Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a32333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: JR+5t3WJzrzwFSvrAG6VfVuYPZxLmXlkxuLaz98H0HA=
Subject key identifier: 34:79:88:C8:99:1D:86:67:7C:08:9E:B9:25:F1:6E:EA:F9:DA:F9:9B
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 20A9D850BD535254049CEC6A6BC4826082BCFB8C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:42 +0000
ROA not before: Mon 26 Sep 2022 07:56:42 +0000
ROA not after: Mon 25 Sep 2023 08:01:42 +0000
asID: 59282
IP address blocks: 2400:d680:23::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:a9:d8:50:bd:53:52:54:04:9c:ec:6a:6b:c4:82:60:82:bc:fb:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:42 2022 GMT
Not After : Sep 25 08:01:42 2023 GMT
Subject: CN=347988C8991D86677C089EB925F16EEAF9DAF99B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:55:a5:b9:c2:0e:41:ad:8e:26:73:ec:39:d3:
5a:c7:f0:8d:fa:87:e1:9a:ed:a8:c4:31:01:58:64:
16:09:87:d2:ce:9b:a8:7f:8e:37:6f:95:f6:26:14:
9c:c5:7a:be:2f:da:d8:60:f8:6d:0c:8a:0d:1c:67:
c2:ab:2f:c3:2a:7e:06:f5:89:fc:a7:5c:f4:89:58:
6e:50:9d:6c:2f:58:a0:20:31:6a:82:67:96:1a:99:
ee:e2:7d:cd:3d:6c:03:86:0e:52:51:38:9f:a9:4b:
78:47:a8:f5:4a:c4:d8:65:18:f5:fb:94:cd:5c:44:
b7:ed:c2:99:5e:56:8a:bf:48:ae:ba:4f:f3:bc:49:
a6:e2:9f:2c:73:2d:3f:3b:29:f1:9e:53:ab:8c:1f:
66:97:aa:02:ff:01:69:22:3a:5e:82:ae:75:cb:57:
54:11:00:27:d5:98:de:33:69:44:75:bc:cb:42:6a:
f6:81:b9:c3:a2:01:14:fd:7e:cc:56:24:b4:b4:3c:
c8:7d:6c:e7:49:aa:da:62:78:ed:48:fc:f0:10:48:
84:e7:0d:dd:a2:63:5c:2f:ed:fa:32:16:c0:a2:65:
1c:e3:2c:fa:09:aa:f8:34:6b:5f:6b:81:5b:89:78:
09:98:b3:d3:44:4b:39:71:12:14:6f:ba:af:f8:73:
18:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:79:88:C8:99:1D:86:67:7C:08:9E:B9:25:F1:6E:EA:F9:DA:F9:9B
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a32333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:23::/48
Signature Algorithm: sha256WithRSAEncryption
7e:b6:05:47:f8:10:46:1b:71:01:49:7e:e7:9c:37:3a:62:b9:
20:a6:3c:27:06:ce:f9:b2:83:4c:14:6f:1f:20:5f:fb:18:c2:
d1:6b:44:d7:65:53:53:f1:74:df:16:e1:c3:14:fb:64:0f:da:
ac:8f:7e:1f:12:a3:f0:9e:f9:a6:be:e7:18:f5:43:74:e2:08:
be:16:42:75:aa:eb:4b:2f:02:03:14:9e:be:70:17:42:18:6c:
33:26:d0:cc:22:09:75:dc:c4:f9:42:3e:fe:18:8a:82:5d:2b:
74:da:a6:5d:79:46:08:3f:76:42:25:4e:d9:10:ce:5a:bb:d6:
8e:01:51:d0:94:d0:5f:9c:c2:58:77:d4:33:e5:6d:17:cc:0c:
b0:5b:07:4c:73:19:86:c2:5f:6b:67:c6:e4:56:06:d4:95:84:
1a:b9:54:93:a7:05:39:c5:a7:79:2b:cb:dc:f2:ec:a4:ff:ff:
aa:3f:e5:97:07:1a:59:48:64:0e:bf:00:e9:fa:75:60:27:ae:
f4:87:31:56:9a:4e:1a:0d:51:37:5a:cb:a9:13:f3:06:b9:fb:
21:95:ca:f9:f0:f5:2c:60:3b:eb:90:3d:3a:1b:af:64:03:a5:
8e:d6:a1:ff:4d:dd:de:45:6f:52:b2:a6:12:b0:8a:87:c4:75:
4a:ff:c2:42
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUIKnYUL1TUlQEnOxqa8SCYIK8+4wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2NDJaFw0yMzA5MjUwODAxNDJaMDMxMTAvBgNV
BAMTKDM0Nzk4OEM4OTkxRDg2Njc3QzA4OUVCOTI1RjE2RUVBRjlEQUY5OUIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDoVaW5wg5BrY4mc+w501rH8I36
h+Ga7ajEMQFYZBYJh9LOm6h/jjdvlfYmFJzFer4v2thg+G0Mig0cZ8KrL8Mqfgb1
ifynXPSJWG5QnWwvWKAgMWqCZ5Yame7ifc09bAOGDlJROJ+pS3hHqPVKxNhlGPX7
lM1cRLftwpleVoq/SK66T/O8SabinyxzLT87KfGeU6uMH2aXqgL/AWkiOl6CrnXL
V1QRACfVmN4zaUR1vMtCavaBucOiART9fsxWJLS0PMh9bOdJqtpieO1I/PAQSITn
Dd2iY1wv7foyFsCiZRzjLPoJqvg0a19rgVuJeAmYs9NESzlxEhRvuq/4cxhXAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUNHmIyJkdhmd8CJ65JfFu6vna+ZswHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzMzNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAACMw
DQYJKoZIhvcNAQELBQADggEBAH62BUf4EEYbcQFJfuecNzpiuSCmPCcGzvmyg0wU
bx8gX/sYwtFrRNdlU1PxdN8W4cMU+2QP2qyPfh8So/Ce+aa+5xj1Q3TiCL4WQnWq
60svAgMUnr5wF0IYbDMm0MwiCXXcxPlCPv4YioJdK3Tapl15Rgg/dkIlTtkQzlq7
1o4BUdCU0F+cwlh31DPlbRfMDLBbB0xzGYbCX2tnxuRWBtSVhBq5VJOnBTnFp3kr
y9zy7KT//6o/5ZcHGllIZA6/AOn6dWAnrvSHMVaaThoNUTday6kT8wa5+yGVyvnw
9SxgO+uQPTobr2QDpY7Wof9N3d5Fb1KyphKwiofEdUr/wkI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org