Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3332353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 8U5wxUy5TNTedMhwKCXoU3ApqQ2+cQr1MVHZ63OEz88=
Subject key identifier: A6:2A:C4:BA:7D:B7:5E:C0:4B:5E:5F:83:02:47:4C:F2:02:B0:9B:F7
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7395A71C163F8F2584A598046D844414CE6B0722
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:30 +0000
ROA not before: Mon 26 Sep 2022 09:55:30 +0000
ROA not after: Mon 25 Sep 2023 10:00:30 +0000
asID: 59282
IP address blocks: 2400:d680:325::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:95:a7:1c:16:3f:8f:25:84:a5:98:04:6d:84:44:14:ce:6b:07:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:30 2022 GMT
Not After : Sep 25 10:00:30 2023 GMT
Subject: CN=A62AC4BA7DB75EC04B5E5F8302474CF202B09BF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:62:d7:af:e7:5d:fc:8c:4b:92:58:60:a9:64:
63:56:4a:49:8a:a0:f5:17:9c:9e:6a:5f:b1:aa:1d:
e5:7a:21:aa:3b:f7:4a:8a:6b:62:f1:b4:25:af:3d:
64:a9:f1:3d:68:d2:68:a1:57:82:89:d0:a4:a5:3b:
ca:89:c9:5d:50:18:56:c6:9f:bf:0b:d8:e5:38:e1:
9f:f9:8c:7e:1a:c8:53:6d:3c:1d:48:72:1c:e4:0b:
8e:2d:a9:7b:f6:c8:ab:bc:61:7d:cb:3b:40:4a:99:
a7:f8:f6:4c:94:f7:5f:7c:a0:74:09:bb:08:d0:38:
06:85:d1:a7:f8:56:dc:5c:ca:48:33:3e:88:db:bf:
66:27:23:67:ab:ca:3a:be:53:9f:84:7c:bd:f5:48:
93:5d:14:c7:03:aa:40:c7:c4:df:db:29:0f:a3:4a:
3a:b3:8b:51:5e:b9:72:07:c5:ac:3c:46:82:66:b6:
17:dd:3e:e5:fb:a8:fd:d8:67:39:c6:34:dd:b3:f1:
26:b9:14:13:c5:4f:91:64:1d:15:d5:15:d7:00:d2:
af:18:f4:5e:a2:1d:8f:4f:8a:33:93:11:66:76:e7:
4a:bb:6f:d7:64:4e:ea:cb:6a:f5:73:a0:de:4f:35:
8c:bb:cb:48:16:7f:cc:d6:70:c3:da:29:c4:67:52:
f1:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:2A:C4:BA:7D:B7:5E:C0:4B:5E:5F:83:02:47:4C:F2:02:B0:9B:F7
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:325::/48
Signature Algorithm: sha256WithRSAEncryption
33:57:5a:7f:91:e3:3e:e4:bd:45:78:14:54:dc:d2:ba:00:ef:
ef:f6:a6:f4:0a:76:08:a5:8b:06:f0:7f:8b:2e:01:c2:18:1c:
9c:4f:d8:bd:11:44:7b:12:56:b4:45:73:e4:8f:83:ee:af:aa:
86:32:b6:a1:42:36:bf:d7:b7:db:6b:08:7f:01:62:a4:73:4a:
31:42:dd:51:8f:76:7c:43:b4:f7:f6:09:25:07:09:27:6f:dc:
3a:cb:b1:35:59:a4:61:08:f3:d9:c3:c4:93:a4:37:09:cc:c3:
f8:63:5e:b5:44:4e:1e:64:33:19:29:e7:cf:88:73:32:f8:14:
c9:a0:9a:90:48:b7:ee:62:41:d3:9f:ba:04:af:d3:35:24:2f:
08:89:8f:cf:c9:fd:e5:26:b6:75:55:58:cd:de:04:f2:c7:4e:
75:46:4e:8c:be:4d:69:cc:ff:de:a1:1b:20:02:26:b5:a5:85:
1e:9d:a7:22:62:5f:93:c6:56:ab:85:6d:3e:a2:e8:e1:a6:47:
db:79:ae:e1:87:d9:73:4c:21:ec:1c:ba:7b:3c:b3:13:75:bd:
6c:0b:6e:88:26:65:e3:3c:d2:db:ac:48:88:da:44:de:ee:74:
8e:5f:0f:5f:3e:87:f2:97:48:4c:e0:9a:b5:e2:62:23:25:16:
ef:46:09:9f
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUc5WnHBY/jyWEpZgEbYREFM5rByIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MzBaFw0yMzA5MjUxMDAwMzBaMDMxMTAvBgNV
BAMTKEE2MkFDNEJBN0RCNzVFQzA0QjVFNUY4MzAyNDc0Q0YyMDJCMDlCRjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0Ytev5138jEuSWGCpZGNWSkmK
oPUXnJ5qX7GqHeV6Iao790qKa2LxtCWvPWSp8T1o0mihV4KJ0KSlO8qJyV1QGFbG
n78L2OU44Z/5jH4ayFNtPB1IchzkC44tqXv2yKu8YX3LO0BKmaf49kyU9198oHQJ
uwjQOAaF0af4VtxcykgzPojbv2YnI2eryjq+U5+EfL31SJNdFMcDqkDHxN/bKQ+j
Sjqzi1FeuXIHxaw8RoJmthfdPuX7qP3YZznGNN2z8Sa5FBPFT5FkHRXVFdcA0q8Y
9F6iHY9PijOTEWZ250q7b9dkTurLavVzoN5PNYy7y0gWf8zWcMPaKcRnUvH7AgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUpirEun23XsBLXl+DAkdM8gKwm/cwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzMjM1M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
JTANBgkqhkiG9w0BAQsFAAOCAQEAM1daf5HjPuS9RXgUVNzSugDv7/am9Ap2CKWL
BvB/iy4BwhgcnE/YvRFEexJWtEVz5I+D7q+qhjK2oUI2v9e322sIfwFipHNKMULd
UY92fEO09/YJJQcJJ2/cOsuxNVmkYQjz2cPEk6Q3CczD+GNetUROHmQzGSnnz4hz
MvgUyaCakEi37mJB05+6BK/TNSQvCImPz8n95Sa2dVVYzd4E8sdOdUZOjL5Nacz/
3qEbIAImtaWFHp2nImJfk8ZWq4VtPqLo4aZH23mu4YfZc0wh7By6ezyzE3W9bAtu
iCZl4zzS26xIiNpE3u50jl8PXz6H8pdITOCateJiIyUW70YJnw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org