Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3331393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 167wy/jpza8T52l/PlBfg2a+ASyh+62aD13s9DJ6rU4=
Subject key identifier: 68:67:2F:D8:40:21:DB:49:2E:EF:14:1A:B6:AE:DB:A7:63:7B:3B:AA
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 24FD84B1C45564D32C74DFA4288EAD15FE3140E6
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:17 +0000
ROA not before: Mon 26 Sep 2022 09:55:17 +0000
ROA not after: Mon 25 Sep 2023 10:00:17 +0000
asID: 59282
IP address blocks: 2400:d680:319::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:fd:84:b1:c4:55:64:d3:2c:74:df:a4:28:8e:ad:15:fe:31:40:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:17 2022 GMT
Not After : Sep 25 10:00:17 2023 GMT
Subject: CN=68672FD84021DB492EEF141AB6AEDBA7637B3BAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:d8:12:f4:37:fe:2e:70:85:30:44:b7:3c:53:
cd:6e:a1:25:ce:30:64:c7:d7:53:d0:da:dc:98:25:
f9:76:a2:bd:36:2c:59:72:bc:1e:ab:7a:3e:c9:d8:
db:46:76:1d:16:68:a6:12:1b:f2:c8:73:48:61:ee:
82:c1:08:1e:fc:50:a1:5a:4b:f0:91:f4:e4:e1:28:
49:a0:71:f8:b7:f0:60:ae:a0:5e:58:da:a9:b3:4c:
81:34:d6:a5:2a:a8:6e:4a:2e:c7:58:05:e8:f0:61:
e2:31:09:4b:30:f1:a3:5d:2b:7d:a7:f9:53:a3:ce:
71:76:14:4e:74:b6:69:9f:fd:3d:79:a0:71:b5:a3:
f5:ad:d8:37:94:3b:b2:03:4b:5b:9e:b5:0a:f4:f0:
40:9f:59:d3:50:b6:0d:15:a7:d9:d7:81:b6:5e:38:
b3:98:74:06:da:49:f9:b6:ac:de:43:35:22:a2:41:
5b:ef:c1:39:9f:2f:68:c8:39:88:62:ae:54:1e:4f:
60:7f:31:d4:2f:a1:87:a1:40:ab:9c:32:e1:af:a4:
79:fa:6d:4b:de:a6:b9:60:e4:67:94:e7:9a:1b:d6:
32:4c:28:65:fa:4d:d0:d6:34:21:0c:e4:6d:d7:f7:
8f:ab:ec:8d:6e:c3:f2:da:bb:53:e1:b6:1e:40:cd:
1d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:67:2F:D8:40:21:DB:49:2E:EF:14:1A:B6:AE:DB:A7:63:7B:3B:AA
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3331393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:319::/48
Signature Algorithm: sha256WithRSAEncryption
be:d9:75:d3:3c:2a:10:9e:ca:c5:87:22:71:78:01:b7:45:44:
c3:d5:0a:6c:c0:55:70:98:5a:9e:b4:97:d0:21:1d:83:fd:5b:
2f:f2:4d:69:d0:a8:55:09:f2:04:e6:79:08:e0:32:22:d1:c3:
45:37:a0:59:df:76:5c:60:a1:77:dc:3a:34:fc:f5:5d:e1:fe:
8e:47:14:b3:f6:29:d0:b0:59:4f:e9:02:36:30:ec:d4:4c:36:
d8:ba:3a:df:4f:05:9b:40:cf:5a:ed:f6:cd:97:7e:8e:06:32:
a6:76:1e:82:62:4f:26:91:61:a7:b6:f1:2a:e3:fd:92:22:a0:
26:08:f7:5c:0d:8b:1b:f9:af:ca:04:c6:fb:0b:d8:2d:69:93:
c3:e9:46:72:18:c3:65:9f:a4:da:55:54:53:78:9b:45:b7:8a:
4e:5c:a0:fa:29:80:1f:d0:a5:5f:2f:b4:2c:92:3a:b2:11:4e:
3d:f6:5b:4d:3f:7d:f5:56:8a:ee:e0:a5:ac:cd:37:32:11:52:
0b:0c:50:ce:83:ab:a5:f4:78:82:0b:d3:5b:e7:3a:89:74:f8:
1d:c9:fc:77:a7:b3:c1:03:33:d5:b4:13:24:24:de:a4:24:24:
b6:71:bc:7a:86:39:1c:47:3a:32:57:f8:ba:e6:80:20:e6:9b:
44:11:be:4c
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUJP2EscRVZNMsdN+kKI6tFf4xQOYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MTdaFw0yMzA5MjUxMDAwMTdaMDMxMTAvBgNV
BAMTKDY4NjcyRkQ4NDAyMURCNDkyRUVGMTQxQUI2QUVEQkE3NjM3QjNCQUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDc2BL0N/4ucIUwRLc8U81uoSXO
MGTH11PQ2tyYJfl2or02LFlyvB6rej7J2NtGdh0WaKYSG/LIc0hh7oLBCB78UKFa
S/CR9OThKEmgcfi38GCuoF5Y2qmzTIE01qUqqG5KLsdYBejwYeIxCUsw8aNdK32n
+VOjznF2FE50tmmf/T15oHG1o/Wt2DeUO7IDS1uetQr08ECfWdNQtg0Vp9nXgbZe
OLOYdAbaSfm2rN5DNSKiQVvvwTmfL2jIOYhirlQeT2B/MdQvoYehQKucMuGvpHn6
bUveprlg5GeU55ob1jJMKGX6TdDWNCEM5G3X94+r7I1uw/Lau1Phth5AzR2fAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUaGcv2EAh20ku7xQatq7bp2N7O6owHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzMTM5M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
GTANBgkqhkiG9w0BAQsFAAOCAQEAvtl10zwqEJ7KxYcicXgBt0VEw9UKbMBVcJha
nrSX0CEdg/1bL/JNadCoVQnyBOZ5COAyItHDRTegWd92XGChd9w6NPz1XeH+jkcU
s/Yp0LBZT+kCNjDs1Ew22Lo6308Fm0DPWu32zZd+jgYypnYegmJPJpFhp7bxKuP9
kiKgJgj3XA2LG/mvygTG+wvYLWmTw+lGchjDZZ+k2lVUU3ibRbeKTlyg+imAH9Cl
Xy+0LJI6shFOPfZbTT999VaK7uClrM03MhFSCwxQzoOrpfR4ggvTW+c6iXT4Hcn8
d6ezwQMz1bQTJCTepCQktnG8eoY5HEc6Mlf4uuaAIOabRBG+TA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org