Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235363a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3235363a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: MbKTTqg2425llmfsx+cfBhxHdwRTlUlAJpEVpGWculY=
Subject key identifier: 77:96:5C:09:68:8D:E7:D8:DC:DD:9D:8C:96:D1:1C:62:BB:8B:2F:F0
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 06474F9F5C426835BC213C202158B59720827F7C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235363a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:14 +0000
ROA not before: Mon 26 Sep 2022 09:55:14 +0000
ROA not after: Mon 25 Sep 2023 10:00:14 +0000
asID: 59282
IP address blocks: 2400:d680:256::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:47:4f:9f:5c:42:68:35:bc:21:3c:20:21:58:b5:97:20:82:7f:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:14 2022 GMT
Not After : Sep 25 10:00:14 2023 GMT
Subject: CN=77965C09688DE7D8DCDD9D8C96D11C62BB8B2FF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:83:df:87:56:d0:fe:d0:97:b7:4d:17:32:75:
fe:35:fb:b4:c0:2c:74:d1:1d:58:4e:d1:ec:20:7a:
5f:31:73:a5:06:a0:2d:6a:b3:7a:4b:b1:6c:82:11:
7a:72:cb:65:68:db:d4:a8:29:11:11:71:47:90:c6:
f3:c5:2c:24:4d:c1:03:5f:d4:10:b2:3d:35:26:b7:
f0:12:c2:09:b1:ee:21:60:92:6a:4e:c9:6d:7e:63:
00:69:14:ec:4f:17:19:07:df:15:1f:46:c3:2d:e0:
79:b8:89:0e:7c:0e:87:51:61:1c:63:0b:9e:1b:ec:
13:87:70:ca:3b:20:23:aa:47:b3:80:48:8b:85:b0:
35:8a:1d:b3:4d:01:fd:bd:94:2f:66:5a:9f:c8:db:
e6:f3:08:94:08:19:ef:1a:31:a0:e8:ef:0d:10:19:
71:ee:22:fe:09:3f:94:c4:57:f6:18:48:07:95:44:
23:3a:98:ac:aa:9f:4a:50:79:70:2a:35:26:e8:19:
31:b2:83:91:58:66:52:4f:f2:0e:6c:c1:15:7a:eb:
ab:4a:b6:7b:e8:d4:b3:61:5a:1d:84:e3:0d:dd:76:
95:b5:26:bd:09:3d:30:89:17:76:8f:57:8e:00:bd:
4f:8b:44:1c:1c:f0:f6:c7:1e:b8:58:a7:7f:88:03:
34:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:96:5C:09:68:8D:E7:D8:DC:DD:9D:8C:96:D1:1C:62:BB:8B:2F:F0
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3235363a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:256::/48
Signature Algorithm: sha256WithRSAEncryption
6a:f2:a3:1c:30:87:09:84:28:98:e5:e6:6c:c9:61:83:93:ed:
f2:f6:b6:ae:60:9f:3f:2e:e4:2e:67:2e:b8:1a:dc:10:11:a3:
95:36:69:91:38:5b:c3:a8:a6:01:d0:48:b1:a0:38:cb:2e:5e:
23:e9:b8:b9:b8:a2:d4:e3:8d:a8:b3:3a:d5:ea:5a:3e:af:06:
7e:29:c4:73:c4:a9:50:d7:51:21:b0:3d:c8:d2:58:e1:cc:f8:
35:64:5e:47:34:d4:26:30:13:bb:c6:60:56:9f:26:97:8b:81:
ee:f9:6e:b6:bd:44:b0:44:5f:ea:d6:43:98:3e:83:4c:cd:9e:
8a:88:16:f2:3d:fe:46:b6:77:77:05:9d:74:64:d6:56:bb:35:
b4:b2:80:ee:04:b0:44:6f:08:c5:2d:6e:08:8e:23:9d:97:02:
41:86:87:2a:b6:a2:0a:e2:5b:e1:2d:55:51:0a:b9:10:5c:21:
c5:1f:33:b2:4d:a6:d4:42:40:ce:0e:44:33:be:62:af:d8:d0:
f1:c3:c5:0c:a8:88:ee:a1:90:c5:50:5b:38:a0:8d:bc:19:33:
24:b5:84:86:c6:fd:c2:76:1b:05:c2:b5:05:e4:79:67:3b:36:
c1:83:24:0b:6b:a9:55:21:c3:7d:9c:4c:ef:56:f3:8f:ad:f4:
03:bd:0f:dc
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUBkdPn1xCaDW8ITwgIVi1lyCCf3wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MTRaFw0yMzA5MjUxMDAwMTRaMDMxMTAvBgNV
BAMTKDc3OTY1QzA5Njg4REU3RDhEQ0REOUQ4Qzk2RDExQzYyQkI4QjJGRjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBg9+HVtD+0Je3TRcydf41+7TA
LHTRHVhO0ewgel8xc6UGoC1qs3pLsWyCEXpyy2Vo29SoKRERcUeQxvPFLCRNwQNf
1BCyPTUmt/ASwgmx7iFgkmpOyW1+YwBpFOxPFxkH3xUfRsMt4Hm4iQ58DodRYRxj
C54b7BOHcMo7ICOqR7OASIuFsDWKHbNNAf29lC9mWp/I2+bzCJQIGe8aMaDo7w0Q
GXHuIv4JP5TEV/YYSAeVRCM6mKyqn0pQeXAqNSboGTGyg5FYZlJP8g5swRV666tK
tnvo1LNhWh2E4w3ddpW1Jr0JPTCJF3aPV44AvU+LRBwc8PbHHrhYp3+IAzQnAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUd5ZcCWiN59jc3Z2MltEcYruLL/AwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzNTM2M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
VjANBgkqhkiG9w0BAQsFAAOCAQEAavKjHDCHCYQomOXmbMlhg5Pt8va2rmCfPy7k
LmcuuBrcEBGjlTZpkThbw6imAdBIsaA4yy5eI+m4ubii1OONqLM61epaPq8GfinE
c8SpUNdRIbA9yNJY4cz4NWReRzTUJjATu8ZgVp8ml4uB7vlutr1EsERf6tZDmD6D
TM2eiogW8j3+RrZ3dwWddGTWVrs1tLKA7gSwRG8IxS1uCI4jnZcCQYaHKraiCuJb
4S1VUQq5EFwhxR8zsk2m1EJAzg5EM75ir9jQ8cPFDKiI7qGQxVBbOKCNvBkzJLWE
hsb9wnYbBcK1BeR5Zzs2wYMkC2upVSHDfZxM71bzj630A70P3A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org