Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3265623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Pg45mIM1LWKdZ4DBFauL52PrCqgwoSv3DQEDLNHRTbc=
Subject key identifier: CB:5F:56:C0:67:44:F9:44:16:AD:96:26:28:B6:1D:6F:34:16:CB:81
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1A2E9279EE7C9C74B418680BD7EC68198876AECC
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 13:00:21 +0000
ROA not before: Mon 26 Sep 2022 12:55:21 +0000
ROA not after: Mon 25 Sep 2023 13:00:21 +0000
asID: 59282
IP address blocks: 2400:d680:2eb::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:2e:92:79:ee:7c:9c:74:b4:18:68:0b:d7:ec:68:19:88:76:ae:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 12:55:21 2022 GMT
Not After : Sep 25 13:00:21 2023 GMT
Subject: CN=CB5F56C06744F94416AD962628B61D6F3416CB81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e9:4c:f9:b6:57:7d:00:e4:87:fc:1b:2d:3b:
da:ab:cc:86:52:87:44:d6:26:39:1e:1f:d9:01:f7:
57:73:e6:a6:29:ad:28:87:95:15:bc:c3:00:0b:0d:
25:fe:7a:e2:5c:88:82:40:b9:0b:fb:6f:f9:b6:4e:
62:51:5d:cf:0d:54:78:dd:9d:6c:20:ed:5b:b4:00:
f0:6a:f3:2e:9c:c2:3c:e9:84:98:e6:0a:9c:11:70:
18:c5:94:aa:32:39:d5:e3:fd:1f:79:0e:42:8c:9f:
71:bb:3d:11:3f:29:46:ff:76:5e:40:d4:ab:c5:c4:
44:ec:6f:d3:4e:bd:29:83:de:89:66:14:6a:09:60:
3d:a6:02:9c:fc:8c:28:d1:be:4b:5b:dc:0c:c9:0e:
7e:f3:bf:59:8f:f1:6f:89:42:65:e5:ad:ae:8a:83:
a9:f0:56:c1:48:75:d4:da:67:95:79:67:c6:17:15:
74:fe:bc:29:ea:3a:94:0a:e9:79:9a:f4:0a:a6:0a:
21:d5:47:e6:a8:1e:25:bd:32:5a:79:26:2a:58:1b:
98:a2:c4:f9:2b:65:98:a7:fc:0e:76:85:09:91:04:
2b:2c:1a:d5:7b:12:23:d7:c7:46:98:a3:49:5a:f0:
fd:d9:68:9a:30:31:cb:75:cd:49:f8:55:24:24:c5:
89:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:5F:56:C0:67:44:F9:44:16:AD:96:26:28:B6:1D:6F:34:16:CB:81
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3265623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:2eb::/48
Signature Algorithm: sha256WithRSAEncryption
b3:8b:23:3c:30:55:d0:2d:66:45:b9:19:89:e3:41:0c:52:0f:
7e:74:0b:87:2b:28:bc:8b:cb:7b:da:6b:7b:5a:f5:24:0a:33:
9f:7f:ad:5f:5a:b6:ed:23:35:f8:fa:e6:22:73:5f:85:cf:0c:
a3:b1:f7:ab:4e:65:86:4c:19:3c:74:b1:be:a3:ac:45:ff:f3:
90:71:ec:99:12:cc:a1:8f:f2:28:ff:9e:01:b8:6f:9a:f9:f8:
6a:21:da:7b:1f:8c:9f:44:d2:ed:d0:12:5b:54:d3:d1:63:62:
ae:9c:3c:27:3b:65:0d:6d:35:65:94:70:b5:f4:94:1b:4a:1d:
26:b8:a3:5c:8d:b2:ee:e9:33:85:64:c1:05:2b:a9:c8:20:5e:
e1:97:de:ac:04:82:65:0b:06:60:eb:61:27:e8:72:4f:29:89:
99:b3:1b:eb:83:83:27:b3:5c:87:e4:8d:e0:b7:94:93:b1:cd:
a7:63:09:50:c7:58:86:7b:74:8b:cb:6b:99:75:a3:d4:5e:cd:
97:aa:0b:68:06:d0:bd:21:1f:e6:3c:1a:0a:b3:eb:fa:16:fd:
10:2a:20:8d:70:62:4e:c7:62:13:eb:1e:bb:0c:6a:2f:2e:bf:
92:b5:54:00:06:e5:3b:ea:48:8f:e3:8f:c6:4f:4f:8f:68:d6:
1c:c5:d3:f2
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUGi6See58nHS0GGgL1+xoGYh2rswwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMjU1MjFaFw0yMzA5MjUxMzAwMjFaMDMxMTAvBgNV
BAMTKENCNUY1NkMwNjc0NEY5NDQxNkFEOTYyNjI4QjYxRDZGMzQxNkNCODEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt6Uz5tld9AOSH/BstO9qrzIZS
h0TWJjkeH9kB91dz5qYprSiHlRW8wwALDSX+euJciIJAuQv7b/m2TmJRXc8NVHjd
nWwg7Vu0APBq8y6cwjzphJjmCpwRcBjFlKoyOdXj/R95DkKMn3G7PRE/KUb/dl5A
1KvFxETsb9NOvSmD3olmFGoJYD2mApz8jCjRvktb3AzJDn7zv1mP8W+JQmXlra6K
g6nwVsFIddTaZ5V5Z8YXFXT+vCnqOpQK6Xma9AqmCiHVR+aoHiW9Mlp5JipYG5ii
xPkrZZin/A52hQmRBCssGtV7EiPXx0aYo0la8P3ZaJowMct1zUn4VSQkxYmZAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUy19WwGdE+UQWrZYmKLYdbzQWy4EwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzI2NTYyM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAC
6zANBgkqhkiG9w0BAQsFAAOCAQEAs4sjPDBV0C1mRbkZieNBDFIPfnQLhysovIvL
e9pre1r1JAozn3+tX1q27SM1+PrmInNfhc8Mo7H3q05lhkwZPHSxvqOsRf/zkHHs
mRLMoY/yKP+eAbhvmvn4aiHaex+Mn0TS7dASW1TT0WNirpw8JztlDW01ZZRwtfSU
G0odJrijXI2y7ukzhWTBBSupyCBe4ZferASCZQsGYOthJ+hyTymJmbMb64ODJ7Nc
h+SN4LeUk7HNp2MJUMdYhnt0i8trmXWj1F7Nl6oLaAbQvSEf5jwaCrPr+hb9ECog
jXBiTsdiE+seuwxqLy6/krVUAAblO+pIj+OPxk9Pj2jWHMXT8g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org