Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3234333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 1tDPQdTYadzYou9iLN0NbnWIBwPbJIaMO5bEWEcW5Pw=
Subject key identifier: BF:68:7F:B5:86:2B:56:D1:DF:45:72:35:B6:E0:7A:D0:93:82:C9:71
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7A505FB71DF6043455A802ADB9E798B3CC09E062
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:15 +0000
ROA not before: Mon 26 Sep 2022 09:55:15 +0000
ROA not after: Mon 25 Sep 2023 10:00:15 +0000
asID: 59282
IP address blocks: 2400:d680:243::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:50:5f:b7:1d:f6:04:34:55:a8:02:ad:b9:e7:98:b3:cc:09:e0:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:15 2022 GMT
Not After : Sep 25 10:00:15 2023 GMT
Subject: CN=BF687FB5862B56D1DF457235B6E07AD09382C971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f5:f8:35:1d:3c:c2:e9:83:15:d2:2a:25:b9:
f3:f4:c6:02:a7:f6:de:fa:93:ab:b4:bb:20:08:26:
b8:7c:06:53:85:01:35:28:a0:93:a7:65:01:a0:83:
00:1c:4e:90:eb:be:65:c6:82:30:e3:36:12:f2:f1:
70:47:7b:8c:2d:60:c8:d9:ca:80:c1:2c:0e:d2:44:
54:c3:dc:1e:b8:3f:0d:29:f7:37:47:7b:fd:7c:43:
93:3a:ae:5a:6b:31:34:28:a2:09:49:c2:71:51:b8:
25:f0:89:57:d1:7f:7a:88:2d:1f:ad:82:bd:f7:d0:
cc:d8:b2:5c:f1:b4:5e:80:f8:27:68:72:90:a0:92:
03:a6:23:b0:23:d6:35:8f:63:27:a2:8f:a9:b2:31:
be:7e:83:19:69:3a:80:7b:1c:71:93:29:5e:5e:79:
5c:96:79:7e:fd:36:ba:1c:ae:af:0f:76:ca:dd:ba:
49:27:07:71:2d:77:d1:1c:9e:fa:56:1c:7f:1d:6a:
63:10:ea:a7:b9:2a:07:56:2a:98:e2:af:6f:13:4b:
1f:36:5d:fc:03:c7:3f:59:86:87:39:5c:23:a1:09:
1d:c3:a1:a5:8c:c5:20:35:bf:a1:5e:dc:23:7b:e8:
c3:37:ab:5f:5a:76:a3:ac:dc:1d:95:ca:11:8a:72:
3f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:68:7F:B5:86:2B:56:D1:DF:45:72:35:B6:E0:7A:D0:93:82:C9:71
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:243::/48
Signature Algorithm: sha256WithRSAEncryption
06:0d:cb:4e:fc:96:2f:a8:a9:1d:1d:5c:46:fc:f9:49:32:3e:
f0:7d:dc:d3:cf:4c:86:24:55:b6:98:64:b5:42:d3:c0:8f:9c:
ab:b0:b9:2c:8b:06:88:ff:19:85:c1:88:15:5d:bd:cc:f1:16:
81:cf:99:9f:f7:b8:1c:d7:04:f1:a7:72:92:81:77:22:e6:76:
8a:d6:e2:0c:36:f5:ae:5a:c0:d3:ac:5d:53:3f:f2:2b:f3:ae:
a9:23:a2:b7:33:b0:2c:33:1e:c8:87:68:45:81:78:96:f4:45:
b9:92:f3:9b:f1:9b:89:92:d4:59:ea:0c:f3:f3:2c:fa:65:c3:
18:27:9c:1c:6a:d3:68:a5:78:ff:97:4c:ae:a9:e4:a9:52:d4:
20:bf:5e:fe:34:2f:d6:c5:e7:83:98:f7:dc:6b:5c:50:dc:e2:
bf:27:db:d6:50:a7:02:18:6d:7f:b1:70:e7:65:59:96:ea:d7:
fc:86:d8:6f:90:2b:fc:2e:72:fa:db:8c:6d:ad:6c:cc:09:de:
56:8a:ee:50:29:d3:86:83:1d:a1:16:f8:3f:be:fa:57:96:e6:
75:bc:0f:0e:10:1c:c7:9c:35:f4:46:67:8b:e0:32:28:8d:59:
6f:47:7e:3c:87:4c:98:46:17:3b:96:ae:4d:b8:c2:e7:76:7f:
29:52:7e:eb
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUelBftx32BDRVqAKtueeYs8wJ4GIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MTVaFw0yMzA5MjUxMDAwMTVaMDMxMTAvBgNV
BAMTKEJGNjg3RkI1ODYyQjU2RDFERjQ1NzIzNUI2RTA3QUQwOTM4MkM5NzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCh9fg1HTzC6YMV0iolufP0xgKn
9t76k6u0uyAIJrh8BlOFATUooJOnZQGggwAcTpDrvmXGgjDjNhLy8XBHe4wtYMjZ
yoDBLA7SRFTD3B64Pw0p9zdHe/18Q5M6rlprMTQooglJwnFRuCXwiVfRf3qILR+t
gr330MzYslzxtF6A+CdocpCgkgOmI7Aj1jWPYyeij6myMb5+gxlpOoB7HHGTKV5e
eVyWeX79Nrocrq8PdsrdukknB3Etd9EcnvpWHH8damMQ6qe5KgdWKpjir28TSx82
XfwDxz9Zhoc5XCOhCR3DoaWMxSA1v6Fe3CN76MM3q19adqOs3B2VyhGKcj91AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUv2h/tYYrVtHfRXI1tuB60JOCyXEwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzNDMzM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
QzANBgkqhkiG9w0BAQsFAAOCAQEABg3LTvyWL6ipHR1cRvz5STI+8H3c089MhiRV
tphktULTwI+cq7C5LIsGiP8ZhcGIFV29zPEWgc+Zn/e4HNcE8adykoF3IuZ2itbi
DDb1rlrA06xdUz/yK/OuqSOitzOwLDMeyIdoRYF4lvRFuZLzm/GbiZLUWeoM8/Ms
+mXDGCecHGrTaKV4/5dMrqnkqVLUIL9e/jQv1sXng5j33GtcUNzivyfb1lCnAhht
f7Fw52VZlurX/IbYb5Ar/C5y+tuMba1szAneVoruUCnThoMdoRb4P776V5bmdbwP
DhAcx5w19EZni+AyKI1Zb0d+PIdMmEYXO5auTbjC53Z/KVJ+6w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org