Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3236303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: J0+N9D9hQ4T1KcAn5Oubtqz6dp7JybzEV3giR9DSXlk=
Subject key identifier: 7B:F1:43:14:F7:F9:47:0C:5A:A5:B3:88:EC:D6:2D:9F:57:36:6C:1F
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 25B4D4C6DE69C45BCE321D8B883671084B195C8E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:33 +0000
ROA not before: Mon 26 Sep 2022 09:55:33 +0000
ROA not after: Mon 25 Sep 2023 10:00:33 +0000
asID: 59282
IP address blocks: 2400:d680:260::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:b4:d4:c6:de:69:c4:5b:ce:32:1d:8b:88:36:71:08:4b:19:5c:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:33 2022 GMT
Not After : Sep 25 10:00:33 2023 GMT
Subject: CN=7BF14314F7F9470C5AA5B388ECD62D9F57366C1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6c:00:14:90:1a:91:63:04:6a:c9:7e:69:b1:
59:8d:ae:09:99:3a:89:2e:cf:ca:d6:c2:e1:a1:95:
d8:97:0b:c1:25:1c:e5:2e:fa:97:69:8f:2e:57:72:
82:e9:15:1f:ae:62:08:44:5c:ba:d2:91:a1:56:f2:
c2:14:ff:17:89:a9:c1:27:67:bf:2c:19:23:1c:94:
88:a8:c7:2a:94:8f:36:e0:4b:16:43:39:a8:ff:7f:
89:e5:7a:f5:d2:43:23:b4:24:d0:4b:60:b4:20:05:
a5:6d:15:c1:0c:7d:e5:52:3a:66:19:bf:ae:ac:dd:
35:c2:60:8e:69:17:82:a2:40:2c:90:cb:c3:9d:7a:
b9:56:c2:73:69:87:b6:98:f6:2c:e5:28:93:72:85:
06:d1:13:cf:a5:38:7c:3a:a0:a9:c0:4f:26:a6:d4:
f8:13:9d:c9:af:1b:3c:b7:c8:9d:08:c9:85:0d:3e:
a8:6f:82:f2:9e:7f:82:55:f2:ed:21:9c:0a:e5:b5:
68:5c:7e:b6:af:16:b4:36:80:4d:c3:6b:c8:83:3e:
31:d9:23:c1:08:16:80:c0:4e:2d:b6:ef:df:c7:d6:
90:e9:ff:90:38:00:41:a2:25:53:d8:92:56:9c:bb:
22:a5:a2:ed:2d:f1:b9:7f:67:59:72:80:41:3b:57:
79:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:F1:43:14:F7:F9:47:0C:5A:A5:B3:88:EC:D6:2D:9F:57:36:6C:1F
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3236303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:260::/48
Signature Algorithm: sha256WithRSAEncryption
b9:50:8a:82:18:0e:ec:27:01:c6:e6:00:33:3f:45:b0:c3:bf:
1d:7b:2b:46:b2:33:7f:56:b3:18:6c:56:29:70:91:e3:fa:b9:
97:92:ce:cc:46:aa:aa:b4:64:cf:f8:be:2a:93:c5:8b:92:a3:
7d:69:b2:be:3a:96:c0:28:72:1a:15:88:cb:cf:73:b3:20:bf:
ab:44:49:39:b3:12:48:98:8e:e5:e4:36:fa:b1:73:9e:ac:ce:
cc:b8:c3:62:7a:1b:04:2f:77:c7:21:12:67:0c:51:cb:94:84:
2c:80:b1:5c:c9:29:99:7b:0f:df:87:51:4c:27:b5:77:e6:79:
e0:74:a7:16:ca:75:05:60:fc:9c:aa:37:fe:c3:e8:07:d5:81:
43:90:45:7b:b6:32:05:e1:73:f7:8e:f0:d3:af:55:53:27:97:
4d:70:d4:09:74:c9:25:3a:69:23:2d:49:88:34:ab:3b:13:ad:
2e:ef:53:38:5a:cd:8b:f1:05:a4:6c:c1:56:a5:fb:8b:6c:d1:
92:a8:92:0d:91:d1:5b:98:6e:40:53:d3:53:f5:34:aa:13:46:
f9:33:5c:97:1f:27:b5:79:e2:3f:93:b9:dd:0f:3f:1d:52:65:
bf:db:cd:36:d7:80:1f:a7:af:4f:26:3b:52:33:99:b3:94:27:
18:95:09:0a
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUJbTUxt5pxFvOMh2LiDZxCEsZXI4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MzNaFw0yMzA5MjUxMDAwMzNaMDMxMTAvBgNV
BAMTKDdCRjE0MzE0RjdGOTQ3MEM1QUE1QjM4OEVDRDYyRDlGNTczNjZDMUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1bAAUkBqRYwRqyX5psVmNrgmZ
Ookuz8rWwuGhldiXC8ElHOUu+pdpjy5XcoLpFR+uYghEXLrSkaFW8sIU/xeJqcEn
Z78sGSMclIioxyqUjzbgSxZDOaj/f4nlevXSQyO0JNBLYLQgBaVtFcEMfeVSOmYZ
v66s3TXCYI5pF4KiQCyQy8OderlWwnNph7aY9izlKJNyhQbRE8+lOHw6oKnATyam
1PgTncmvGzy3yJ0IyYUNPqhvgvKef4JV8u0hnArltWhcfravFrQ2gE3Da8iDPjHZ
I8EIFoDATi2279/H1pDp/5A4AEGiJVPYklacuyKlou0t8bl/Z1lygEE7V3kfAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUe/FDFPf5RwxapbOI7NYtn1c2bB8wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzIzNjMwM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
YDANBgkqhkiG9w0BAQsFAAOCAQEAuVCKghgO7CcBxuYAMz9FsMO/HXsrRrIzf1az
GGxWKXCR4/q5l5LOzEaqqrRkz/i+KpPFi5KjfWmyvjqWwChyGhWIy89zsyC/q0RJ
ObMSSJiO5eQ2+rFznqzOzLjDYnobBC93xyESZwxRy5SELICxXMkpmXsP34dRTCe1
d+Z54HSnFsp1BWD8nKo3/sPoB9WBQ5BFe7YyBeFz947w069VUyeXTXDUCXTJJTpp
Iy1JiDSrOxOtLu9TOFrNi/EFpGzBVqX7i2zRkqiSDZHRW5huQFPTU/U0qhNG+TNc
lx8ntXniP5O53Q8/HVJlv9vNNteAH6evTyY7UjOZs5QnGJUJCg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org