Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3330343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: gAmy06npjGzMuyTZ6E82fg3h55aLDvMctoUG2RIz5Hw=
Subject key identifier: D7:71:4A:D0:E1:AF:21:E6:10:A9:B2:7F:0C:A8:60:0C:CE:19:F2:4A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 2A9400BBD8A13E4B023648AD1E372DCE930FDC19
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:23 +0000
ROA not before: Mon 26 Sep 2022 09:55:23 +0000
ROA not after: Mon 25 Sep 2023 10:00:23 +0000
asID: 59282
IP address blocks: 2400:d680:304::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:94:00:bb:d8:a1:3e:4b:02:36:48:ad:1e:37:2d:ce:93:0f:dc:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:23 2022 GMT
Not After : Sep 25 10:00:23 2023 GMT
Subject: CN=D7714AD0E1AF21E610A9B27F0CA8600CCE19F24A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:81:39:61:e2:96:9c:9c:2a:74:aa:6f:43:c5:
ee:26:5c:25:19:47:7f:6b:33:a5:a9:b0:41:24:74:
ff:32:d8:70:cf:34:49:56:a1:86:ee:26:b4:f2:ea:
dd:0d:2d:78:0f:a6:6e:11:84:42:a7:69:2a:90:81:
a0:a0:fd:5e:b4:96:45:09:74:d0:94:a2:7e:63:ee:
f9:32:fd:4d:b2:d5:ee:1f:0d:d5:d7:90:a3:dd:2b:
8b:65:c8:88:ee:c0:dd:86:61:89:5a:84:bb:81:3e:
20:3c:5e:42:0b:d8:6c:50:a2:af:18:e7:8b:3c:6a:
58:bc:f5:9a:1a:ec:b0:3b:53:33:ba:be:99:70:87:
b2:42:db:1a:2b:a3:eb:b8:1b:d5:11:4a:a8:fc:c3:
f0:b2:51:60:25:3e:97:54:d3:66:a3:85:5a:c9:95:
91:a1:a7:b6:9c:ad:75:77:48:8c:9c:66:81:8f:aa:
a0:51:e1:ab:76:c9:b1:17:e3:45:f3:16:cd:f2:eb:
50:8d:f4:49:cd:63:dc:fc:41:b0:99:c2:42:96:2c:
0b:b5:9c:6b:28:48:95:42:07:8b:5f:33:4a:61:25:
4f:51:f9:d3:40:5a:54:97:df:ee:4f:a5:32:79:bb:
dd:19:38:3f:b9:d0:f8:b9:70:cb:73:5b:85:7d:b4:
79:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:71:4A:D0:E1:AF:21:E6:10:A9:B2:7F:0C:A8:60:0C:CE:19:F2:4A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3330343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:304::/48
Signature Algorithm: sha256WithRSAEncryption
89:de:fc:08:31:4b:fe:f4:8e:8a:80:73:c7:6b:28:b0:2f:5d:
5f:8c:e2:23:59:41:51:8b:45:da:90:57:8c:8f:72:26:48:41:
af:99:d5:f1:19:5c:f2:97:7d:ae:bf:ee:71:fb:ed:a2:3b:69:
df:89:ee:51:b0:18:18:3d:66:55:9f:d3:e6:6f:2a:96:17:81:
da:fc:86:87:87:96:1b:0d:c1:82:11:59:2a:49:cb:e5:85:be:
85:12:e5:cc:64:d1:70:25:a8:26:b4:a3:a9:94:4e:3e:79:f6:
24:60:11:41:59:45:0e:31:68:2b:da:e9:d7:62:5b:fc:0c:8a:
16:cf:6b:31:c5:f7:cc:88:4e:98:e4:a2:94:3c:d6:ac:a0:ee:
29:5a:31:f4:53:35:a3:72:a6:1a:1a:ad:aa:e3:c4:8d:4a:66:
66:ef:cb:22:71:48:fa:6e:14:52:48:3d:0b:5c:44:38:07:78:
31:cc:f8:68:12:fc:02:14:5d:76:85:54:ec:b7:2c:94:86:79:
2a:6b:f6:d8:3e:56:e5:34:b1:87:c4:10:58:40:ee:7d:23:0c:
c4:d1:34:5a:4b:c9:a2:c7:4c:52:b0:c4:fd:64:da:7f:92:de:
48:c3:92:82:e6:7d:2f:33:b9:b3:4c:17:bd:6c:01:39:26:69:
bf:fb:00:02
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUKpQAu9ihPksCNkitHjctzpMP3BkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MjNaFw0yMzA5MjUxMDAwMjNaMDMxMTAvBgNV
BAMTKEQ3NzE0QUQwRTFBRjIxRTYxMEE5QjI3RjBDQTg2MDBDQ0UxOUYyNEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWgTlh4pacnCp0qm9Dxe4mXCUZ
R39rM6WpsEEkdP8y2HDPNElWoYbuJrTy6t0NLXgPpm4RhEKnaSqQgaCg/V60lkUJ
dNCUon5j7vky/U2y1e4fDdXXkKPdK4tlyIjuwN2GYYlahLuBPiA8XkIL2GxQoq8Y
54s8ali89Zoa7LA7UzO6vplwh7JC2xoro+u4G9URSqj8w/CyUWAlPpdU02ajhVrJ
lZGhp7acrXV3SIycZoGPqqBR4at2ybEX40XzFs3y61CN9EnNY9z8QbCZwkKWLAu1
nGsoSJVCB4tfM0phJU9R+dNAWlSX3+5PpTJ5u90ZOD+50Pi5cMtzW4V9tHmRAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU13FK0OGvIeYQqbJ/DKhgDM4Z8kowHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzMDM0M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
BDANBgkqhkiG9w0BAQsFAAOCAQEAid78CDFL/vSOioBzx2sosC9dX4ziI1lBUYtF
2pBXjI9yJkhBr5nV8Rlc8pd9rr/ucfvtojtp34nuUbAYGD1mVZ/T5m8qlheB2vyG
h4eWGw3BghFZKknL5YW+hRLlzGTRcCWoJrSjqZROPnn2JGARQVlFDjFoK9rp12Jb
/AyKFs9rMcX3zIhOmOSilDzWrKDuKVox9FM1o3KmGhqtquPEjUpmZu/LInFI+m4U
Ukg9C1xEOAd4Mcz4aBL8AhRddoVU7LcslIZ5Kmv22D5W5TSxh8QQWEDufSMMxNE0
WkvJosdMUrDE/WTaf5LeSMOSguZ9LzO5s0wXvWwBOSZpv/sAAg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org