Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3163643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 1QcY2Eh4hjhSKJ2dQQC5Iv6QgS8b6JEC3L4v+3W52wE=
Subject key identifier: AD:FE:79:7E:CE:FD:8C:DE:41:5E:0A:7C:80:1F:2B:7F:C8:17:9A:FC
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 027C5DBE09A0309A716D3D290B8250FD246188F1
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:18 +0000
ROA not before: Mon 26 Sep 2022 09:55:18 +0000
ROA not after: Mon 25 Sep 2023 10:00:18 +0000
asID: 59282
IP address blocks: 2400:d680:1cd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:7c:5d:be:09:a0:30:9a:71:6d:3d:29:0b:82:50:fd:24:61:88:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:18 2022 GMT
Not After : Sep 25 10:00:18 2023 GMT
Subject: CN=ADFE797ECEFD8CDE415E0A7C801F2B7FC8179AFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7b:a7:a1:fe:17:68:26:da:77:90:d9:c1:b6:
a6:40:93:c6:77:98:f5:4b:ec:0d:a1:d1:59:ea:1a:
92:c8:15:95:ea:b7:53:18:45:3d:ab:ec:3c:bf:6c:
65:57:32:2d:75:42:14:15:33:3d:4b:bd:ad:99:0c:
5b:1d:ff:fd:ec:09:ac:22:60:ef:96:05:e7:4f:d6:
c3:e6:91:92:1d:09:e2:3b:70:d4:cc:c0:a3:22:db:
6b:99:6e:cf:2f:7c:a0:2f:97:00:4e:04:85:68:08:
1a:b7:70:36:42:bb:c6:19:1d:f1:85:bd:7e:11:6c:
b5:d9:90:e3:38:cc:f5:86:31:54:59:43:bc:c5:26:
11:11:fd:86:74:89:4f:73:e8:88:d6:6f:e0:d4:f2:
49:0a:bb:a3:d7:4b:b8:df:85:67:4a:b9:e2:df:54:
68:9b:cc:e9:e0:e0:0f:9d:29:c7:35:d0:0a:8d:9d:
39:a3:ba:00:81:2f:d4:7b:2a:21:07:44:f3:44:09:
df:11:2a:d4:d3:ba:71:d2:26:c9:b0:ec:be:d7:27:
09:76:38:0c:d6:f0:59:f1:8e:ef:58:a5:e4:72:5d:
48:40:d8:df:d1:f7:5e:49:ba:4e:eb:f3:cd:49:6e:
4b:d0:2e:b5:46:3b:42:a8:ed:d8:e9:4f:6f:be:be:
0b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:FE:79:7E:CE:FD:8C:DE:41:5E:0A:7C:80:1F:2B:7F:C8:17:9A:FC
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3163643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1cd::/48
Signature Algorithm: sha256WithRSAEncryption
8f:8e:0a:48:c3:8a:1d:41:f1:8b:ed:74:2c:54:7b:66:5d:fb:
01:93:78:92:64:8a:76:63:de:74:cd:e4:0b:e4:8f:88:6f:b6:
f0:93:b7:e2:6b:4f:7b:0f:72:7b:d2:60:95:9e:94:91:f0:8e:
ff:06:f6:a6:c1:2b:e8:a0:d7:e5:fa:b6:e2:42:c8:da:81:e3:
73:1c:50:99:b2:37:43:85:d6:32:f0:ba:8b:a1:d2:10:f0:43:
05:ac:aa:5e:f0:6d:11:1f:1b:05:a7:14:d2:50:10:10:4a:2d:
b8:11:eb:82:91:81:dc:45:2a:ca:a4:62:c9:42:d6:18:27:e2:
b6:57:cd:ef:8e:1d:35:78:71:c1:65:00:e1:d3:19:01:6a:3f:
9d:84:ef:9f:ca:ed:79:cf:13:ca:0c:fa:25:98:23:b6:01:aa:
c3:48:ec:c2:df:2e:4b:bc:f4:6f:44:cd:17:37:4d:c7:a6:1d:
db:07:20:cb:ae:6c:e3:95:c1:0a:12:3c:46:55:d9:41:3f:3e:
65:55:ad:3c:14:7e:1f:96:cd:8b:2f:d0:f4:31:5e:a4:45:0f:
67:02:d7:43:43:de:07:97:9f:12:55:7a:1b:03:ca:ec:43:93:
5b:2a:f8:09:49:de:73:81:3a:e6:52:2f:cc:d0:a9:67:cf:9c:
68:67:c4:1c
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUAnxdvgmgMJpxbT0pC4JQ/SRhiPEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MThaFw0yMzA5MjUxMDAwMThaMDMxMTAvBgNV
BAMTKEFERkU3OTdFQ0VGRDhDREU0MTVFMEE3QzgwMUYyQjdGQzgxNzlBRkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXe6eh/hdoJtp3kNnBtqZAk8Z3
mPVL7A2h0VnqGpLIFZXqt1MYRT2r7Dy/bGVXMi11QhQVMz1Lva2ZDFsd//3sCawi
YO+WBedP1sPmkZIdCeI7cNTMwKMi22uZbs8vfKAvlwBOBIVoCBq3cDZCu8YZHfGF
vX4RbLXZkOM4zPWGMVRZQ7zFJhER/YZ0iU9z6IjWb+DU8kkKu6PXS7jfhWdKueLf
VGibzOng4A+dKcc10AqNnTmjugCBL9R7KiEHRPNECd8RKtTTunHSJsmw7L7XJwl2
OAzW8Fnxju9YpeRyXUhA2N/R915Juk7r881JbkvQLrVGO0Ko7djpT2++vgvXAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUrf55fs79jN5BXgp8gB8rf8gXmvwwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzE2MzY0M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
zTANBgkqhkiG9w0BAQsFAAOCAQEAj44KSMOKHUHxi+10LFR7Zl37AZN4kmSKdmPe
dM3kC+SPiG+28JO34mtPew9ye9JglZ6UkfCO/wb2psEr6KDX5fq24kLI2oHjcxxQ
mbI3Q4XWMvC6i6HSEPBDBayqXvBtER8bBacU0lAQEEotuBHrgpGB3EUqyqRiyULW
GCfitlfN744dNXhxwWUA4dMZAWo/nYTvn8rtec8Tygz6JZgjtgGqw0jswt8uS7z0
b0TNFzdNx6Yd2wcgy65s45XBChI8RlXZQT8+ZVWtPBR+H5bNiy/Q9DFepEUPZwLX
Q0PeB5efElV6GwPK7EOTWyr4CUnec4E65lIvzNCpZ8+caGfEHA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org