Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3263373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: eJy8wEJt0EpS+QBZc5xITG1jc7/F+rAnYpapaj0a7zA=
Subject key identifier: 9C:42:37:E1:9E:74:92:60:47:A9:90:1F:3B:6B:02:59:E4:36:73:12
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 04AFBF4752555BEF7356085A64CD391C802DDF3F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:06 +0000
ROA not before: Mon 26 Sep 2022 12:55:06 +0000
ROA not after: Mon 25 Sep 2023 13:00:06 +0000
asID: 59282
IP address blocks: 2400:d680:2c7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:af:bf:47:52:55:5b:ef:73:56:08:5a:64:cd:39:1c:80:2d:df:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:06 2022 GMT
Not After : Sep 25 13:00:06 2023 GMT
Subject: CN=9C4237E19E74926047A9901F3B6B0259E4367312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b6:97:9e:89:5e:1a:af:6e:8d:3e:e4:5b:36:
69:4f:03:f7:4c:7c:37:44:c7:24:1f:17:a8:75:2b:
f3:c5:92:bc:1e:38:cb:40:df:c1:27:24:59:6f:05:
2f:57:df:73:d1:3f:47:e1:fd:a4:c9:22:0a:d6:81:
d7:b0:94:26:bf:84:0c:3a:0d:c9:27:6d:a9:82:67:
e6:4b:7c:a6:bf:8f:7c:fd:cd:13:f5:53:2b:3b:a4:
d9:35:79:ea:01:81:fb:5e:5c:19:50:e4:df:00:cd:
33:8e:0d:ff:21:ab:de:e2:1b:91:23:b4:b3:9e:ba:
1b:13:27:d5:e9:e2:d6:52:6c:1a:cc:c4:df:4c:cd:
d5:d5:63:c5:06:1a:f9:e7:ec:0b:4f:ff:ae:76:7e:
b7:25:98:86:08:1d:56:5e:a2:95:46:75:ef:53:fd:
7d:54:4f:ca:75:e1:22:ba:45:cd:71:0c:6f:ca:97:
33:03:7c:16:fb:09:cf:45:d9:9a:f6:0e:75:39:07:
31:5b:85:9e:e0:be:26:18:4d:d7:74:00:27:d5:88:
0d:a2:73:d6:5e:ca:5a:5b:e0:b8:43:71:dd:b5:8d:
9a:50:1b:e7:ab:e6:fb:17:88:a8:33:d6:6c:16:85:
55:36:c6:0e:6c:41:49:46:18:61:03:60:71:23:e3:
d4:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:42:37:E1:9E:74:92:60:47:A9:90:1F:3B:6B:02:59:E4:36:73:12
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3263373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2c7::/48
Signature Algorithm: sha256WithRSAEncryption
1b:a9:90:d2:0f:86:76:e1:8b:40:79:e1:74:4e:98:32:8e:9a:
ca:45:8a:43:5c:13:bc:5a:18:d1:bc:d7:d0:c8:a5:b9:36:fa:
76:e5:53:3a:2e:66:d1:d4:a8:b5:06:83:6b:af:82:85:aa:b2:
71:c5:50:15:4d:a7:f9:34:18:fc:bf:7c:8d:ca:2b:39:e4:09:
89:e3:bc:ee:97:c6:62:d7:f0:2f:e6:82:92:91:bd:a8:ee:81:
c9:43:d4:f9:54:88:51:2e:17:c9:dc:f4:a9:63:c0:38:c5:51:
08:47:f4:57:74:2c:44:ab:39:a4:54:01:93:a9:ba:87:fb:a8:
f5:5d:a7:d3:7e:04:b3:23:ed:30:ba:cc:8e:f8:32:a7:c2:76:
30:33:a8:79:5d:43:2f:3a:14:88:56:35:72:c2:66:50:ef:c5:
07:ae:c2:7e:29:15:af:ce:ae:ad:5d:93:e3:24:92:7b:3f:0d:
a5:bc:6d:c0:d8:3f:79:3f:4d:c7:35:50:de:4a:a8:6e:56:c1:
00:3b:93:7a:15:be:39:70:6b:f9:0e:25:eb:16:ab:ca:5f:3c:
46:05:02:76:98:04:bc:28:c2:bf:ca:23:1c:fc:37:9a:e4:93:
33:e5:23:ff:50:65:c2:e3:83:70:51:2b:b0:2b:bf:cf:1d:c1:
65:75:e6:e6
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUBK+/R1JVW+9zVghaZM05HIAt3z8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMjU1MDZaFw0yMzA5MjUxMzAwMDZaMDMxMTAvBgNV
BAMTKDlDNDIzN0UxOUU3NDkyNjA0N0E5OTAxRjNCNkIwMjU5RTQzNjczMTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0tpeeiV4ar26NPuRbNmlPA/dM
fDdExyQfF6h1K/PFkrweOMtA38EnJFlvBS9X33PRP0fh/aTJIgrWgdewlCa/hAw6
DcknbamCZ+ZLfKa/j3z9zRP1Uys7pNk1eeoBgfteXBlQ5N8AzTOODf8hq97iG5Ej
tLOeuhsTJ9Xp4tZSbBrMxN9MzdXVY8UGGvnn7AtP/652frclmIYIHVZeopVGde9T
/X1UT8p14SK6Rc1xDG/KlzMDfBb7Cc9F2Zr2DnU5BzFbhZ7gviYYTdd0ACfViA2i
c9Zeylpb4LhDcd21jZpQG+er5vsXiKgz1mwWhVU2xg5sQUlGGGEDYHEj49TdAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUnEI34Z50kmBHqZAfO2sCWeQ2cxIwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzI2MzM3M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
xzANBgkqhkiG9w0BAQsFAAOCAQEAG6mQ0g+GduGLQHnhdE6YMo6aykWKQ1wTvFoY
0bzX0MiluTb6duVTOi5m0dSotQaDa6+ChaqyccVQFU2n+TQY/L98jcorOeQJieO8
7pfGYtfwL+aCkpG9qO6ByUPU+VSIUS4Xydz0qWPAOMVRCEf0V3QsRKs5pFQBk6m6
h/uo9V2n034EsyPtMLrMjvgyp8J2MDOoeV1DLzoUiFY1csJmUO/FB67CfikVr86u
rV2T4ySSez8NpbxtwNg/eT9NxzVQ3kqoblbBADuTehW+OXBr+Q4l6xaryl88RgUC
dpgEvCjCv8ojHPw3muSTM+Uj/1BlwuODcFErsCu/zx3BZXXm5g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org