Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3261383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 5ieW1ptxNWtMf7vy2rWEGc2sgFDsMrMxj7a+STb/hio=
Subject key identifier: C7:90:96:DA:6B:11:CF:27:22:66:B5:1B:14:76:15:1B:22:2B:F6:FA
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 15CDF3EA0C2DCAF1BBEDFC0E8CBC8DA972AC0886
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:04 +0000
ROA not before: Mon 26 Sep 2022 12:55:04 +0000
ROA not after: Mon 25 Sep 2023 13:00:04 +0000
asID: 59282
IP address blocks: 2400:d680:2a8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:cd:f3:ea:0c:2d:ca:f1:bb:ed:fc:0e:8c:bc:8d:a9:72:ac:08:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:04 2022 GMT
Not After : Sep 25 13:00:04 2023 GMT
Subject: CN=C79096DA6B11CF272266B51B1476151B222BF6FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:eb:0e:92:ac:b3:05:9c:f6:c9:12:f5:d5:aa:
86:dd:d8:a6:51:f7:0e:65:12:09:90:1e:20:9d:46:
96:03:80:85:3d:fd:b4:68:5c:fc:97:46:30:77:42:
3e:9e:58:92:57:12:f3:b8:1a:af:20:50:3b:34:95:
8a:c4:eb:bb:f4:3b:15:20:08:15:43:cf:82:eb:2c:
bd:53:e3:b5:e4:98:48:19:e6:f1:80:2f:11:e2:51:
79:3a:a9:48:a6:f2:3f:64:96:96:1c:19:23:d1:8a:
d6:40:39:c4:c5:22:e8:7d:21:7f:aa:d5:0c:73:04:
eb:bd:7c:2a:2b:5f:0c:26:f2:69:dc:5d:44:7b:1f:
82:3d:c8:b8:03:e2:32:ff:7a:c7:93:e5:33:41:01:
3c:54:47:4e:ac:67:9c:8e:64:12:1d:cd:a8:dc:67:
4e:88:cc:12:23:82:b7:f0:63:39:2d:50:33:17:2f:
d2:0e:47:10:70:46:32:8a:f0:78:86:55:e4:11:52:
5e:a0:f4:58:25:56:ad:14:d6:0e:c8:8a:84:bf:0c:
c8:17:19:12:cb:0b:05:14:71:ce:41:83:fa:1c:54:
51:58:88:c0:99:df:cc:ae:b6:8d:a4:cd:95:cb:c8:
b0:ee:8a:41:fc:bd:0b:a4:77:97:31:06:06:65:d8:
f6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:90:96:DA:6B:11:CF:27:22:66:B5:1B:14:76:15:1B:22:2B:F6:FA
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3261383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2a8::/48
Signature Algorithm: sha256WithRSAEncryption
5c:7a:b4:ab:96:5d:d5:c7:0d:05:bc:76:7f:ec:87:10:ce:4c:
4f:cd:f0:78:e3:69:80:f4:9b:49:be:da:20:93:69:4b:76:8d:
4f:8b:59:dd:38:23:a1:ec:7f:a0:ba:b7:65:d8:40:59:1e:97:
46:80:a9:cf:ba:45:fa:d6:93:6a:7d:e5:82:f1:14:cb:70:6d:
c8:bc:c0:72:6b:80:1b:d9:a3:d1:c9:a3:8f:c6:91:f5:dd:d0:
7a:e6:bd:ff:bb:38:4a:a9:bc:d1:af:90:11:6b:ba:68:54:77:
93:8a:b6:ab:63:a0:21:42:b4:77:37:a7:c5:21:05:84:c5:60:
e5:63:25:cf:59:f5:da:c6:0d:ce:bb:27:4b:c1:36:b1:fa:20:
8f:8e:ff:b5:fe:e2:85:f2:29:27:70:89:da:2b:99:b3:a4:91:
06:95:5b:64:dd:a8:3c:32:73:f9:b1:d4:c0:8d:ba:eb:c0:b3:
0e:87:ac:f8:ff:ac:6a:4d:01:16:e1:80:f6:82:42:40:46:c8:
e1:c7:f8:f2:60:2f:40:52:82:fc:bd:d5:de:1f:6d:d8:76:c6:
fa:78:8d:6e:f3:65:00:e0:1c:56:c3:ec:f9:bb:a1:5a:d4:1c:
80:bf:38:07:2a:40:ad:67:05:20:17:1f:2c:2a:73:eb:0d:b7:
1f:ae:87:27
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUFc3z6gwtyvG77fwOjLyNqXKsCIYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMjU1MDRaFw0yMzA5MjUxMzAwMDRaMDMxMTAvBgNV
BAMTKEM3OTA5NkRBNkIxMUNGMjcyMjY2QjUxQjE0NzYxNTFCMjIyQkY2RkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ6w6SrLMFnPbJEvXVqobd2KZR
9w5lEgmQHiCdRpYDgIU9/bRoXPyXRjB3Qj6eWJJXEvO4Gq8gUDs0lYrE67v0OxUg
CBVDz4LrLL1T47XkmEgZ5vGALxHiUXk6qUim8j9klpYcGSPRitZAOcTFIuh9IX+q
1QxzBOu9fCorXwwm8mncXUR7H4I9yLgD4jL/eseT5TNBATxUR06sZ5yOZBIdzajc
Z06IzBIjgrfwYzktUDMXL9IORxBwRjKK8HiGVeQRUl6g9FglVq0U1g7IioS/DMgX
GRLLCwUUcc5Bg/ocVFFYiMCZ38yuto2kzZXLyLDuikH8vQukd5cxBgZl2PZtAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUx5CW2msRzyciZrUbFHYVGyIr9vowHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzI2MTM4M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
qDANBgkqhkiG9w0BAQsFAAOCAQEAXHq0q5Zd1ccNBbx2f+yHEM5MT83weONpgPSb
Sb7aIJNpS3aNT4tZ3Tgjoex/oLq3ZdhAWR6XRoCpz7pF+taTan3lgvEUy3BtyLzA
cmuAG9mj0cmjj8aR9d3Qeua9/7s4Sqm80a+QEWu6aFR3k4q2q2OgIUK0dzenxSEF
hMVg5WMlz1n12sYNzrsnS8E2sfogj47/tf7ihfIpJ3CJ2iuZs6SRBpVbZN2oPDJz
+bHUwI2668CzDoes+P+sak0BFuGA9oJCQEbI4cf48mAvQFKC/L3V3h9t2HbG+niN
bvNlAOAcVsPs+buhWtQcgL84BypArWcFIBcfLCpz6w23H66HJw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org