Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3138623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3138623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: FjbHzU0qDZ62nU4Tb6hMTip/NsIpNczOWKv7OkZzLcM=
Subject key identifier: 35:F7:0C:D3:0E:59:86:C4:E3:07:21:8B:5C:0C:6F:7A:0A:BB:D2:77
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0FF0C1A2EEF22563A423B0D01DC6A8683F625A03
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3138623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:43 +0000
ROA not before: Mon 26 Sep 2022 07:56:43 +0000
ROA not after: Mon 25 Sep 2023 08:01:43 +0000
asID: 59282
IP address blocks: 2400:d680:18b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:f0:c1:a2:ee:f2:25:63:a4:23:b0:d0:1d:c6:a8:68:3f:62:5a:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:43 2022 GMT
Not After : Sep 25 08:01:43 2023 GMT
Subject: CN=35F70CD30E5986C4E307218B5C0C6F7A0ABBD277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:74:6f:17:8d:86:a4:af:8f:70:a3:ad:35:7d:
cd:e8:d3:d9:d1:77:11:14:b1:7e:ce:e8:48:e3:70:
53:3f:04:5b:7a:61:fb:dc:ce:b0:29:a4:7d:e3:c2:
c0:4c:c7:c7:4c:1a:9e:ca:93:69:b1:5b:8e:bb:2f:
39:54:f0:fe:8e:b7:11:d3:af:ac:6c:11:c5:7a:17:
9d:b7:48:f5:f2:0a:11:a4:1f:1c:0f:65:df:4a:30:
1e:2d:47:41:04:7f:34:c3:cd:75:fc:ca:ac:c1:a3:
26:cf:80:3e:c2:81:59:0a:84:3c:cc:c4:e5:65:f8:
78:63:84:70:0d:6e:3c:66:f3:9a:e0:ee:a5:00:74:
e0:3e:0f:14:84:65:fd:f8:12:90:91:a9:bc:b9:50:
68:8f:ee:9c:b1:4a:9d:27:69:b1:b6:7b:2f:a9:94:
d5:c7:76:79:25:28:7d:ed:e5:85:07:6f:7f:6c:5e:
88:8a:25:c6:01:8e:e5:38:89:44:c9:d5:82:72:52:
5b:72:35:fe:bc:df:e5:a5:a7:35:65:af:b2:fa:f6:
88:09:78:78:d0:21:af:11:cb:f6:02:aa:84:27:24:
80:34:1b:ae:62:d1:48:e7:9b:47:7f:3e:92:81:05:
94:21:54:32:04:73:d7:8a:13:e7:07:dc:7d:3d:e7:
a1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:F7:0C:D3:0E:59:86:C4:E3:07:21:8B:5C:0C:6F:7A:0A:BB:D2:77
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3138623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:18b::/48
Signature Algorithm: sha256WithRSAEncryption
a3:cc:2c:4d:5c:53:06:8c:ad:a9:dd:97:f0:03:cb:a8:47:39:
de:0b:f3:ed:c1:90:5a:23:7e:02:c2:0e:80:88:14:8f:e7:07:
1a:1d:ba:ff:3e:68:d6:1f:d5:51:b2:14:20:b9:48:4c:51:80:
5f:1d:7a:f2:fc:29:c2:54:16:64:8e:40:6b:3b:b8:b3:b2:fc:
99:98:ce:21:05:4b:d5:b2:22:7e:53:8d:c1:3b:98:8e:e5:15:
d3:f0:fc:fa:30:c6:8e:37:cd:63:e8:bf:7f:a9:35:ae:78:a6:
94:93:98:af:aa:03:54:3e:c1:ce:6d:4c:6f:18:b5:1c:22:47:
40:67:89:b2:7d:68:c7:96:60:f4:e4:a5:e7:14:6e:a9:6f:55:
1c:39:e5:e1:d4:13:e1:4a:ef:fb:0f:57:3e:4a:81:8d:32:5e:
a0:ec:4b:64:cd:c1:d3:f3:1e:83:9b:a2:c3:fb:c0:02:16:cb:
c5:ed:b5:83:ec:f1:b1:8e:d5:24:89:2e:8b:a5:27:dc:3e:cd:
1a:68:bf:4d:13:e4:72:ea:aa:af:1b:cc:e3:54:cb:fd:7a:17:
9a:96:c2:03:91:7a:09:27:ef:8c:98:6d:ad:f3:ad:89:42:68:
d3:64:9c:d1:2f:cf:31:30:89:11:ce:4d:55:af:97:7e:8a:ab:
f4:db:16:4a
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUD/DBou7yJWOkI7DQHcaoaD9iWgMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2NDNaFw0yMzA5MjUwODAxNDNaMDMxMTAvBgNV
BAMTKDM1RjcwQ0QzMEU1OTg2QzRFMzA3MjE4QjVDMEM2RjdBMEFCQkQyNzcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRdG8XjYakr49wo601fc3o09nR
dxEUsX7O6EjjcFM/BFt6YfvczrAppH3jwsBMx8dMGp7Kk2mxW467LzlU8P6OtxHT
r6xsEcV6F523SPXyChGkHxwPZd9KMB4tR0EEfzTDzXX8yqzBoybPgD7CgVkKhDzM
xOVl+HhjhHANbjxm85rg7qUAdOA+DxSEZf34EpCRqby5UGiP7pyxSp0nabG2ey+p
lNXHdnklKH3t5YUHb39sXoiKJcYBjuU4iUTJ1YJyUltyNf683+WlpzVlr7L69ogJ
eHjQIa8Ry/YCqoQnJIA0G65i0Ujnm0d/PpKBBZQhVDIEc9eKE+cH3H0956EjAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUNfcM0w5ZhsTjByGLXAxvegq70ncwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzEzODYyM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
izANBgkqhkiG9w0BAQsFAAOCAQEAo8wsTVxTBoytqd2X8APLqEc53gvz7cGQWiN+
AsIOgIgUj+cHGh26/z5o1h/VUbIUILlITFGAXx168vwpwlQWZI5Aazu4s7L8mZjO
IQVL1bIiflONwTuYjuUV0/D8+jDGjjfNY+i/f6k1rnimlJOYr6oDVD7Bzm1Mbxi1
HCJHQGeJsn1ox5Zg9OSl5xRuqW9VHDnl4dQT4Urv+w9XPkqBjTJeoOxLZM3B0/Me
g5uiw/vAAhbLxe21g+zxsY7VJIkui6Un3D7NGmi/TRPkcuqqrxvM41TL/XoXmpbC
A5F6CSfvjJhtrfOtiUJo02Sc0S/PMTCJEc5NVa+Xfoqr9NsWSg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org