Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3161353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: p7u8SChKDomwpBPNqQgM0tww+sAKHBSwIU4IivtPiC0=
Subject key identifier: 4B:7D:E1:55:E7:3E:D7:1B:DD:83:E2:5C:E8:2F:81:7E:23:53:D5:41
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 62F9D69130263BC6DED8C654F8E754A0542E64AF
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:32 +0000
ROA not before: Mon 26 Sep 2022 09:55:32 +0000
ROA not after: Mon 25 Sep 2023 10:00:32 +0000
asID: 59282
IP address blocks: 2400:d680:1a5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:f9:d6:91:30:26:3b:c6:de:d8:c6:54:f8:e7:54:a0:54:2e:64:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:32 2022 GMT
Not After : Sep 25 10:00:32 2023 GMT
Subject: CN=4B7DE155E73ED71BDD83E25CE82F817E2353D541
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c4:d0:c1:aa:2c:24:fb:64:30:06:90:0e:bf:
9f:4f:1b:ee:f1:58:59:24:c0:ef:47:3d:8d:f8:50:
7a:de:78:c2:fb:00:63:af:08:43:0f:de:5c:f2:71:
60:02:2d:97:66:24:ba:24:04:15:ce:13:ab:0a:e6:
25:5e:38:16:56:bb:e8:95:58:db:ac:24:7c:07:46:
3a:db:df:78:cd:b3:dd:a3:e4:58:ce:50:a0:eb:d9:
9b:2f:24:6e:38:eb:52:99:33:3e:c9:df:8d:0f:1f:
47:2c:58:dd:9a:94:bd:5f:e6:22:35:c6:48:97:f7:
5e:59:af:77:1e:45:e7:d1:92:d8:ae:16:72:1e:73:
92:f5:1f:c6:ca:f4:37:e4:80:19:3c:bd:c6:9b:5d:
52:60:3d:37:ad:74:0b:ae:c2:aa:9a:3e:0d:4f:55:
04:7b:f2:90:d9:25:e8:ec:5c:63:3b:a9:d1:f1:46:
bc:36:3f:0a:43:84:76:22:e1:0b:61:a2:f3:84:34:
90:5e:7e:a1:b9:37:ae:6d:7a:72:9f:f4:be:d0:3e:
a4:68:d5:d9:9a:24:d4:fa:79:7d:67:dc:d4:99:fb:
9f:2e:3c:65:06:b9:fa:f4:78:fc:75:19:85:a1:52:
2e:f7:89:0f:a5:76:37:94:7a:2a:8d:c7:2f:ec:77:
41:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:7D:E1:55:E7:3E:D7:1B:DD:83:E2:5C:E8:2F:81:7E:23:53:D5:41
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3161353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1a5::/48
Signature Algorithm: sha256WithRSAEncryption
2d:2d:0b:1e:54:b6:64:1d:85:ce:07:35:39:3d:83:d1:7c:4f:
3a:60:6b:9c:57:c7:be:54:31:97:57:39:d3:a1:2d:75:d8:8e:
f9:f7:b6:49:d7:fd:da:9b:ea:1b:f3:c8:c1:f4:c2:d1:42:29:
be:5e:c5:72:bd:a9:30:58:c7:2b:2d:98:5c:46:39:2d:d6:ec:
ef:6c:95:50:26:7b:a6:67:6f:f1:76:f0:b5:8f:f7:11:06:4b:
e5:c9:3b:c8:c9:f6:5b:a9:56:55:9c:90:d1:c7:26:81:c2:6f:
99:0d:64:68:01:ee:b1:af:88:4b:b8:c0:64:13:4e:61:e6:35:
66:b9:4d:38:54:39:6b:67:d2:a2:19:92:a8:c1:36:3e:ea:3d:
2e:19:4f:c7:0e:17:9e:fe:92:01:61:33:a0:3a:06:f8:fe:5e:
49:a8:a2:b0:3a:eb:0a:ab:1e:2b:91:12:2e:ea:9b:0d:9c:52:
32:e6:53:c2:ae:cf:d1:b4:33:77:61:42:b8:42:e0:30:98:24:
42:30:8f:e1:96:1d:b2:0e:99:23:79:fb:20:5d:24:a3:65:8a:
42:97:fe:9a:8c:9b:d5:83:fe:9c:9d:bd:61:00:30:c1:fe:cf:
7d:93:6c:4c:0a:bd:cb:f4:bb:a4:31:61:c3:2d:72:42:3e:bb:
bc:21:48:07
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUYvnWkTAmO8be2MZU+OdUoFQuZK8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MzJaFw0yMzA5MjUxMDAwMzJaMDMxMTAvBgNV
BAMTKDRCN0RFMTU1RTczRUQ3MUJERDgzRTI1Q0U4MkY4MTdFMjM1M0Q1NDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqxNDBqiwk+2QwBpAOv59PG+7x
WFkkwO9HPY34UHreeML7AGOvCEMP3lzycWACLZdmJLokBBXOE6sK5iVeOBZWu+iV
WNusJHwHRjrb33jNs92j5FjOUKDr2ZsvJG4461KZMz7J340PH0csWN2alL1f5iI1
xkiX915Zr3ceRefRktiuFnIec5L1H8bK9DfkgBk8vcabXVJgPTetdAuuwqqaPg1P
VQR78pDZJejsXGM7qdHxRrw2PwpDhHYi4QthovOENJBefqG5N65tenKf9L7QPqRo
1dmaJNT6eX1n3NSZ+58uPGUGufr0ePx1GYWhUi73iQ+ldjeUeiqNxy/sd0G/AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUS33hVec+1xvdg+Jc6C+BfiNT1UEwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzE2MTM1M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
pTANBgkqhkiG9w0BAQsFAAOCAQEALS0LHlS2ZB2Fzgc1OT2D0XxPOmBrnFfHvlQx
l1c506EtddiO+fe2Sdf92pvqG/PIwfTC0UIpvl7Fcr2pMFjHKy2YXEY5Ldbs72yV
UCZ7pmdv8XbwtY/3EQZL5ck7yMn2W6lWVZyQ0ccmgcJvmQ1kaAHusa+IS7jAZBNO
YeY1ZrlNOFQ5a2fSohmSqME2Puo9LhlPxw4Xnv6SAWEzoDoG+P5eSaiisDrrCqse
K5ESLuqbDZxSMuZTwq7P0bQzd2FCuELgMJgkQjCP4ZYdsg6ZI3n7IF0ko2WKQpf+
moyb1YP+nJ29YQAwwf7PfZNsTAq9y/S7pDFhwy1yQj67vCFIBw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org