Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3163613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: MPvRL8Nm6AbqMUfhq6eoxftUjZxVL7QB+s5+KF6o1DA=
Subject key identifier: 5D:7F:82:19:98:E3:79:1B:BF:CA:31:A0:66:43:48:53:BF:A7:DE:0C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1452D76722EA7029351863E0C70661CFB12F270D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:04 +0000
ROA not before: Mon 26 Sep 2022 09:55:04 +0000
ROA not after: Mon 25 Sep 2023 10:00:04 +0000
asID: 59282
IP address blocks: 2400:d680:1ca::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:52:d7:67:22:ea:70:29:35:18:63:e0:c7:06:61:cf:b1:2f:27:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:04 2022 GMT
Not After : Sep 25 10:00:04 2023 GMT
Subject: CN=5D7F821998E3791BBFCA31A066434853BFA7DE0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:71:53:20:42:40:f5:a8:61:c6:da:58:ca:0d:
11:ea:d8:cd:49:08:39:1f:11:0a:18:46:ac:09:40:
a1:c1:f0:b0:57:1c:ae:11:20:1f:8f:58:1e:2e:74:
7b:e0:5e:eb:0f:a7:43:ea:2d:65:37:ed:e7:f1:5e:
c2:a6:8b:1e:2a:49:d2:69:a3:3d:f1:f8:60:6c:da:
18:67:76:66:68:16:02:67:9d:41:f3:85:5f:bb:ea:
d7:53:6e:47:a9:a3:a3:fa:c1:8b:77:2e:f4:b7:1d:
4e:bf:60:54:e1:da:cf:d6:c8:f4:f9:ab:8e:22:c3:
8a:da:8e:08:2e:0c:91:a0:0a:68:0b:48:1b:1a:d7:
92:d8:1f:50:fb:c6:9b:32:25:7c:41:ad:b9:55:92:
31:42:c7:30:97:f2:cd:cc:db:45:13:d4:c5:12:09:
80:36:31:1c:c8:ca:4a:7e:d1:4a:67:07:92:cb:57:
f8:77:14:95:7d:70:58:3f:91:0e:6d:1b:53:40:2b:
ad:96:a5:dd:f3:9c:b8:71:dc:f1:34:49:f5:9d:e5:
8c:b7:cd:0a:5e:a1:50:3a:99:1d:16:c6:9e:56:6e:
1e:84:4d:a8:d3:fe:b8:60:4b:2f:9a:1c:c3:56:2a:
d4:27:a0:1e:1b:a5:e8:0c:d4:94:3b:af:1e:f6:70:
7a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7F:82:19:98:E3:79:1B:BF:CA:31:A0:66:43:48:53:BF:A7:DE:0C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1ca::/48
Signature Algorithm: sha256WithRSAEncryption
49:c6:8c:d6:9d:2b:ba:bf:23:b6:74:35:41:16:be:6b:31:6e:
5f:41:34:c7:e9:aa:ce:c6:7a:ef:4f:61:79:ee:a9:91:15:3a:
58:67:e1:fa:2b:72:68:1d:53:ad:cd:1c:9c:dc:0c:ad:c8:99:
73:5e:80:56:35:a1:2b:a5:75:0a:a4:d4:43:07:60:58:92:9e:
b3:7b:22:19:3a:4c:31:04:33:f7:64:9a:32:7a:ee:58:fb:39:
63:80:b1:08:53:e0:f0:b0:a7:51:34:a2:e6:26:73:48:4a:e8:
2d:eb:0b:4c:b2:32:1f:89:88:19:43:f6:51:af:96:28:a7:38:
ae:a3:5d:35:27:ef:24:b6:87:61:6f:b7:a2:c7:01:98:f6:d7:
13:2c:a5:f7:b8:9c:4a:02:77:aa:8c:32:ac:22:0e:95:de:d8:
cb:99:9b:e5:8e:fb:f2:cb:5f:50:35:d1:c4:0c:b2:36:50:de:
41:c4:b3:c2:36:84:a6:a6:bc:f4:0a:78:e9:11:5e:0d:54:81:
27:54:e2:5e:b3:1c:4e:16:81:10:e8:7b:3d:96:55:7b:24:a3:
b0:14:fe:6c:20:1e:69:2e:75:da:c9:2f:28:cd:24:ab:42:fa:
d9:cc:08:91:64:3d:97:8a:01:5f:3d:44:d3:27:94:6d:e3:81:
0f:be:92:42
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUFFLXZyLqcCk1GGPgxwZhz7EvJw0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MDRaFw0yMzA5MjUxMDAwMDRaMDMxMTAvBgNV
BAMTKDVEN0Y4MjE5OThFMzc5MUJCRkNBMzFBMDY2NDM0ODUzQkZBN0RFMEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1cVMgQkD1qGHG2ljKDRHq2M1J
CDkfEQoYRqwJQKHB8LBXHK4RIB+PWB4udHvgXusPp0PqLWU37efxXsKmix4qSdJp
oz3x+GBs2hhndmZoFgJnnUHzhV+76tdTbkepo6P6wYt3LvS3HU6/YFTh2s/WyPT5
q44iw4rajgguDJGgCmgLSBsa15LYH1D7xpsyJXxBrblVkjFCxzCX8s3M20UT1MUS
CYA2MRzIykp+0UpnB5LLV/h3FJV9cFg/kQ5tG1NAK62Wpd3znLhx3PE0SfWd5Yy3
zQpeoVA6mR0Wxp5Wbh6ETajT/rhgSy+aHMNWKtQnoB4bpegM1JQ7rx72cHqJAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUXX+CGZjjeRu/yjGgZkNIU7+n3gwwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzE2MzYxM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
yjANBgkqhkiG9w0BAQsFAAOCAQEAScaM1p0rur8jtnQ1QRa+azFuX0E0x+mqzsZ6
709hee6pkRU6WGfh+ityaB1Trc0cnNwMrciZc16AVjWhK6V1CqTUQwdgWJKes3si
GTpMMQQz92SaMnruWPs5Y4CxCFPg8LCnUTSi5iZzSEroLesLTLIyH4mIGUP2Ua+W
KKc4rqNdNSfvJLaHYW+3oscBmPbXEyyl97icSgJ3qowyrCIOld7Yy5mb5Y778stf
UDXRxAyyNlDeQcSzwjaEpqa89Ap46RFeDVSBJ1TiXrMcThaBEOh7PZZVeySjsBT+
bCAeaS512skvKM0kq0L62cwIkWQ9l4oBXz1E0yeUbeOBD76SQg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org