2c:36:ee:0f:b6:21:2e:99:
bf:c4:e4:ee:84:46:ca:f5:4a:3f:5d:62:b5:28:df:99:75:96:
01:89:30:75:95:ca:e6:35:69:d8:2b:ad:a7:65:d2:a6:8f:3a:
ed:b5:e8:cb:1d:c8:3f:38:d5:40:b2:47:8e:97:d1:e2:4e:4c:
85:2e:16:7f:3a:a9:66:94:9f:5a:1e:a7:37:6a:1f:d2:99:79:
bf:48:09:6a:01:47:8e:de:9b:3a:96:2f:8b:81:20:5c:46:d6:
f8:21:ce:20
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUcGPJlilMbqj3l1ArpU8oGiHQukUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MTlaFw0yMzA5MjUwODAxMTlaMDMxMTAvBgNV
BAMTKEJCQkY5QkEzMDRBODVCODMyRTU4MDJFNDIyQjA0NDMzRkM5M0Y1RkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNAn0rHkFS+1fs9qOECIHTOals
F/rUTCvxer3a/YyW8gHAaeuQAmz2Ad5Vd5HQ9SunX/YfKgsEhMPtvnNRTHytxQ8C
b5do85WfSR34eZYA7j1qint3/YNQeTKD86Z3SDoebKPJ2+z9csvkR11dAN9CePR+
dexRsm7mUdTzD27NdrVYCjIHmZuxm1+51SkxATotIljtOqp9dDAlchbW296yplaO
dN2JRWKGUUuqpO5GvPTfo3/MPo1+xpBFaQlKHYi8tPG6mt1ZrJ1DU5nODdbil63A
wwUuO5rcYCkGMO/QovzNH1YFjBrwLrfwZ+GlJJLoEWdhqmmZqbPYbWnnEuzVAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUu7+bowSoW4MuWALkIrBEM/yT9fwwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzEzMjM4M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
KDANBgkqhkiG9w0BAQsFAAOCAQEAcG/bO4MJunc6HmpslyM48+32b8oHa5/I5j4I
ajXU/N5KbL5ehkxCdeAYgmElokDPqQq+QFoTYU5aT1A9ps+ucFm5MxkJnJ0kEEh0
ToaoHzEf/awJwjSEay+9/xyki3V6gGuRNbHE+ExULCD1H1qLm11eyPV+/C0/S+zi
ZpX0AmWy6iWjbiPoqE2SzxGzmhrKpLuFaU/WmPeR+Sw27g+2IS6Zv8Tk7oRGyvVK
P11itSjfmXWWAYkwdZXK5jVp2Cutp2XSpo867bXoyx3IPzjVQLJHjpfR4k5MhS4W
fzqpZpSfWh6nN2of0pl5v0gJagFHjt6bOpYvi4EgXEbW+CHOIA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org