Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3164343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: btzpV74gGKplaaTu7zinXSgrz5wxqANvxKtoAdy6wmg=
Subject key identifier: 45:A4:25:57:6D:98:79:54:F5:28:4E:2A:F4:9A:1F:E6:C3:49:A3:35
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 30893F6DACB4720B4C4D099D4F0B8BF80EF215A8
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:06 +0000
ROA not before: Mon 26 Sep 2022 09:55:06 +0000
ROA not after: Mon 25 Sep 2023 10:00:06 +0000
asID: 59282
IP address blocks: 2400:d680:1d4::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:89:3f:6d:ac:b4:72:0b:4c:4d:09:9d:4f:0b:8b:f8:0e:f2:15:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:06 2022 GMT
Not After : Sep 25 10:00:06 2023 GMT
Subject: CN=45A425576D987954F5284E2AF49A1FE6C349A335
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:79:cb:28:45:5e:78:5a:d0:36:2b:b2:e1:e8:
99:29:38:e0:4f:23:d2:43:ba:52:33:1c:80:90:e3:
a9:f1:e5:05:e2:07:d4:42:77:79:f9:63:4d:55:82:
11:9a:9d:12:19:13:39:2a:64:2d:6e:76:63:b7:7b:
a2:e5:c3:cb:b6:de:dd:4e:ed:b0:62:91:77:7c:6a:
46:0c:d0:9b:ab:45:e2:20:46:44:af:2b:02:f5:0d:
63:9a:ea:62:5e:fa:3f:ba:1c:7c:5d:bb:64:8f:06:
62:6c:da:80:1d:de:45:e9:26:e6:00:70:71:50:3d:
fc:48:c3:5d:0f:9d:c1:f9:da:5a:2c:b9:ae:33:6d:
82:fb:32:a6:cc:ea:0f:db:34:e1:cc:a6:4f:4b:5f:
a1:46:17:1f:53:9d:d3:56:86:95:45:d4:f4:07:ad:
42:b0:a3:01:a1:64:cf:1f:ce:9e:f7:22:f5:b3:45:
93:ef:45:19:1d:6d:8c:c9:77:9a:46:72:3a:20:06:
44:22:43:69:16:ae:66:9a:f4:d2:07:4e:f8:85:44:
3e:6d:99:7c:79:05:0c:3a:a5:6d:ba:2b:f7:34:dd:
b3:a0:6f:1b:98:90:4f:94:15:93:6a:b4:d7:ce:aa:
df:05:07:4d:69:c0:ef:1f:e1:5b:ca:8b:e9:18:5c:
5e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A4:25:57:6D:98:79:54:F5:28:4E:2A:F4:9A:1F:E6:C3:49:A3:35
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3164343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:1d4::/48
Signature Algorithm: sha256WithRSAEncryption
1d:77:72:b7:c7:d1:4a:3c:8f:45:78:27:a2:a2:44:63:fa:bc:
e5:c5:73:c2:58:22:ce:8b:ac:7b:ec:a9:ad:d0:75:67:4e:a4:
be:54:58:bb:d5:d9:fd:c6:0b:8a:4a:74:85:72:23:ef:19:b3:
a4:08:3a:ea:ff:65:b7:f8:8e:7c:de:70:13:bc:74:87:65:47:
f0:31:33:7c:f5:0b:99:db:cb:bb:0a:b3:99:c3:63:4c:27:d3:
cd:5d:4a:09:8b:dc:5a:c0:4f:b8:0e:ec:73:e5:bb:3c:55:ed:
04:8d:cc:bd:7d:b5:db:60:be:b2:ec:37:30:42:be:e8:bf:a8:
56:09:36:96:ba:00:cf:17:63:88:2a:14:a2:a8:00:b7:13:79:
aa:39:69:73:f0:af:c8:da:29:d2:9c:45:57:66:ef:80:88:86:
e6:c0:2c:c2:6e:da:1e:d1:1f:2b:16:87:22:21:88:d0:f3:35:
95:0d:bb:a7:74:27:cf:11:5b:cc:9d:ea:aa:60:78:91:81:5c:
02:17:df:bb:71:d7:d3:23:70:a7:0c:ac:f3:b6:bd:c2:ef:4c:
6a:21:04:fb:bb:cc:92:f6:09:29:ed:be:c8:30:8f:88:a8:fb:
ad:3c:f8:ae:ce:4e:7d:d2:cf:c1:ec:e7:18:73:52:f2:42:78:
20:ef:7f:aa
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUMIk/bay0cgtMTQmdTwuL+A7yFagwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MDZaFw0yMzA5MjUxMDAwMDZaMDMxMTAvBgNV
BAMTKDQ1QTQyNTU3NkQ5ODc5NTRGNTI4NEUyQUY0OUExRkU2QzM0OUEzMzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxecsoRV54WtA2K7Lh6JkpOOBP
I9JDulIzHICQ46nx5QXiB9RCd3n5Y01VghGanRIZEzkqZC1udmO3e6Llw8u23t1O
7bBikXd8akYM0JurReIgRkSvKwL1DWOa6mJe+j+6HHxdu2SPBmJs2oAd3kXpJuYA
cHFQPfxIw10PncH52losua4zbYL7MqbM6g/bNOHMpk9LX6FGFx9TndNWhpVF1PQH
rUKwowGhZM8fzp73IvWzRZPvRRkdbYzJd5pGcjogBkQiQ2kWrmaa9NIHTviFRD5t
mXx5BQw6pW26K/c03bOgbxuYkE+UFZNqtNfOqt8FB01pwO8f4VvKi+kYXF5xAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQURaQlV22YeVT1KE4q9Jof5sNJozUwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzE2NDM0M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAB
1DANBgkqhkiG9w0BAQsFAAOCAQEAHXdyt8fRSjyPRXgnoqJEY/q85cVzwlgizous
e+yprdB1Z06kvlRYu9XZ/cYLikp0hXIj7xmzpAg66v9lt/iOfN5wE7x0h2VH8DEz
fPULmdvLuwqzmcNjTCfTzV1KCYvcWsBPuA7sc+W7PFXtBI3MvX2122C+suw3MEK+
6L+oVgk2lroAzxdjiCoUoqgAtxN5qjlpc/CvyNop0pxFV2bvgIiG5sAswm7aHtEf
KxaHIiGI0PM1lQ27p3QnzxFbzJ3qqmB4kYFcAhffu3HX0yNwpwys87a9wu9MaiEE
+7vMkvYJKe2+yDCPiKj7rTz4rs5OfdLPweznGHNS8kJ4IO9/qg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:13 2024 by rpki-client on console-fra.rpki-client.org