Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3162393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: e7hWEgW3zF8+jrU9D5vksf6ui9f/R5NacYckVhgYrMU=
Subject key identifier: A8:98:52:56:AE:94:90:1C:4D:BC:38:B8:5A:C9:A9:9A:D2:F4:D0:2D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 21E6CC73B64AC6E26B0BEA052E62DA1D8D9E216D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:06 +0000
ROA not before: Mon 26 Sep 2022 09:55:06 +0000
ROA not after: Mon 25 Sep 2023 10:00:06 +0000
asID: 59282
IP address blocks: 2400:d680:1b9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:e6:cc:73:b6:4a:c6:e2:6b:0b:ea:05:2e:62:da:1d:8d:9e:21:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:06 2022 GMT
Not After : Sep 25 10:00:06 2023 GMT
Subject: CN=A8985256AE94901C4DBC38B85AC9A99AD2F4D02D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2f:6d:05:10:23:b0:56:fa:57:d7:cf:9d:33:
4d:1e:69:3a:26:83:db:25:51:b2:d6:d9:91:63:0a:
c3:04:a1:b9:ad:46:4b:c0:10:5d:7f:79:5f:ad:51:
a1:52:4a:ca:46:29:d2:a9:42:5e:b2:f1:44:2c:18:
2f:c0:b4:52:db:f0:69:c4:92:06:73:ed:0f:ff:72:
bc:a8:92:cc:83:75:b5:25:cb:9d:12:a0:af:a6:cb:
4d:6f:0d:dd:81:1b:28:ba:e4:8f:d3:59:d8:9e:ef:
2f:c5:ed:bd:c2:71:af:1c:77:ec:0d:36:24:85:de:
0c:d2:18:49:9c:3a:ad:e6:6a:c6:71:6d:0a:59:9c:
ec:11:5e:37:66:54:6e:80:f5:31:b0:a7:84:48:35:
0a:a6:cd:d8:2a:9a:e2:f7:47:91:82:42:bc:09:f2:
70:1f:17:7c:55:8c:ea:75:b3:ea:64:95:f4:16:48:
13:cf:45:c6:3e:9e:ff:2c:9d:f0:e1:97:11:2d:a4:
34:7f:dc:1c:c2:b6:f3:b2:ba:40:48:9c:16:ff:74:
6b:d4:4a:e1:d1:18:34:73:30:2c:b4:12:af:c0:5c:
c1:89:dc:a0:56:18:dc:2a:a2:f9:01:91:17:75:e5:
c0:9d:30:ee:45:87:d7:48:55:46:92:d1:5a:56:60:
aa:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:98:52:56:AE:94:90:1C:4D:BC:38:B8:5A:C9:A9:9A:D2:F4:D0:2D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3162393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1b9::/48
Signature Algorithm: sha256WithRSAEncryption
91:a3:f1:98:04:9c:18:53:a7:a7:5f:79:0d:d7:9f:6e:bb:48:
ec:a1:48:eb:21:9a:01:4b:56:50:34:34:ef:ee:3b:d4:51:ab:
9d:81:98:b9:3e:c9:b7:f1:6a:bf:29:99:18:4c:de:60:cb:43:
54:31:05:d0:f1:f1:b7:e1:a2:d7:f6:42:db:dd:cb:15:97:61:
e0:50:d1:d4:25:e7:8c:e3:a5:62:12:c9:aa:3d:08:a0:d1:bb:
18:a8:89:a3:43:3e:c1:6d:30:b6:30:54:59:42:06:1a:64:39:
71:a5:4e:98:2f:18:3f:da:b4:95:b3:2b:f2:34:f2:c5:58:e2:
06:9d:d8:b3:c6:e4:57:2a:53:8e:71:61:9b:88:02:67:45:a9:
58:32:bc:8a:96:6f:55:56:2e:fc:12:a7:4d:5d:ea:eb:85:6e:
20:27:ef:c1:11:d7:5a:3f:f2:b1:f3:a8:de:b5:3d:ec:c8:20:
41:c6:75:30:f0:71:93:21:d5:61:04:ac:b6:63:51:2e:3d:88:
67:ae:66:2c:ba:59:ef:f6:01:7b:ca:f7:e8:d4:47:6f:fd:98:
b7:40:ef:e9:f9:72:3e:28:ff:a8:d2:75:a2:9b:53:d5:15:bf:
2c:c8:f5:d6:e5:0f:39:27:b8:58:d3:6e:d2:10:0c:70:45:64:
19:62:18:6b
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUIebMc7ZKxuJrC+oFLmLaHY2eIW0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MDZaFw0yMzA5MjUxMDAwMDZaMDMxMTAvBgNV
BAMTKEE4OTg1MjU2QUU5NDkwMUM0REJDMzhCODVBQzlBOTlBRDJGNEQwMkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKL20FECOwVvpX18+dM00eaTom
g9slUbLW2ZFjCsMEobmtRkvAEF1/eV+tUaFSSspGKdKpQl6y8UQsGC/AtFLb8GnE
kgZz7Q//cryoksyDdbUly50SoK+my01vDd2BGyi65I/TWdie7y/F7b3Cca8cd+wN
NiSF3gzSGEmcOq3masZxbQpZnOwRXjdmVG6A9TGwp4RINQqmzdgqmuL3R5GCQrwJ
8nAfF3xVjOp1s+pklfQWSBPPRcY+nv8snfDhlxEtpDR/3BzCtvOyukBInBb/dGvU
SuHRGDRzMCy0Eq/AXMGJ3KBWGNwqovkBkRd15cCdMO5Fh9dIVUaS0VpWYKo1AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUqJhSVq6UkBxNvDi4WsmpmtL00C0wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzE2MjM5M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
uTANBgkqhkiG9w0BAQsFAAOCAQEAkaPxmAScGFOnp195DdefbrtI7KFI6yGaAUtW
UDQ07+471FGrnYGYuT7Jt/FqvymZGEzeYMtDVDEF0PHxt+Gi1/ZC293LFZdh4FDR
1CXnjOOlYhLJqj0IoNG7GKiJo0M+wW0wtjBUWUIGGmQ5caVOmC8YP9q0lbMr8jTy
xVjiBp3Ys8bkVypTjnFhm4gCZ0WpWDK8ipZvVVYu/BKnTV3q64VuICfvwRHXWj/y
sfOo3rU97MggQcZ1MPBxkyHVYQSstmNRLj2IZ65mLLpZ7/YBe8r36NRHb/2Yt0Dv
6flyPij/qNJ1optT1RW/LMj11uUPOSe4WNNu0hAMcEVkGWIYaw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org