Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a32313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Jkw+Ox9qXjQ0cOb2gzMouh4t6sZsJcCzSK9OrqS121I=
Subject key identifier: 8C:41:07:C4:B7:82:2E:9E:EA:6C:1C:21:61:9A:EB:85:C5:39:2A:59
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 38A43C521FD67339538185588D4E94AACFF08FF8
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 07:00:05 +0000
ROA not before: Mon 26 Sep 2022 06:55:05 +0000
ROA not after: Mon 25 Sep 2023 07:00:05 +0000
asID: 59282
IP address blocks: 2400:d680:21::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:a4:3c:52:1f:d6:73:39:53:81:85:58:8d:4e:94:aa:cf:f0:8f:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 06:55:05 2022 GMT
Not After : Sep 25 07:00:05 2023 GMT
Subject: CN=8C4107C4B7822E9EEA6C1C21619AEB85C5392A59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e8:f4:b8:50:99:41:75:fe:84:2c:1e:0d:99:
1c:78:34:90:f9:50:ab:51:7c:70:6c:bf:a1:c5:84:
d5:e9:7d:16:d7:bd:c7:75:ea:9e:69:79:36:1f:d9:
6a:7e:22:6b:6c:32:a6:b9:b3:4b:2b:6a:15:76:56:
78:52:07:5f:10:d2:72:9f:80:1e:f3:8d:69:a4:83:
7c:4d:20:d5:9a:04:6b:2c:35:e3:d5:47:4f:fd:14:
f5:3a:58:cc:09:35:17:d0:8f:34:29:b2:e0:84:6b:
35:94:b2:03:36:01:73:82:8a:3d:73:6f:f4:3d:f6:
55:ad:8b:43:1f:d4:48:ed:3e:39:b8:96:bd:92:0d:
15:a3:56:2c:95:f7:41:3a:60:66:b1:5d:b1:a2:d3:
35:d6:78:9a:97:1d:5c:7a:be:02:6e:9f:7a:30:51:
3c:dd:95:45:ee:0f:5c:95:34:dd:c8:b5:3c:6c:71:
a6:1e:ae:a0:0b:0a:73:41:98:0a:40:c1:37:67:f1:
0b:1b:6d:9e:5a:be:ac:6d:b5:2a:2f:d8:f2:8e:80:
32:3a:c0:c3:9c:87:c3:92:3d:52:71:ec:03:0e:41:
17:2a:0a:ae:82:05:38:5b:cd:80:8c:0c:d9:a4:8b:
4a:e0:6e:49:09:55:98:d3:7c:92:4d:64:40:4a:44:
cf:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:41:07:C4:B7:82:2E:9E:EA:6C:1C:21:61:9A:EB:85:C5:39:2A:59
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:21::/48
Signature Algorithm: sha256WithRSAEncryption
3b:d4:e0:dc:3c:41:09:ff:74:1c:c3:74:18:c0:f8:b0:2d:1c:
1c:d2:dc:b7:67:06:51:a2:96:01:d8:aa:1c:ab:fc:c2:6b:7d:
1a:0e:9b:52:a5:a1:0f:92:f6:84:76:d7:a3:33:78:8c:5b:af:
64:fe:33:79:65:5c:31:f9:90:c2:de:8d:f2:14:9c:53:02:85:
7e:7a:2f:9e:98:45:0f:e3:e3:a3:f4:cd:4c:9b:36:29:73:9e:
d6:a7:12:6f:d9:6e:45:41:11:be:61:e2:94:39:7c:27:2f:e6:
2c:c5:a8:5e:41:a0:fd:99:9b:f2:5a:f8:f3:ec:d0:6f:eb:9d:
d6:83:e3:18:89:c6:39:b8:cf:2c:64:9a:84:0d:a9:5d:ca:57:
59:6e:3c:5b:b0:0c:98:73:2c:32:49:04:84:33:76:3b:c0:e4:
ec:06:2a:ca:88:fd:59:90:e1:a5:56:df:90:29:e4:c8:73:f1:
d0:37:f1:58:eb:74:63:c3:e2:62:72:bc:ef:9c:a1:71:0b:94:
02:df:7f:65:d2:d7:a8:8a:00:1b:0d:06:53:12:5c:a0:9f:58:
25:bb:44:a6:23:04:ec:c5:c2:01:b8:1d:b4:27:9f:bb:8b:ff:
1c:df:01:67:5f:91:cb:d9:33:ee:0b:c0:61:e8:da:5e:d6:20:
93:f3:f1:4c
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUOKQ8Uh/WczlTgYVYjU6Uqs/wj/gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNjU1MDVaFw0yMzA5MjUwNzAwMDVaMDMxMTAvBgNV
BAMTKDhDNDEwN0M0Qjc4MjJFOUVFQTZDMUMyMTYxOUFFQjg1QzUzOTJBNTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDf6PS4UJlBdf6ELB4NmRx4NJD5
UKtRfHBsv6HFhNXpfRbXvcd16p5peTYf2Wp+ImtsMqa5s0srahV2VnhSB18Q0nKf
gB7zjWmkg3xNINWaBGssNePVR0/9FPU6WMwJNRfQjzQpsuCEazWUsgM2AXOCij1z
b/Q99lWti0Mf1EjtPjm4lr2SDRWjViyV90E6YGaxXbGi0zXWeJqXHVx6vgJun3ow
UTzdlUXuD1yVNN3ItTxscaYerqALCnNBmApAwTdn8QsbbZ5avqxttSov2PKOgDI6
wMOch8OSPVJx7AMOQRcqCq6CBThbzYCMDNmki0rgbkkJVZjTfJJNZEBKRM/rAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUjEEHxLeCLp7qbBwhYZrrhcU5KlkwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzMTNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAACEw
DQYJKoZIhvcNAQELBQADggEBADvU4Nw8QQn/dBzDdBjA+LAtHBzS3LdnBlGilgHY
qhyr/MJrfRoOm1KloQ+S9oR216MzeIxbr2T+M3llXDH5kMLejfIUnFMChX56L56Y
RQ/j46P0zUybNilzntanEm/ZbkVBEb5h4pQ5fCcv5izFqF5BoP2Zm/Ja+PPs0G/r
ndaD4xiJxjm4zyxkmoQNqV3KV1luPFuwDJhzLDJJBIQzdjvA5OwGKsqI/VmQ4aVW
35Ap5Mhz8dA38VjrdGPD4mJyvO+coXELlALff2XS16iKABsNBlMSXKCfWCW7RKYj
BOzFwgG4HbQnn7uL/xzfAWdfkcvZM+4LwGHo2l7WIJPz8Uw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org