Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3265383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: KhcK4C392yXB2WydCFuoePKINFD0lOSZyX5fPqGbdlQ=
Subject key identifier: 71:D2:F0:EE:B6:0E:29:83:41:26:66:E7:E5:67:85:2B:50:49:AF:7E
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 53E853B0C0C4E4A6A0889A988F2E22D00D2BE957
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:16 +0000
ROA not before: Mon 26 Sep 2022 12:55:16 +0000
ROA not after: Mon 25 Sep 2023 13:00:16 +0000
asID: 59282
IP address blocks: 2400:d680:2e8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:e8:53:b0:c0:c4:e4:a6:a0:88:9a:98:8f:2e:22:d0:0d:2b:e9:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:16 2022 GMT
Not After : Sep 25 13:00:16 2023 GMT
Subject: CN=71D2F0EEB60E2983412666E7E567852B5049AF7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:14:26:4c:96:d2:bd:03:52:54:7a:15:dc:ff:
09:38:fc:95:e4:0f:85:0c:22:7c:f1:a4:f4:43:b9:
8c:c4:d7:5a:98:c9:5f:36:42:a7:9a:7f:1c:37:90:
33:86:94:1e:8b:23:a5:5d:e0:cc:36:73:8f:a9:f4:
5b:3d:b1:90:4e:ea:30:40:7f:b5:73:84:58:7e:02:
21:3f:f2:2b:47:84:1c:62:dc:b0:a8:9b:5e:bf:57:
c1:26:32:f6:e7:69:24:f6:d3:62:3c:15:54:31:91:
d8:c6:fe:15:cd:25:92:1d:56:3a:6b:08:ae:9f:d3:
63:1d:21:8b:96:bd:52:ea:3e:52:b6:25:2f:de:ba:
98:34:6b:fc:c7:ca:72:5f:d9:3a:d3:72:a2:13:d5:
14:e8:4f:d4:19:88:42:d6:1c:c2:a8:fe:4e:f3:77:
e5:aa:d2:46:ef:87:70:47:62:26:87:6c:93:ab:ca:
c6:ac:72:67:73:b1:22:94:98:e1:9f:88:9f:78:28:
c1:64:31:5b:11:35:24:f6:44:74:b4:7b:be:1e:70:
fb:b7:6f:21:af:ea:87:bd:2c:47:6d:18:a0:b4:53:
63:26:37:4b:87:23:9d:db:21:33:ca:ed:e7:e0:db:
3f:56:21:9b:32:41:99:b8:00:cc:ed:37:2c:b3:1c:
ea:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:D2:F0:EE:B6:0E:29:83:41:26:66:E7:E5:67:85:2B:50:49:AF:7E
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2e8::/48
Signature Algorithm: sha256WithRSAEncryption
3c:23:32:02:ee:68:3e:c5:d0:19:c5:45:98:67:bb:56:c8:57:
78:fc:ae:a4:de:94:ce:fe:99:55:8c:37:42:31:b1:04:a6:44:
ca:92:3e:16:24:9d:70:1f:7e:83:af:db:f5:f7:3d:a5:51:2a:
f4:11:57:5c:8b:eb:c0:dd:97:a9:3a:81:14:24:d1:3e:bb:b5:
92:8d:c0:46:a4:f5:27:18:5c:ec:a0:52:12:75:94:9e:1a:39:
2b:30:7b:c7:95:6d:fb:c8:8c:85:a2:03:fa:82:8e:e5:58:6c:
ab:f7:81:98:cd:39:1c:65:0e:fc:d9:2f:fd:86:df:b3:43:90:
3e:26:7f:34:96:25:09:5e:ae:54:19:12:2a:f4:3f:f8:7b:ac:
87:4e:84:5e:64:1d:cd:69:9b:89:48:a4:e0:85:89:3e:7b:c4:
6f:6e:f4:e6:1f:76:80:0d:76:b0:a4:a6:ae:ce:24:00:be:c7:
73:bc:0d:ca:60:74:a4:58:22:a3:c7:98:e2:9b:df:ec:97:70:
3a:38:b5:94:8d:a3:01:be:7b:85:f7:ec:d9:53:20:11:9b:82:
a9:e4:49:bd:cb:2a:d2:d3:3d:6d:f2:fc:10:47:c8:97:81:bb:
c4:e1:6a:26:cc:51:83:cf:9a:32:49:22:47:93:04:c4:96:11:
73:24:9a:da
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUU+hTsMDE5KagiJqYjy4i0A0r6VcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMjU1MTZaFw0yMzA5MjUxMzAwMTZaMDMxMTAvBgNV
BAMTKDcxRDJGMEVFQjYwRTI5ODM0MTI2NjZFN0U1Njc4NTJCNTA0OUFGN0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvFCZMltK9A1JUehXc/wk4/JXk
D4UMInzxpPRDuYzE11qYyV82Qqeafxw3kDOGlB6LI6Vd4Mw2c4+p9Fs9sZBO6jBA
f7VzhFh+AiE/8itHhBxi3LCom16/V8EmMvbnaST202I8FVQxkdjG/hXNJZIdVjpr
CK6f02MdIYuWvVLqPlK2JS/eupg0a/zHynJf2TrTcqIT1RToT9QZiELWHMKo/k7z
d+Wq0kbvh3BHYiaHbJOrysascmdzsSKUmOGfiJ94KMFkMVsRNST2RHS0e74ecPu3
byGv6oe9LEdtGKC0U2MmN0uHI53bITPK7efg2z9WIZsyQZm4AMztNyyzHOo9AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUcdLw7rYOKYNBJmbn5WeFK1BJr34wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzI2NTM4M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
6DANBgkqhkiG9w0BAQsFAAOCAQEAPCMyAu5oPsXQGcVFmGe7VshXePyupN6Uzv6Z
VYw3QjGxBKZEypI+FiSdcB9+g6/b9fc9pVEq9BFXXIvrwN2XqTqBFCTRPru1ko3A
RqT1Jxhc7KBSEnWUnho5KzB7x5Vt+8iMhaID+oKO5Vhsq/eBmM05HGUO/Nkv/Ybf
s0OQPiZ/NJYlCV6uVBkSKvQ/+Hush06EXmQdzWmbiUik4IWJPnvEb2705h92gA12
sKSmrs4kAL7Hc7wNymB0pFgio8eY4pvf7JdwOji1lI2jAb57hffs2VMgEZuCqeRJ
vcsq0tM9bfL8EEfIl4G7xOFqJsxRg8+aMkkiR5MExJYRcySa2g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org