Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3137323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 1Pav8ynwuq4PTUWQyZINI7Cp+CrFv6mePbRQsGNYQfs=
Subject key identifier: 3F:A8:9A:C8:E8:D2:D2:3B:90:AC:6A:12:E6:31:45:31:F6:22:90:6C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 75EA7F4EDD07D50C191929193CAB88A05E5C2D86
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:43 +0000
ROA not before: Mon 26 Sep 2022 07:56:43 +0000
ROA not after: Mon 25 Sep 2023 08:01:43 +0000
asID: 59282
IP address blocks: 2400:d680:172::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:ea:7f:4e:dd:07:d5:0c:19:19:29:19:3c:ab:88:a0:5e:5c:2d:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:43 2022 GMT
Not After : Sep 25 08:01:43 2023 GMT
Subject: CN=3FA89AC8E8D2D23B90AC6A12E6314531F622906C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:2a:93:05:f2:53:ea:68:23:38:94:36:38:10:
10:b2:c6:85:4c:e0:45:20:f7:73:fd:50:b3:a1:ff:
85:e9:5d:11:1f:7b:60:13:e6:ed:38:3f:4a:20:02:
a6:56:79:5c:c3:97:e5:b4:d3:45:59:11:09:e9:87:
e2:e4:7c:00:c8:d5:30:a1:61:77:8e:44:0a:73:a4:
03:53:06:b3:91:f2:6b:cf:64:99:13:49:a0:43:66:
fc:90:03:65:0a:e9:90:c2:70:68:85:4c:13:07:e8:
1a:e6:a3:c2:f8:ce:22:b6:fd:c7:03:b6:ca:2c:01:
ec:41:52:71:21:b9:89:3e:95:02:3c:de:ba:f5:fa:
f4:69:3c:03:74:61:67:be:f6:3e:b4:0f:2f:04:ce:
c1:6f:82:c7:50:8c:7f:f3:07:ae:3a:2b:11:06:12:
24:f7:51:a8:ff:fc:87:72:45:8f:85:b2:21:32:30:
5b:ec:ed:d9:a1:97:15:be:49:5f:c5:bd:d0:f0:4f:
f3:b5:2b:83:74:b8:71:87:76:cb:99:44:ea:5c:38:
c4:c6:f7:69:3d:58:75:96:ff:df:f5:62:cd:5d:11:
86:82:1c:3c:36:14:e2:a7:7d:31:63:ab:d2:f3:6c:
47:70:dc:fd:86:ab:70:76:ef:51:3a:aa:17:25:77:
06:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:A8:9A:C8:E8:D2:D2:3B:90:AC:6A:12:E6:31:45:31:F6:22:90:6C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3137323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:172::/48
Signature Algorithm: sha256WithRSAEncryption
59:7f:4e:01:31:17:8f:de:96:14:64:1c:0d:f8:c4:32:a2:5e:
b3:bb:13:b2:0f:5c:89:18:62:d2:9e:36:f0:41:ea:3a:5d:f6:
5d:d2:7d:c5:f2:5a:94:23:52:9f:db:8c:da:7b:11:0c:b4:27:
73:1b:74:0e:69:59:15:37:af:0b:dd:25:5b:f9:c8:84:d6:29:
20:73:7f:af:46:05:6f:78:19:73:2d:e6:d3:04:84:54:fe:a1:
82:38:df:77:79:b0:7d:80:d2:7c:2b:45:cb:da:c3:00:4e:a9:
e2:fc:de:61:b4:e2:06:c1:2b:02:da:4e:55:ed:ad:91:5c:46:
1e:2c:a5:c6:59:ed:87:2f:20:f1:33:d0:1d:29:52:ef:91:a9:
1b:83:4f:bf:1a:13:32:dc:db:4a:16:d1:35:5a:a2:9c:62:1d:
51:1f:b5:e8:fd:8b:29:fd:05:fb:be:17:72:78:1a:5e:5e:cb:
7f:3c:a0:bc:e0:d0:74:80:4f:eb:1c:42:62:40:90:5f:40:e3:
62:39:8c:64:7b:3d:0e:38:c0:93:6c:64:a7:4f:5b:81:cd:00:
60:e1:fa:39:fa:5b:47:03:37:03:a3:ee:90:69:f0:64:16:a8:
b5:98:fa:6a:92:9f:9f:8b:c1:31:2e:42:ec:55:93:95:2b:aa:
73:92:3c:8c
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUdep/Tt0H1QwZGSkZPKuIoF5cLYYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2NDNaFw0yMzA5MjUwODAxNDNaMDMxMTAvBgNV
BAMTKDNGQTg5QUM4RThEMkQyM0I5MEFDNkExMkU2MzE0NTMxRjYyMjkwNkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoKpMF8lPqaCM4lDY4EBCyxoVM
4EUg93P9ULOh/4XpXREfe2AT5u04P0ogAqZWeVzDl+W000VZEQnph+LkfADI1TCh
YXeORApzpANTBrOR8mvPZJkTSaBDZvyQA2UK6ZDCcGiFTBMH6Brmo8L4ziK2/ccD
tsosAexBUnEhuYk+lQI83rr1+vRpPAN0YWe+9j60Dy8EzsFvgsdQjH/zB646KxEG
EiT3Uaj//IdyRY+FsiEyMFvs7dmhlxW+SV/FvdDwT/O1K4N0uHGHdsuZROpcOMTG
92k9WHWW/9/1Ys1dEYaCHDw2FOKnfTFjq9LzbEdw3P2Gq3B271E6qhcldwYPAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUP6iayOjS0juQrGoS5jFFMfYikGwwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzEzNzMyM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
cjANBgkqhkiG9w0BAQsFAAOCAQEAWX9OATEXj96WFGQcDfjEMqJes7sTsg9ciRhi
0p428EHqOl32XdJ9xfJalCNSn9uM2nsRDLQncxt0DmlZFTevC90lW/nIhNYpIHN/
r0YFb3gZcy3m0wSEVP6hgjjfd3mwfYDSfCtFy9rDAE6p4vzeYbTiBsErAtpOVe2t
kVxGHiylxlnthy8g8TPQHSlS75GpG4NPvxoTMtzbShbRNVqinGIdUR+16P2LKf0F
+74XcngaXl7LfzygvODQdIBP6xxCYkCQX0DjYjmMZHs9DjjAk2xkp09bgc0AYOH6
OfpbRwM3A6PukGnwZBaotZj6apKfn4vBMS5C7FWTlSuqc5I8jA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org