Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3233643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 7oSsIUmAjlxrQzHfgi8dPjf79zCREEp87mEkYBAlMrU=
Subject key identifier: 34:C6:F2:13:FB:65:0E:AA:F3:D1:0B:3E:A7:6C:A3:71:03:43:68:8A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4B20645D9496DC6ED03A906DEE0E40A754A04AC2
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:10 +0000
ROA not before: Mon 26 Sep 2022 09:55:10 +0000
ROA not after: Mon 25 Sep 2023 10:00:10 +0000
asID: 59282
IP address blocks: 2400:d680:23d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:20:64:5d:94:96:dc:6e:d0:3a:90:6d:ee:0e:40:a7:54:a0:4a:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:10 2022 GMT
Not After : Sep 25 10:00:10 2023 GMT
Subject: CN=34C6F213FB650EAAF3D10B3EA76CA3710343688A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e2:a8:28:58:66:84:38:46:87:40:13:07:82:
08:07:bf:cf:a9:60:f6:d1:05:24:8c:7d:33:d5:e5:
8a:ef:80:27:d3:4a:2e:e8:9b:db:9b:7b:e3:55:6f:
59:a1:70:cf:12:69:85:00:d9:3e:52:1d:85:40:3a:
32:27:a5:e8:bc:cb:bd:e4:15:69:5d:44:0c:79:3c:
9f:c8:f5:aa:78:1f:b3:23:da:04:a9:54:de:94:57:
43:e3:4d:a4:57:02:82:53:88:c6:0c:32:1a:ca:5f:
e5:1e:8f:58:bb:65:d6:6f:f7:1b:ac:69:93:de:b4:
25:6c:55:32:89:60:61:c8:1d:58:58:57:50:6b:58:
d6:2b:84:c3:2c:7e:c2:57:57:b7:8a:84:a7:eb:5e:
0c:3f:08:36:43:60:eb:d1:4c:75:d5:3b:0f:10:d0:
7a:2b:dc:bf:73:e3:31:cf:1d:9f:78:3b:46:98:48:
c8:94:95:50:50:d1:cf:cc:e6:57:db:12:64:d7:b9:
8c:08:9e:95:a8:4b:66:90:6a:d2:96:e0:20:69:f1:
98:ef:e1:65:bd:1c:a0:d6:1d:aa:49:67:ea:5c:cc:
e3:7b:2d:ab:63:a2:40:db:1a:3e:8e:42:9f:9d:5b:
57:22:e6:5c:9b:d1:b4:34:0e:b1:0e:aa:b0:2b:c2:
7d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:C6:F2:13:FB:65:0E:AA:F3:D1:0B:3E:A7:6C:A3:71:03:43:68:8A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3233643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:23d::/48
Signature Algorithm: sha256WithRSAEncryption
34:c0:6c:82:69:45:e5:77:65:4a:ad:01:e7:fb:ba:25:84:05:
c6:a6:58:51:3e:1b:eb:41:49:fa:30:45:46:6c:07:f6:66:a1:
20:b1:1c:08:3c:2a:f2:ad:68:b2:47:60:63:1a:12:2d:09:2f:
a8:ed:65:1e:58:f1:e7:99:95:48:b4:d6:53:23:24:69:d4:c9:
b0:4a:18:a5:e7:8e:24:e0:05:f1:21:3f:d6:e9:c8:31:a4:7b:
a8:8f:57:b2:96:1f:ed:a7:af:3d:f7:3f:5a:c9:7a:bb:5f:46:
b0:1f:b7:a9:3b:17:8e:75:03:f5:51:45:4e:f7:29:b2:72:6f:
f5:cf:3e:b5:82:ac:7c:f2:e6:e1:5a:6d:e3:3a:3d:98:b7:d3:
01:09:e6:d0:76:b8:55:a7:75:33:d6:a8:46:0d:99:27:46:b7:
33:57:8a:c0:9a:1b:be:12:20:f4:73:86:1a:8d:54:e7:c6:6e:
82:90:b3:5e:46:66:56:28:66:02:84:55:31:42:c5:27:dd:a3:
25:50:da:73:39:f7:21:b6:68:0d:79:d2:f2:45:6f:1a:7f:7a:
40:c5:db:57:5d:0a:bf:13:db:eb:15:f6:63:9d:dd:a4:0f:62:
ed:24:4b:9a:83:20:56:0e:61:04:fe:0b:7f:83:68:9e:3b:93:
e9:8e:bf:a6
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUSyBkXZSW3G7QOpBt7g5Ap1SgSsIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MTBaFw0yMzA5MjUxMDAwMTBaMDMxMTAvBgNV
BAMTKDM0QzZGMjEzRkI2NTBFQUFGM0QxMEIzRUE3NkNBMzcxMDM0MzY4OEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ4qgoWGaEOEaHQBMHgggHv8+p
YPbRBSSMfTPV5YrvgCfTSi7om9ube+NVb1mhcM8SaYUA2T5SHYVAOjInpei8y73k
FWldRAx5PJ/I9ap4H7Mj2gSpVN6UV0PjTaRXAoJTiMYMMhrKX+Uej1i7ZdZv9xus
aZPetCVsVTKJYGHIHVhYV1BrWNYrhMMsfsJXV7eKhKfrXgw/CDZDYOvRTHXVOw8Q
0Hor3L9z4zHPHZ94O0aYSMiUlVBQ0c/M5lfbEmTXuYwInpWoS2aQatKW4CBp8Zjv
4WW9HKDWHapJZ+pczON7LatjokDbGj6OQp+dW1ci5lyb0bQ0DrEOqrArwn0dAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUNMbyE/tlDqrz0Qs+p2yjcQNDaIowHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzMzY0M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
PTANBgkqhkiG9w0BAQsFAAOCAQEANMBsgmlF5XdlSq0B5/u6JYQFxqZYUT4b60FJ
+jBFRmwH9mahILEcCDwq8q1oskdgYxoSLQkvqO1lHljx55mVSLTWUyMkadTJsEoY
peeOJOAF8SE/1unIMaR7qI9XspYf7aevPfc/Wsl6u19GsB+3qTsXjnUD9VFFTvcp
snJv9c8+tYKsfPLm4Vpt4zo9mLfTAQnm0Ha4Vad1M9aoRg2ZJ0a3M1eKwJobvhIg
9HOGGo1U58ZugpCzXkZmVihmAoRVMULFJ92jJVDaczn3IbZoDXnS8kVvGn96QMXb
V10KvxPb6xX2Y53dpA9i7SRLmoMgVg5hBP4Lf4NonjuT6Y6/pg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org