Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3232383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: TfHAQjKx9bVYiaUR+mdxESRZLzN1eWO/eXXTKaVFt3o=
Subject key identifier: 79:72:A1:5B:13:CD:F1:EB:2D:5E:4D:47:C2:03:FC:EC:F2:89:7F:28
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 289BDDD6AD3FC3A3381BC26D77D634DA19150F17
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:02 +0000
ROA not before: Mon 26 Sep 2022 07:57:02 +0000
ROA not after: Mon 25 Sep 2023 08:02:02 +0000
asID: 59282
IP address blocks: 2400:d680:228::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:9b:dd:d6:ad:3f:c3:a3:38:1b:c2:6d:77:d6:34:da:19:15:0f:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:02 2022 GMT
Not After : Sep 25 08:02:02 2023 GMT
Subject: CN=7972A15B13CDF1EB2D5E4D47C203FCECF2897F28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:2c:ad:72:8f:db:17:a7:1e:5d:ed:7d:e5:cb:
80:08:f0:d0:6a:a4:54:eb:a9:bc:d9:93:4f:0b:b0:
03:c8:e8:59:47:23:17:23:ab:40:65:eb:71:af:44:
ab:7f:c1:02:54:ec:9a:bf:d9:37:b9:56:af:46:b1:
36:24:6c:2d:43:e1:35:05:13:7a:ea:5d:a4:af:ce:
8e:4e:9b:6c:12:33:b2:94:73:a8:e0:90:cb:61:26:
eb:c7:54:55:92:ec:23:43:29:d0:84:0c:29:cb:e3:
3c:2b:bd:38:ee:d0:8d:15:f4:3e:08:f2:aa:0b:8b:
91:06:1c:7d:00:62:28:92:bd:e1:07:6e:e1:37:e8:
01:00:4f:b3:dc:5a:d8:34:5a:ae:f9:1a:21:b2:26:
5a:92:b5:e4:e2:3a:4b:48:84:34:50:00:ea:65:63:
e8:a0:6f:13:bf:c7:9e:b0:5d:31:aa:77:b2:03:c8:
77:b8:90:28:fb:75:f7:9f:ea:5b:d4:3c:98:c5:a6:
03:00:9e:c3:07:af:13:0a:5c:64:b8:c9:3b:19:2d:
6d:90:7e:0b:7a:44:f6:88:a8:dc:23:29:4c:e3:18:
12:5e:e5:5e:b8:14:92:9c:48:17:3b:cc:fd:5d:60:
72:b5:47:26:53:ae:fa:83:f5:f6:f5:5e:d0:9a:c5:
b0:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:72:A1:5B:13:CD:F1:EB:2D:5E:4D:47:C2:03:FC:EC:F2:89:7F:28
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3232383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:228::/48
Signature Algorithm: sha256WithRSAEncryption
c7:ce:50:52:fc:b5:39:7d:ac:f9:7c:3f:c4:09:12:92:bd:c6:
b0:e8:44:7b:76:40:b1:3b:61:6d:35:85:34:1a:f6:27:e5:c9:
0a:58:98:22:53:62:b2:84:b6:d0:d6:27:a4:d2:52:fd:78:17:
dd:67:53:12:ba:d6:77:7a:65:34:d0:58:86:7d:31:8d:9c:fd:
50:01:c3:9c:a1:ee:cf:34:25:1f:56:74:07:c2:a6:8c:a8:25:
4b:41:3c:31:ac:83:2d:44:41:74:49:b8:c8:ae:9a:31:5f:85:
93:b3:88:06:15:14:55:5f:7b:e4:b7:16:3e:da:38:4e:97:53:
ea:c9:a2:d8:0e:30:4d:33:1c:30:8a:45:2b:02:fc:27:5f:f6:
13:c5:08:8c:21:87:9f:b0:35:34:68:39:68:66:26:ff:6d:e0:
52:66:6c:20:36:b8:3e:a6:86:96:ea:ba:83:f5:13:63:67:4c:
39:6d:02:3f:17:d0:d9:f2:2f:d6:78:41:c5:a3:a6:45:4b:90:
8d:1f:00:f4:24:34:ed:e6:d0:fa:dd:f6:56:01:74:a9:ef:46:
45:98:36:d3:01:8c:ad:05:4f:75:75:cf:59:db:89:21:76:df:
af:de:1f:c9:7c:74:36:10:35:46:f2:6c:a2:95:0d:12:cb:7c:
f3:48:db:db
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUKJvd1q0/w6M4G8Jtd9Y02hkVDxcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MDJaFw0yMzA5MjUwODAyMDJaMDMxMTAvBgNV
BAMTKDc5NzJBMTVCMTNDREYxRUIyRDVFNEQ0N0MyMDNGQ0VDRjI4OTdGMjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBLK1yj9sXpx5d7X3ly4AI8NBq
pFTrqbzZk08LsAPI6FlHIxcjq0Bl63GvRKt/wQJU7Jq/2Te5Vq9GsTYkbC1D4TUF
E3rqXaSvzo5Om2wSM7KUc6jgkMthJuvHVFWS7CNDKdCEDCnL4zwrvTju0I0V9D4I
8qoLi5EGHH0AYiiSveEHbuE36AEAT7PcWtg0Wq75GiGyJlqSteTiOktIhDRQAOpl
Y+igbxO/x56wXTGqd7IDyHe4kCj7dfef6lvUPJjFpgMAnsMHrxMKXGS4yTsZLW2Q
fgt6RPaIqNwjKUzjGBJe5V64FJKcSBc7zP1dYHK1RyZTrvqD9fb1XtCaxbBHAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUeXKhWxPN8estXk1HwgP87PKJfygwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzMjM4M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
KDANBgkqhkiG9w0BAQsFAAOCAQEAx85QUvy1OX2s+Xw/xAkSkr3GsOhEe3ZAsTth
bTWFNBr2J+XJCliYIlNisoS20NYnpNJS/XgX3WdTErrWd3plNNBYhn0xjZz9UAHD
nKHuzzQlH1Z0B8KmjKglS0E8MayDLURBdEm4yK6aMV+Fk7OIBhUUVV975LcWPto4
TpdT6smi2A4wTTMcMIpFKwL8J1/2E8UIjCGHn7A1NGg5aGYm/23gUmZsIDa4PqaG
luq6g/UTY2dMOW0CPxfQ2fIv1nhBxaOmRUuQjR8A9CQ07ebQ+t32VgF0qe9GRZg2
0wGMrQVPdXXPWduJIXbfr94fyXx0NhA1RvJsopUNEst880jb2w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org