Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3139623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: HEPqKB6ESmneWVcJzNZCuDaHYrd+Brra1IC/jBf2eRs=
Subject key identifier: 8E:FE:BF:79:93:51:DC:24:E5:5E:16:19:66:E6:B9:27:71:A1:FD:FF
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6A2486C8AAB51F0EDDE1E8E1885ED38245E1C75C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:25 +0000
ROA not before: Mon 26 Sep 2022 07:56:25 +0000
ROA not after: Mon 25 Sep 2023 08:01:25 +0000
asID: 59282
IP address blocks: 2400:d680:19b::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:24:86:c8:aa:b5:1f:0e:dd:e1:e8:e1:88:5e:d3:82:45:e1:c7:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:25 2022 GMT
Not After : Sep 25 08:01:25 2023 GMT
Subject: CN=8EFEBF799351DC24E55E161966E6B92771A1FDFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:ce:ff:7d:e6:09:74:2a:aa:d3:b5:7e:ed:6b:
8e:ea:60:17:6d:46:d2:99:b3:0b:6a:60:66:d5:8d:
6c:77:68:35:2e:39:1a:50:75:a4:53:63:5e:31:09:
df:68:ce:8e:9c:91:8f:86:06:b8:d5:ee:3a:16:f7:
24:23:10:bf:41:86:bb:70:c1:92:44:a5:bd:c9:a7:
45:f4:1f:38:eb:54:65:a6:14:79:2e:06:8b:48:b4:
f5:31:56:a6:b1:1c:42:ad:2d:7a:38:e2:fe:bf:c0:
48:6c:8e:ae:d2:1e:aa:9d:3c:0c:6d:28:0e:e5:dd:
f9:17:35:56:9f:c5:58:53:09:f1:a6:b4:6b:b3:94:
7e:3f:27:d3:1e:25:72:f6:f4:ae:bb:25:4b:4c:0e:
dc:03:02:7b:8c:d9:79:96:1a:2d:88:a9:d0:80:8e:
72:06:fe:ed:7d:6d:84:a9:ba:91:14:8c:12:f0:c0:
4f:34:d2:f7:21:33:4f:11:1e:b1:a6:6a:ff:87:f9:
05:a6:a2:90:72:f1:48:08:36:6c:b9:de:55:27:28:
11:43:13:19:e2:85:c2:d6:ac:64:1d:a6:c8:d9:79:
04:1f:7d:69:08:04:f2:34:1b:94:a9:10:d4:23:5e:
f2:45:8e:10:fe:1e:b4:28:f4:82:e8:1d:9b:aa:06:
41:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:FE:BF:79:93:51:DC:24:E5:5E:16:19:66:E6:B9:27:71:A1:FD:FF
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3139623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:19b::/48
Signature Algorithm: sha256WithRSAEncryption
b7:3a:42:04:5d:bf:fc:2b:48:f0:b4:98:b2:99:1d:a0:49:2d:
84:13:45:02:fb:3e:ee:0b:b6:7a:61:8f:d1:f3:50:75:36:df:
b9:c8:fa:e5:4c:03:c3:41:43:0d:b0:d4:4c:98:ef:de:c0:ee:
d3:33:09:9f:19:d7:3c:52:3a:ba:18:53:0b:ea:91:cb:df:c9:
5c:54:a2:75:65:d3:67:9b:55:49:7d:66:ca:6c:34:57:85:84:
74:9d:06:5b:78:3a:b2:af:40:9f:07:3c:8e:d7:d3:8f:99:3a:
fe:27:03:e3:ef:4e:89:c6:47:e9:05:b7:44:f4:be:fa:2b:2a:
01:1f:c1:e8:c6:b0:d2:bd:cb:79:3f:84:a1:2b:70:bc:b7:1d:
e2:53:65:63:c4:04:f8:79:89:74:2c:8c:8c:47:74:48:ee:ed:
40:be:d4:c1:e4:76:93:df:5a:a5:f6:c8:96:bf:3f:5e:22:7a:
c0:57:c4:8e:6d:bf:cb:65:cc:40:e8:89:d1:db:41:10:48:e3:
5d:e1:3f:74:20:35:9c:0c:bc:83:dd:f0:dc:2d:4d:b8:3d:83:
31:9b:57:85:7e:70:d6:93:9d:61:9e:1b:81:c7:43:1f:46:03:
94:34:9f:cb:dc:8d:a4:3c:92:bc:f6:50:63:62:c2:e5:19:da:
d0:e8:84:57
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUaiSGyKq1Hw7d4ejhiF7TgkXhx1wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MjVaFw0yMzA5MjUwODAxMjVaMDMxMTAvBgNV
BAMTKDhFRkVCRjc5OTM1MURDMjRFNTVFMTYxOTY2RTZCOTI3NzFBMUZERkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4zv995gl0KqrTtX7ta47qYBdt
RtKZswtqYGbVjWx3aDUuORpQdaRTY14xCd9ozo6ckY+GBrjV7joW9yQjEL9Bhrtw
wZJEpb3Jp0X0HzjrVGWmFHkuBotItPUxVqaxHEKtLXo44v6/wEhsjq7SHqqdPAxt
KA7l3fkXNVafxVhTCfGmtGuzlH4/J9MeJXL29K67JUtMDtwDAnuM2XmWGi2IqdCA
jnIG/u19bYSpupEUjBLwwE800vchM08RHrGmav+H+QWmopBy8UgINmy53lUnKBFD
ExnihcLWrGQdpsjZeQQffWkIBPI0G5SpENQjXvJFjhD+HrQo9ILoHZuqBkHnAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUjv6/eZNR3CTlXhYZZua5J3Gh/f8wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzEzOTYyM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
mzANBgkqhkiG9w0BAQsFAAOCAQEAtzpCBF2//CtI8LSYspkdoEkthBNFAvs+7gu2
emGP0fNQdTbfucj65UwDw0FDDbDUTJjv3sDu0zMJnxnXPFI6uhhTC+qRy9/JXFSi
dWXTZ5tVSX1mymw0V4WEdJ0GW3g6sq9Anwc8jtfTj5k6/icD4+9OicZH6QW3RPS+
+isqAR/B6Maw0r3LeT+EoStwvLcd4lNlY8QE+HmJdCyMjEd0SO7tQL7UweR2k99a
pfbIlr8/XiJ6wFfEjm2/y2XMQOiJ0dtBEEjjXeE/dCA1nAy8g93w3C1NuD2DMZtX
hX5w1pOdYZ4bgcdDH0YDlDSfy9yNpDySvPZQY2LC5Rna0OiEVw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org