Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3234343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: +7mkoiG1dhHQ93/jZ86NvyziwlUJmfnBAL8ZSTQJm1A=
Subject key identifier: B4:49:BC:41:B4:96:20:3B:24:C0:E0:5B:98:7B:C4:7E:13:E6:64:AD
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 766BC3162916F838AAA0ED60EBE7FF992409A6C6
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:06 +0000
ROA not before: Mon 26 Sep 2022 09:55:06 +0000
ROA not after: Mon 25 Sep 2023 10:00:06 +0000
asID: 59282
IP address blocks: 2400:d680:244::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:6b:c3:16:29:16:f8:38:aa:a0:ed:60:eb:e7:ff:99:24:09:a6:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:06 2022 GMT
Not After : Sep 25 10:00:06 2023 GMT
Subject: CN=B449BC41B496203B24C0E05B987BC47E13E664AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:26:00:8b:62:42:46:46:cb:f1:dd:f3:1a:9f:
68:e9:f9:08:e8:94:6e:e4:c9:ff:ad:9a:74:80:61:
fa:3d:a8:32:00:5c:c9:ad:2c:67:d9:89:89:10:6b:
72:db:ec:6a:aa:de:9e:8b:3a:ee:c5:a6:07:f5:fa:
44:bf:c8:e0:f9:99:db:f9:93:9f:25:ae:f4:ee:12:
40:b3:88:34:77:26:5e:bc:62:de:cc:9c:c4:b5:1a:
87:3c:3f:d0:0a:31:86:b9:88:05:5a:82:cf:78:e1:
cc:41:ef:4b:f0:54:9a:47:2c:e9:d4:b9:76:69:4e:
47:c3:f8:db:e4:46:da:3b:80:fc:87:2a:78:d7:9e:
c7:37:14:d5:f9:40:26:d9:e1:dd:da:d3:d7:d2:08:
13:e9:8a:45:77:a5:09:6a:76:5c:8f:69:c9:6a:23:
08:ad:c4:75:b8:da:19:c6:94:e7:c1:12:2a:9e:c6:
c6:d3:ac:61:f3:a1:3e:15:2e:06:d8:86:da:28:e4:
18:5f:d3:01:eb:cc:b1:3a:6e:ce:67:50:6a:db:5e:
fe:97:81:b0:eb:57:52:2d:d6:f5:ec:ea:67:2d:59:
8c:c4:16:53:21:78:14:8a:19:ef:3c:71:a0:37:30:
78:57:a4:53:45:94:e8:4e:ea:6f:c9:54:9f:24:b3:
9e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:49:BC:41:B4:96:20:3B:24:C0:E0:5B:98:7B:C4:7E:13:E6:64:AD
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3234343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:244::/48
Signature Algorithm: sha256WithRSAEncryption
2d:9c:65:70:8d:e8:c7:64:bf:77:ac:ed:ec:c1:16:ce:28:16:
3d:04:d8:25:ac:13:3f:1c:58:45:ad:27:4d:7f:86:8d:a5:16:
7b:7d:39:35:84:18:29:27:55:90:97:15:4b:b1:90:a3:cb:6c:
67:82:b6:46:d6:a0:e5:6a:ad:85:8d:96:07:cf:74:96:35:f0:
3c:c7:28:28:f3:2b:06:e5:f0:49:2d:2b:02:64:a9:19:3a:0e:
4d:3f:17:55:2e:d5:12:75:86:c5:be:02:d8:2e:24:cb:b0:33:
b9:37:64:69:0b:18:c4:72:2f:8f:40:d6:6a:45:3a:55:0e:bc:
59:8b:41:dd:11:4d:00:56:2c:bd:dc:4f:45:52:bc:4b:d8:4a:
29:45:ed:bd:6c:4a:f3:e7:2a:1d:4a:fd:40:b8:f2:ae:8e:9c:
3f:60:41:96:b0:4e:5b:bb:5e:a7:60:8f:84:d8:ef:72:32:fe:
cb:80:ad:3b:05:af:73:06:a9:93:32:fa:69:42:91:14:d9:32:
8d:c1:04:a8:16:ce:08:24:e9:d0:62:2b:ba:26:c5:86:2f:96:
fe:59:89:4e:1f:d4:20:fe:8d:30:cd:e0:83:a1:66:ed:88:77:
96:b5:c8:19:bd:7c:45:4d:55:2e:c0:f1:3b:e2:c6:42:8e:d1:
c8:02:e6:66
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUdmvDFikW+DiqoO1g6+f/mSQJpsYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MDZaFw0yMzA5MjUxMDAwMDZaMDMxMTAvBgNV
BAMTKEI0NDlCQzQxQjQ5NjIwM0IyNEMwRTA1Qjk4N0JDNDdFMTNFNjY0QUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoJgCLYkJGRsvx3fMan2jp+Qjo
lG7kyf+tmnSAYfo9qDIAXMmtLGfZiYkQa3Lb7Gqq3p6LOu7Fpgf1+kS/yOD5mdv5
k58lrvTuEkCziDR3Jl68Yt7MnMS1Goc8P9AKMYa5iAVags944cxB70vwVJpHLOnU
uXZpTkfD+NvkRto7gPyHKnjXnsc3FNX5QCbZ4d3a09fSCBPpikV3pQlqdlyPaclq
IwitxHW42hnGlOfBEiqexsbTrGHzoT4VLgbYhtoo5Bhf0wHrzLE6bs5nUGrbXv6X
gbDrV1It1vXs6mctWYzEFlMheBSKGe88caA3MHhXpFNFlOhO6m/JVJ8ks56zAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUtEm8QbSWIDskwOBbmHvEfhPmZK0wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzNDM0M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
RDANBgkqhkiG9w0BAQsFAAOCAQEALZxlcI3ox2S/d6zt7MEWzigWPQTYJawTPxxY
Ra0nTX+GjaUWe305NYQYKSdVkJcVS7GQo8tsZ4K2Rtag5WqthY2WB890ljXwPMco
KPMrBuXwSS0rAmSpGToOTT8XVS7VEnWGxb4C2C4ky7AzuTdkaQsYxHIvj0DWakU6
VQ68WYtB3RFNAFYsvdxPRVK8S9hKKUXtvWxK8+cqHUr9QLjyro6cP2BBlrBOW7te
p2CPhNjvcjL+y4CtOwWvcwapkzL6aUKRFNkyjcEEqBbOCCTp0GIruibFhi+W/lmJ
Th/UIP6NMM3gg6Fm7Yh3lrXIGb18RU1VLsDxO+LGQo7RyALmZg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org