Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230323a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3230323a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: UDrHS24a/g9eRhfWTCNHciu3BDiXCX1a9oFlOw/O2Lk=
Subject key identifier: AA:89:D0:6B:62:22:68:96:F9:85:83:3D:BC:6B:83:AB:1F:4A:6E:4A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 17D6F004E13E61D82B074DD971351A6863BEFDA8
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230323a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:21 +0000
ROA not before: Mon 26 Sep 2022 07:56:21 +0000
ROA not after: Mon 25 Sep 2023 08:01:21 +0000
asID: 59282
IP address blocks: 2400:d680:202::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:d6:f0:04:e1:3e:61:d8:2b:07:4d:d9:71:35:1a:68:63:be:fd:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:21 2022 GMT
Not After : Sep 25 08:01:21 2023 GMT
Subject: CN=AA89D06B62226896F985833DBC6B83AB1F4A6E4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:6d:a1:24:8f:fd:c8:dc:8d:08:48:ea:f8:05:
94:fb:89:99:cf:98:3d:7c:65:0d:ac:e2:05:db:e4:
9c:1f:d4:9d:0a:fa:59:55:23:8d:9a:93:b9:53:a1:
ca:cb:49:7b:4b:2b:05:b2:b7:bc:33:ea:34:c0:fd:
9f:f8:2b:19:f3:9e:c2:de:29:b0:12:71:29:03:6c:
e6:1b:a5:e2:1c:c6:25:58:34:87:11:c7:21:3a:68:
8e:82:13:6c:3c:27:c9:31:56:cd:55:af:91:dd:71:
d0:32:f0:c8:7e:d0:53:99:14:10:ab:f8:32:a9:9b:
74:92:c2:93:24:22:f8:04:f3:ea:7b:44:90:ff:5f:
67:a1:6f:98:c5:c1:1f:11:e5:9e:de:3c:a4:0a:ee:
18:5a:ea:c4:7e:dc:7d:20:43:6f:c5:c3:cd:10:31:
24:dd:66:81:87:dd:b5:46:a3:d7:57:16:c3:b6:53:
52:05:b7:dd:c6:16:4d:9f:ba:d3:60:6a:b9:9e:12:
ba:ec:19:60:16:e2:fa:c2:a4:6c:bb:9c:1d:5d:76:
92:3d:7f:5a:4a:b6:c5:42:07:7c:63:9a:2d:35:af:
eb:8f:81:4c:7d:21:05:4f:af:58:47:24:64:24:e5:
8a:48:80:ba:73:d9:fd:67:34:6f:04:c6:e5:45:9c:
64:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:89:D0:6B:62:22:68:96:F9:85:83:3D:BC:6B:83:AB:1F:4A:6E:4A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3230323a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:202::/48
Signature Algorithm: sha256WithRSAEncryption
30:8b:d1:45:92:85:ec:52:45:ba:60:94:66:c6:ca:46:02:12:
64:2e:61:83:5f:31:fa:c1:be:e5:8a:a0:86:74:6a:05:40:1d:
d6:a1:72:92:39:25:6d:b6:00:f4:bc:bd:4f:f5:7e:21:eb:56:
dc:61:13:5d:07:f1:98:61:87:3d:cc:e8:e0:ae:e7:ab:53:79:
ac:24:b6:56:5c:48:4b:fc:f5:4d:bd:1c:3f:b0:aa:15:7e:de:
5c:30:6f:a9:26:04:4e:b4:3e:7c:02:9b:45:b4:ed:f0:7b:5f:
97:21:84:93:ee:3e:d9:6c:7f:3f:74:9f:3b:e1:ca:11:45:07:
f3:30:ec:46:a3:7b:b0:29:3f:29:bc:4a:dc:6b:d3:93:ec:a9:
f1:19:0a:9f:f6:bc:7a:86:21:b6:7e:3f:9b:c9:36:9a:fd:f5:
49:77:39:92:45:c7:70:3f:c4:18:22:6c:2f:e9:3d:f2:0a:42:
46:29:00:59:23:09:5f:3b:79:36:dc:e0:7f:cc:37:ef:e5:54:
6b:c8:6e:ed:ac:49:43:cf:73:83:03:2c:37:94:bc:69:cd:84:
90:52:38:41:1f:42:d1:de:12:d5:2b:c7:8f:3d:f3:ac:72:b2:
eb:78:21:08:ee:eb:fd:87:32:f4:41:e4:26:1e:74:1b:56:5e:
f6:63:03:18
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUF9bwBOE+YdgrB03ZcTUaaGO+/agwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MjFaFw0yMzA5MjUwODAxMjFaMDMxMTAvBgNV
BAMTKEFBODlEMDZCNjIyMjY4OTZGOTg1ODMzREJDNkI4M0FCMUY0QTZFNEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHbaEkj/3I3I0ISOr4BZT7iZnP
mD18ZQ2s4gXb5Jwf1J0K+llVI42ak7lTocrLSXtLKwWyt7wz6jTA/Z/4KxnznsLe
KbAScSkDbOYbpeIcxiVYNIcRxyE6aI6CE2w8J8kxVs1Vr5HdcdAy8Mh+0FOZFBCr
+DKpm3SSwpMkIvgE8+p7RJD/X2ehb5jFwR8R5Z7ePKQK7hha6sR+3H0gQ2/Fw80Q
MSTdZoGH3bVGo9dXFsO2U1IFt93GFk2futNgarmeErrsGWAW4vrCpGy7nB1ddpI9
f1pKtsVCB3xjmi01r+uPgUx9IQVPr1hHJGQk5YpIgLpz2f1nNG8ExuVFnGTPAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUqonQa2IiaJb5hYM9vGuDqx9KbkowHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzMDMyM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
AjANBgkqhkiG9w0BAQsFAAOCAQEAMIvRRZKF7FJFumCUZsbKRgISZC5hg18x+sG+
5YqghnRqBUAd1qFykjklbbYA9Ly9T/V+IetW3GETXQfxmGGHPczo4K7nq1N5rCS2
VlxIS/z1Tb0cP7CqFX7eXDBvqSYETrQ+fAKbRbTt8HtflyGEk+4+2Wx/P3SfO+HK
EUUH8zDsRqN7sCk/KbxK3GvTk+yp8RkKn/a8eoYhtn4/m8k2mv31SXc5kkXHcD/E
GCJsL+k98gpCRikAWSMJXzt5Ntzgf8w37+VUa8hu7axJQ89zgwMsN5S8ac2EkFI4
QR9C0d4S1SvHjz3zrHKy63ghCO7r/Ycy9EHkJh50G1Ze9mMDGA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org