Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Ew+HoTo2eRE9/J7eFTQUhmL/fze1abm1cbdlrcjBYMg=
Subject key identifier: FD:1E:94:E8:77:60:31:43:EB:9B:4C:14:6B:CB:E7:49:7A:FF:42:BD
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1E44C40046AD457FD5316B08FA72FFABAD3622D7
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 07:00:03 +0000
ROA not before: Mon 26 Sep 2022 06:55:03 +0000
ROA not after: Mon 25 Sep 2023 07:00:03 +0000
asID: 59282
IP address blocks: 2400:d680:1::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:44:c4:00:46:ad:45:7f:d5:31:6b:08:fa:72:ff:ab:ad:36:22:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 06:55:03 2022 GMT
Not After : Sep 25 07:00:03 2023 GMT
Subject: CN=FD1E94E877603143EB9B4C146BCBE7497AFF42BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c4:e2:3d:3a:38:30:86:f9:e3:f6:de:87:b0:
ed:8a:b4:f9:00:67:d5:fb:aa:ef:01:d6:96:ae:77:
4f:54:4b:b0:30:6f:0e:ab:a4:53:64:f7:8a:ea:f9:
a3:c2:0b:da:61:85:92:ac:f4:9f:96:20:48:cb:25:
d7:75:9d:35:4b:ec:cc:b5:d4:41:f5:95:60:d2:8e:
fd:ab:bc:6f:fa:c6:70:a3:16:18:21:cf:60:ae:5e:
30:f9:73:4b:5f:68:18:47:f7:cc:0e:28:47:ad:ff:
e5:d9:5c:4d:13:16:e9:5c:2f:d8:c3:fd:6c:5d:b4:
b9:6f:dc:c3:52:a8:78:24:4e:ca:90:d4:1c:51:58:
50:9e:22:ec:14:a0:05:7b:3e:0f:00:3a:33:17:53:
b2:7d:e7:09:78:3f:ca:02:9b:a1:dd:76:7b:bc:dc:
66:e3:9a:fc:47:dc:d4:c9:de:42:07:e4:1b:66:03:
6a:0d:8c:24:63:d8:ad:49:c6:70:ea:34:02:83:dc:
40:39:8d:6c:74:dd:a5:18:81:60:15:b3:e8:45:68:
12:b1:e7:fe:9a:57:b0:c1:43:48:08:be:33:5c:e3:
1c:9b:42:04:6c:e7:3d:de:a8:43:20:9a:c4:4a:e2:
c7:f2:e4:f0:c9:c7:b2:32:cc:fc:e3:63:cf:66:7c:
61:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:1E:94:E8:77:60:31:43:EB:9B:4C:14:6B:CB:E7:49:7A:FF:42:BD
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1::/48
Signature Algorithm: sha256WithRSAEncryption
35:9f:6c:82:67:9c:5a:44:8c:2d:b6:f5:08:f7:74:4b:a7:7a:
c1:e5:c3:f3:ca:0f:95:2d:73:18:6f:24:b7:34:1b:e1:20:d8:
db:c5:dd:1d:5b:e3:bf:85:18:9d:22:ed:cf:9b:d5:e6:2a:4e:
7e:a3:41:32:ee:b0:ec:a0:11:b5:28:05:76:1d:2e:ae:dd:59:
c8:fb:42:dc:70:40:b7:11:35:da:5b:df:a1:6d:6b:d7:39:2b:
d1:e3:d8:28:51:89:fd:23:c8:0c:7e:39:0f:40:25:be:e9:dd:
5f:a3:f8:ac:74:af:ac:58:88:86:48:4a:34:21:28:b4:76:3d:
17:fe:39:f0:eb:5c:18:d6:aa:94:fc:0f:fd:ab:30:54:94:cd:
83:d5:4b:59:71:45:68:61:6c:ab:44:27:80:8f:bc:a4:d7:51:
3d:ff:54:31:96:f1:14:3a:dd:40:1f:58:0d:2c:41:10:84:da:
eb:f5:8f:64:b2:1c:56:72:10:6d:31:71:f3:7c:7d:18:74:7d:
ce:5a:32:ae:c2:00:cc:5b:1c:10:c1:3b:d3:cf:15:4e:f5:f7:
29:d9:41:7e:f0:46:22:91:12:25:01:36:ff:c5:2e:d2:c3:bd:
d1:a4:25:fe:dd:c9:25:ab:81:b3:bc:d6:b9:1f:65:1e:66:72:
93:3a:84:9b
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgIUHkTEAEatRX/VMWsI+nL/q602ItcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNjU1MDNaFw0yMzA5MjUwNzAwMDNaMDMxMTAvBgNV
BAMTKEZEMUU5NEU4Nzc2MDMxNDNFQjlCNEMxNDZCQ0JFNzQ5N0FGRjQyQkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsxOI9Ojgwhvnj9t6HsO2KtPkA
Z9X7qu8B1paud09US7Awbw6rpFNk94rq+aPCC9phhZKs9J+WIEjLJdd1nTVL7My1
1EH1lWDSjv2rvG/6xnCjFhghz2CuXjD5c0tfaBhH98wOKEet/+XZXE0TFulcL9jD
/WxdtLlv3MNSqHgkTsqQ1BxRWFCeIuwUoAV7Pg8AOjMXU7J95wl4P8oCm6Hddnu8
3GbjmvxH3NTJ3kIH5BtmA2oNjCRj2K1JxnDqNAKD3EA5jWx03aUYgWAVs+hFaBKx
5/6aV7DBQ0gIvjNc4xybQgRs5z3eqEMgmsRK4sfy5PDJx7IyzPzjY89mfGEtAgMB
AAGjggI3MIICMzAdBgNVHQ4EFgQU/R6U6HdgMUPrm0wUa8vnSXr/Qr0wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzEzYTNhMmYz
NDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADWgAABMA0G
CSqGSIb3DQEBCwUAA4IBAQA1n2yCZ5xaRIwttvUI93RLp3rB5cPzyg+VLXMYbyS3
NBvhINjbxd0dW+O/hRidIu3Pm9XmKk5+o0Ey7rDsoBG1KAV2HS6u3VnI+0LccEC3
ETXaW9+hbWvXOSvR49goUYn9I8gMfjkPQCW+6d1fo/isdK+sWIiGSEo0ISi0dj0X
/jnw61wY1qqU/A/9qzBUlM2D1UtZcUVoYWyrRCeAj7yk11E9/1QxlvEUOt1AH1gN
LEEQhNrr9Y9kshxWchBtMXHzfH0YdH3OWjKuwgDMWxwQwTvTzxVO9fcp2UF+8EYi
kRIlATb/xS7Sw73RpCX+3cklq4GzvNa5H2UeZnKTOoSb
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org