Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3134323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3134323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 23C2HBsfNg/z8NCcfYSfWcJV1UsGj1mlhVBe5ejiOE8=
Subject key identifier: 39:0D:B9:AF:14:0B:21:BF:A7:D9:0E:0F:74:3F:E5:65:25:83:66:EA
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0D865FFD34CAE22F5EB12294E93D594E6C33CC2F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3134323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:14 +0000
ROA not before: Mon 26 Sep 2022 07:57:14 +0000
ROA not after: Mon 25 Sep 2023 08:02:14 +0000
asID: 59282
IP address blocks: 2400:d680:142::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:86:5f:fd:34:ca:e2:2f:5e:b1:22:94:e9:3d:59:4e:6c:33:cc:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:14 2022 GMT
Not After : Sep 25 08:02:14 2023 GMT
Subject: CN=390DB9AF140B21BFA7D90E0F743FE565258366EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a3:56:ba:84:43:bc:23:2e:9e:92:10:b7:35:
81:b3:1c:ae:6c:40:0b:5e:7f:df:27:e2:07:07:4d:
57:28:0c:3a:ba:05:d7:3f:e2:1c:93:4b:ca:95:7f:
a1:1e:f3:c3:d3:27:c9:fd:32:99:a5:f0:c6:47:ff:
77:dc:82:b6:27:df:6b:57:3c:0b:98:b2:5b:e3:2b:
eb:c3:9b:7e:d5:47:71:1a:a3:11:60:50:1a:48:b1:
28:d6:74:87:46:92:4e:86:cf:e6:9f:7f:cc:4c:7c:
d4:50:f7:68:06:e7:37:94:8e:35:d2:21:16:5c:7b:
66:e9:f4:61:6f:a6:08:cf:99:77:85:01:79:85:3e:
f7:27:94:ff:89:1b:d3:0e:80:42:48:66:ca:4e:fb:
09:10:16:6c:af:ee:d9:5d:fe:26:55:4e:08:b0:60:
65:98:49:34:f6:20:45:b8:c5:c8:7e:44:f8:3f:d4:
77:12:31:11:1e:a7:04:a1:c7:86:2b:fc:c2:bc:df:
45:67:cb:2c:84:40:11:42:fe:44:5d:b8:bc:a1:f9:
76:d9:c2:75:09:30:28:b3:bb:98:23:9f:1b:c7:84:
52:f6:eb:7b:5b:fa:b4:75:aa:5c:95:b0:13:51:d4:
bb:74:99:3c:0c:68:b3:ff:ed:de:93:b4:f0:59:95:
a7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:0D:B9:AF:14:0B:21:BF:A7:D9:0E:0F:74:3F:E5:65:25:83:66:EA
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3134323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:142::/48
Signature Algorithm: sha256WithRSAEncryption
5d:aa:c4:5c:a3:0e:1c:b9:02:6d:48:d9:3d:8a:04:f8:4d:0b:
c2:70:7f:5c:52:50:67:15:e5:c9:d9:a8:e3:33:dd:d7:62:c0:
ea:81:44:58:dd:0e:7c:fc:73:3e:c1:23:74:e2:fd:10:ee:62:
69:38:d0:00:69:c9:70:03:54:3c:4b:1e:6c:e7:c2:10:d2:52:
ad:dd:82:55:18:bd:0b:68:1b:73:08:3f:f5:a0:3b:50:95:43:
c9:78:ed:67:48:1e:4f:a8:db:8c:bc:b6:40:dc:db:4a:aa:64:
c6:e5:66:04:08:61:93:ec:04:93:bd:e8:60:f6:5a:6d:80:fa:
8f:0d:58:fc:e0:80:56:2f:38:f7:61:ab:a8:e9:0c:2b:e4:81:
20:5c:39:02:dd:90:d6:9f:b5:ed:e2:e0:e0:5b:7a:bd:eb:60:
62:9a:8a:28:a5:c5:a0:5a:7c:ca:87:f1:27:e5:30:6b:2e:3c:
dd:fe:40:98:f6:58:12:b3:4e:3a:51:bd:76:f9:c5:8d:3c:ba:
7d:f2:4c:fb:da:6a:2b:02:5f:1f:a4:ca:83:45:87:b0:95:9f:
b0:b4:34:c4:fe:1a:87:5d:7f:7b:91:b8:74:f0:3e:98:41:ad:
4a:45:01:b0:b1:76:99:59:ca:ff:d3:12:27:fb:74:39:e2:5a:
51:06:c1:8a
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUDYZf/TTK4i9esSKU6T1ZTmwzzC8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MTRaFw0yMzA5MjUwODAyMTRaMDMxMTAvBgNV
BAMTKDM5MERCOUFGMTQwQjIxQkZBN0Q5MEUwRjc0M0ZFNTY1MjU4MzY2RUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFo1a6hEO8Iy6ekhC3NYGzHK5s
QAtef98n4gcHTVcoDDq6Bdc/4hyTS8qVf6Ee88PTJ8n9Mpml8MZH/3fcgrYn32tX
PAuYslvjK+vDm37VR3EaoxFgUBpIsSjWdIdGkk6Gz+aff8xMfNRQ92gG5zeUjjXS
IRZce2bp9GFvpgjPmXeFAXmFPvcnlP+JG9MOgEJIZspO+wkQFmyv7tld/iZVTgiw
YGWYSTT2IEW4xch+RPg/1HcSMREepwShx4Yr/MK830VnyyyEQBFC/kRduLyh+XbZ
wnUJMCizu5gjnxvHhFL263tb+rR1qlyVsBNR1Lt0mTwMaLP/7d6TtPBZlac9AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUOQ25rxQLIb+n2Q4PdD/lZSWDZuowHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzEzNDMyM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
QjANBgkqhkiG9w0BAQsFAAOCAQEAXarEXKMOHLkCbUjZPYoE+E0LwnB/XFJQZxXl
ydmo4zPd12LA6oFEWN0OfPxzPsEjdOL9EO5iaTjQAGnJcANUPEsebOfCENJSrd2C
VRi9C2gbcwg/9aA7UJVDyXjtZ0geT6jbjLy2QNzbSqpkxuVmBAhhk+wEk73oYPZa
bYD6jw1Y/OCAVi8492GrqOkMK+SBIFw5At2Q1p+17eLg4Ft6vetgYpqKKKXFoFp8
yofxJ+Uway483f5AmPZYErNOOlG9dvnFjTy6ffJM+9pqKwJfH6TKg0WHsJWfsLQ0
xP4ah11/e5G4dPA+mEGtSkUBsLF2mVnK/9MSJ/t0OeJaUQbBig==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org