Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3235353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: XGTLN02qq7RG29z8EPNkFhOAHLfVlJYeeRnQ8ta6vGQ=
Subject key identifier: F5:EC:D4:A9:65:D5:99:BE:50:C9:06:32:1C:DB:8D:8B:6A:A4:06:2D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3BDAFB7898337C6674AEF7732CB78C419C18C0EB
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:24 +0000
ROA not before: Mon 26 Sep 2022 09:55:24 +0000
ROA not after: Mon 25 Sep 2023 10:00:24 +0000
asID: 59282
IP address blocks: 2400:d680:255::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:da:fb:78:98:33:7c:66:74:ae:f7:73:2c:b7:8c:41:9c:18:c0:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:24 2022 GMT
Not After : Sep 25 10:00:24 2023 GMT
Subject: CN=F5ECD4A965D599BE50C906321CDB8D8B6AA4062D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:62:a2:5a:c3:2e:f4:57:c3:d2:d1:7b:3f:a3:
da:47:3c:77:fb:ef:cc:6e:0f:48:b7:37:17:a7:cb:
10:49:98:77:8d:0b:19:88:4b:da:0a:f8:44:af:ba:
b9:6c:ed:a2:2e:61:9d:e3:af:41:52:71:3e:7d:c0:
c4:10:c4:0c:9a:c7:3c:ba:c4:39:a4:9a:f0:26:67:
1b:1e:9d:15:b5:60:eb:6d:a1:2a:7a:c6:ba:74:93:
cb:71:03:19:e7:d5:8b:7c:ca:6b:bc:a5:79:58:17:
a8:fb:61:6d:b9:9b:a2:1a:bd:32:15:7d:fb:fe:1c:
0d:89:9c:21:6c:f8:12:45:3b:41:f9:fb:cd:e2:22:
2d:ac:9b:3c:08:fc:d5:41:bc:1d:56:d5:b9:32:5d:
13:23:05:eb:af:32:fe:2d:a9:47:c3:40:01:cd:e8:
f4:52:58:0f:08:f4:fa:b4:b2:c8:99:47:61:8d:92:
ab:59:28:8d:22:65:49:98:9f:1e:73:01:21:a6:3b:
71:3c:f8:fc:19:16:ef:0f:55:0c:ea:00:f2:f3:74:
aa:e4:f8:1d:8a:7d:eb:27:e2:04:8d:3e:9a:75:a8:
dd:92:87:31:13:a0:6a:ab:a7:a5:a1:38:33:18:69:
4d:96:a2:ab:90:84:11:75:0a:a0:ed:4b:72:77:df:
ad:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:EC:D4:A9:65:D5:99:BE:50:C9:06:32:1C:DB:8D:8B:6A:A4:06:2D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:255::/48
Signature Algorithm: sha256WithRSAEncryption
32:0d:e8:2f:64:17:8b:4f:64:ca:27:f8:de:6f:cd:ed:e9:51:
a2:06:36:3c:ec:df:f2:cb:8b:cb:64:b4:0e:16:cb:16:3a:37:
11:95:ca:de:29:89:f7:46:6a:3c:75:e9:32:fe:64:77:92:c1:
f4:bc:dc:75:5f:e2:c0:33:e9:e5:87:1a:c2:cb:c0:2d:4b:71:
37:1f:7f:fd:3f:82:fd:6f:97:2f:04:89:3f:8a:7a:49:c8:e7:
62:38:a4:ff:7c:d1:f8:c9:1a:14:8d:9a:93:02:19:71:00:a8:
82:01:f4:02:da:25:f1:63:66:22:93:9b:30:93:d1:d4:ce:8c:
22:31:57:2d:9b:bb:3e:a6:4d:df:51:dd:37:ae:a4:af:4b:e6:
10:1e:38:7f:02:60:61:b5:a2:96:10:fd:45:5d:03:61:cd:8a:
47:cf:79:61:53:5a:a2:81:5b:61:60:0f:31:4f:a9:ac:4b:82:
fd:e3:4c:61:f5:30:7f:cf:bf:d8:72:69:9c:ef:3e:b2:d5:b8:
15:54:6e:ff:0f:82:19:30:ee:8c:2e:0c:ca:a5:75:63:e9:76:
c6:c8:2d:4d:42:d7:99:9c:13:28:ae:18:92:f8:72:ba:66:ea:
0e:a5:cf:29:93:a8:c5:b2:03:52:47:cd:43:93:ff:be:b4:ba:
24:a3:38:69
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUO9r7eJgzfGZ0rvdzLLeMQZwYwOswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MjRaFw0yMzA5MjUxMDAwMjRaMDMxMTAvBgNV
BAMTKEY1RUNENEE5NjVENTk5QkU1MEM5MDYzMjFDREI4RDhCNkFBNDA2MkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChYqJawy70V8PS0Xs/o9pHPHf7
78xuD0i3NxenyxBJmHeNCxmIS9oK+ESvurls7aIuYZ3jr0FScT59wMQQxAyaxzy6
xDmkmvAmZxsenRW1YOttoSp6xrp0k8txAxnn1Yt8ymu8pXlYF6j7YW25m6IavTIV
ffv+HA2JnCFs+BJFO0H5+83iIi2smzwI/NVBvB1W1bkyXRMjBeuvMv4tqUfDQAHN
6PRSWA8I9Pq0ssiZR2GNkqtZKI0iZUmYnx5zASGmO3E8+PwZFu8PVQzqAPLzdKrk
+B2Kfesn4gSNPpp1qN2ShzEToGqrp6WhODMYaU2WoquQhBF1CqDtS3J33623AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU9ezUqWXVmb5QyQYyHNuNi2qkBi0wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzNTM1M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
VTANBgkqhkiG9w0BAQsFAAOCAQEAMg3oL2QXi09kyif43m/N7elRogY2POzf8suL
y2S0DhbLFjo3EZXK3imJ90ZqPHXpMv5kd5LB9LzcdV/iwDPp5YcawsvALUtxNx9/
/T+C/W+XLwSJP4p6ScjnYjik/3zR+MkaFI2akwIZcQCoggH0Atol8WNmIpObMJPR
1M6MIjFXLZu7PqZN31HdN66kr0vmEB44fwJgYbWilhD9RV0DYc2KR895YVNaooFb
YWAPMU+prEuC/eNMYfUwf8+/2HJpnO8+stW4FVRu/w+CGTDujC4MyqV1Y+l2xsgt
TULXmZwTKK4YkvhyumbqDqXPKZOoxbIDUkfNQ5P/vrS6JKM4aQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org