Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3163303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: b8W4IMzP6Bz3SJ2hegHxpXwfwIg25WtEAxL7bEPilk4=
Subject key identifier: E3:C3:DA:2F:34:64:A7:AD:23:C2:B7:DF:9E:19:BE:4A:CE:F3:19:53
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7A015EEB1D089BB112E97BC72B18A47E1D1BE5C3
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:05 +0000
ROA not before: Mon 26 Sep 2022 09:55:05 +0000
ROA not after: Mon 25 Sep 2023 10:00:05 +0000
asID: 59282
IP address blocks: 2400:d680:1c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:01:5e:eb:1d:08:9b:b1:12:e9:7b:c7:2b:18:a4:7e:1d:1b:e5:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:05 2022 GMT
Not After : Sep 25 10:00:05 2023 GMT
Subject: CN=E3C3DA2F3464A7AD23C2B7DF9E19BE4ACEF31953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8c:d6:4e:3e:86:4f:03:e3:89:00:de:f5:fd:
82:07:37:f8:02:5a:f5:98:8a:0a:5e:aa:32:18:c4:
c2:07:42:29:f6:38:36:82:80:50:79:22:bd:0f:5c:
f4:2a:18:b5:16:e0:bb:ad:c3:60:9f:ff:78:d1:e1:
da:5c:67:4d:38:37:ac:0c:4a:70:a2:6b:bf:ec:7f:
c4:b2:fe:d2:02:33:04:3a:62:89:d5:45:2e:63:00:
c1:7b:0a:c4:46:56:38:9e:ec:10:c2:fe:2d:83:d1:
da:10:3e:ca:79:f2:ad:a1:3d:0a:1b:9c:6b:00:7d:
ec:1d:d8:8a:1c:5a:19:e7:51:b5:51:07:65:f3:e0:
4b:c5:d2:fc:2b:97:cb:c8:67:3f:dc:1a:4c:b1:4d:
ec:65:8f:1a:3c:56:ca:c4:3b:83:d0:bd:2b:e6:1f:
60:e8:33:e9:b2:d8:c5:61:07:4d:72:6e:d1:3c:f0:
90:f4:52:f7:a6:cb:ae:12:9a:38:53:0e:e4:6f:ca:
af:a2:63:ad:45:db:87:81:c7:88:79:65:f7:35:74:
72:38:54:38:6e:9d:a7:0e:9c:34:bb:36:6d:c7:a8:
7e:d7:f5:0e:f5:35:ac:f3:6e:05:48:a4:80:14:f1:
4f:91:6d:ed:5f:0b:67:ff:80:8b:ed:fc:c6:35:f0:
21:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:C3:DA:2F:34:64:A7:AD:23:C2:B7:DF:9E:19:BE:4A:CE:F3:19:53
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1c0::/48
Signature Algorithm: sha256WithRSAEncryption
8a:0c:b3:53:f1:76:d8:77:66:0b:52:e5:c3:27:19:03:3c:42:
7b:db:85:35:83:e0:7f:61:b9:0d:01:4f:37:e7:78:74:d1:be:
b5:1c:cf:7a:83:35:cc:8a:75:c7:24:c9:b2:ef:50:be:69:f8:
0b:33:64:0d:dc:f6:fd:35:fd:55:bf:aa:c5:85:29:89:15:47:
c9:f1:5a:c4:3e:d4:6b:18:f6:0f:0e:78:34:38:d1:78:63:05:
20:9c:ef:2e:ba:43:d4:0e:4a:83:71:43:8b:9c:8d:fa:17:c9:
3d:dd:be:c7:5c:0c:5f:4a:82:0e:3e:b7:72:29:a0:00:7e:c5:
c7:c1:e0:7e:02:2e:41:73:0b:ae:a5:62:58:dc:23:9f:6b:5e:
b4:11:2f:fb:60:41:ed:58:16:6f:32:de:f8:dd:1d:11:01:d1:
87:9e:31:42:2d:7c:ec:e3:1c:84:58:b4:cd:fc:e6:5f:3c:d0:
12:3c:de:f6:be:61:e6:7a:19:c4:c0:50:c9:ce:0e:cd:c9:14:
2f:36:69:d3:12:65:fb:4e:6f:72:49:8d:81:81:64:21:cd:0e:
44:1a:ee:56:2c:2e:7d:76:4f:0e:f6:57:09:84:db:41:0e:db:
6d:a4:e1:1b:b1:91:b7:57:f6:d6:bc:01:9c:7b:85:47:a7:ca:
a7:e4:b4:37
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUegFe6x0Im7ES6XvHKxikfh0b5cMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MDVaFw0yMzA5MjUxMDAwMDVaMDMxMTAvBgNV
BAMTKEUzQzNEQTJGMzQ2NEE3QUQyM0MyQjdERjlFMTlCRTRBQ0VGMzE5NTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxjNZOPoZPA+OJAN71/YIHN/gC
WvWYigpeqjIYxMIHQin2ODaCgFB5Ir0PXPQqGLUW4Lutw2Cf/3jR4dpcZ004N6wM
SnCia7/sf8Sy/tICMwQ6YonVRS5jAMF7CsRGVjie7BDC/i2D0doQPsp58q2hPQob
nGsAfewd2IocWhnnUbVRB2Xz4EvF0vwrl8vIZz/cGkyxTexljxo8VsrEO4PQvSvm
H2DoM+my2MVhB01ybtE88JD0Uvemy64SmjhTDuRvyq+iY61F24eBx4h5Zfc1dHI4
VDhunacOnDS7Nm3HqH7X9Q71NazzbgVIpIAU8U+Rbe1fC2f/gIvt/MY18CGPAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU48PaLzRkp60jwrffnhm+Ss7zGVMwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzE2MzMwM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
wDANBgkqhkiG9w0BAQsFAAOCAQEAigyzU/F22HdmC1LlwycZAzxCe9uFNYPgf2G5
DQFPN+d4dNG+tRzPeoM1zIp1xyTJsu9Qvmn4CzNkDdz2/TX9Vb+qxYUpiRVHyfFa
xD7Uaxj2Dw54NDjReGMFIJzvLrpD1A5Kg3FDi5yN+hfJPd2+x1wMX0qCDj63cimg
AH7Fx8HgfgIuQXMLrqViWNwjn2tetBEv+2BB7VgWbzLe+N0dEQHRh54xQi187OMc
hFi0zfzmXzzQEjze9r5h5noZxMBQyc4OzckULzZp0xJl+05vckmNgYFkIc0ORBru
ViwufXZPDvZXCYTbQQ7bbaThG7GRt1f21rwBnHuFR6fKp+S0Nw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org