Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3332663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 2rVGnSSZN6TpMwZPo8ZrGaz5bogOIHsKwpXdewJl6yU=
Subject key identifier: 19:88:AE:59:4C:2D:6C:6F:69:20:6E:CC:58:9F:90:DF:47:89:43:54
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 74C20824C7FF2117B1CB92A2CD63162872E37B38
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:20 +0000
ROA not before: Mon 26 Sep 2022 09:55:20 +0000
ROA not after: Mon 25 Sep 2023 10:00:20 +0000
asID: 59282
IP address blocks: 2400:d680:32f::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:c2:08:24:c7:ff:21:17:b1:cb:92:a2:cd:63:16:28:72:e3:7b:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:20 2022 GMT
Not After : Sep 25 10:00:20 2023 GMT
Subject: CN=1988AE594C2D6C6F69206ECC589F90DF47894354
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:9d:58:e6:99:52:60:ca:9a:3d:e8:3c:a1:0d:
71:c2:37:8a:81:a1:bd:66:65:b7:40:de:5c:d4:62:
e9:f4:c6:f8:18:e8:70:4b:19:95:a2:8e:17:5d:62:
e7:b7:fd:92:ca:8b:69:0c:6c:2f:45:72:05:c9:91:
4d:b0:04:56:94:31:80:c9:d9:95:d7:8f:2e:ff:70:
43:bb:0d:62:36:dc:4d:d6:c7:11:f5:5b:fd:94:bf:
16:b6:cb:33:c5:9c:01:0b:77:52:9f:28:03:b6:19:
2b:ab:77:77:63:93:f8:98:49:6a:1f:30:a5:d2:33:
ac:94:e1:9e:a3:68:6d:cd:5d:63:29:c8:27:79:b5:
c8:87:16:7a:99:91:4f:57:e2:93:d6:06:03:3b:80:
b7:ed:86:16:f0:24:12:1e:4e:24:28:ad:0a:b1:e2:
bb:b0:e7:b7:c1:0e:f3:ef:87:fe:22:41:98:a3:6e:
88:26:2c:d8:18:b3:92:48:7a:d3:e3:dc:68:48:05:
e1:12:e1:5d:34:54:03:31:35:c3:0e:89:29:5c:9a:
1f:0b:38:8d:f6:cc:f1:2a:b7:8b:3f:fc:f1:8b:61:
e9:04:f1:c6:30:a6:c6:a1:ee:2e:0b:04:c7:5a:0b:
04:9f:d4:df:69:8d:a5:63:33:d7:3e:ca:be:f0:aa:
13:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:88:AE:59:4C:2D:6C:6F:69:20:6E:CC:58:9F:90:DF:47:89:43:54
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3332663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:32f::/48
Signature Algorithm: sha256WithRSAEncryption
60:f1:9d:0b:c8:79:24:6b:43:01:f9:56:ae:ad:74:9a:f9:c8:
68:ba:3e:b8:73:7e:4c:05:b6:2c:24:a6:7b:fb:31:14:f3:4c:
34:82:54:f3:84:6f:4d:44:91:1f:43:46:96:40:ec:56:bf:4e:
13:b5:55:76:35:f5:d7:c1:39:0d:58:b4:83:47:f9:60:28:42:
df:c0:c4:e1:ee:d4:f2:40:db:d0:54:6c:54:39:6f:bf:f0:94:
8b:25:ed:7e:7b:4b:c7:ea:35:61:5a:c2:99:bb:82:17:3b:bd:
3d:23:72:6a:74:68:37:20:12:89:ad:f9:47:2f:10:ff:f2:2b:
bc:03:5f:ff:b2:ee:c9:6c:ec:dc:a6:35:c6:34:e3:25:b3:7b:
9d:39:dc:d7:3e:63:4d:76:96:5c:ae:09:25:f5:eb:1f:cf:e4:
2c:aa:75:85:4a:63:3b:8b:0a:41:fd:5f:7a:82:30:e8:c3:a5:
20:80:e2:91:0a:e6:33:66:6c:27:70:4a:69:e1:08:ef:86:64:
d0:1a:e1:00:56:66:1e:41:80:e5:fa:93:68:35:fb:3e:e2:ea:
bd:34:1e:80:2c:0f:56:0f:78:12:aa:8d:70:dc:04:2b:18:7a:
a6:6c:99:10:2a:7f:3c:be:a6:00:e6:44:88:42:2b:7c:49:2b:
48:57:9a:f3
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUdMIIJMf/IRexy5KizWMWKHLjezgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MjBaFw0yMzA5MjUxMDAwMjBaMDMxMTAvBgNV
BAMTKDE5ODhBRTU5NEMyRDZDNkY2OTIwNkVDQzU4OUY5MERGNDc4OTQzNTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDpnVjmmVJgypo96DyhDXHCN4qB
ob1mZbdA3lzUYun0xvgY6HBLGZWijhddYue3/ZLKi2kMbC9FcgXJkU2wBFaUMYDJ
2ZXXjy7/cEO7DWI23E3WxxH1W/2Uvxa2yzPFnAELd1KfKAO2GSurd3djk/iYSWof
MKXSM6yU4Z6jaG3NXWMpyCd5tciHFnqZkU9X4pPWBgM7gLfthhbwJBIeTiQorQqx
4ruw57fBDvPvh/4iQZijbogmLNgYs5JIetPj3GhIBeES4V00VAMxNcMOiSlcmh8L
OI32zPEqt4s//PGLYekE8cYwpsah7i4LBMdaCwSf1N9pjaVjM9c+yr7wqhNLAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUGYiuWUwtbG9pIG7MWJ+Q30eJQ1QwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzMjY2M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
LzANBgkqhkiG9w0BAQsFAAOCAQEAYPGdC8h5JGtDAflWrq10mvnIaLo+uHN+TAW2
LCSme/sxFPNMNIJU84RvTUSRH0NGlkDsVr9OE7VVdjX118E5DVi0g0f5YChC38DE
4e7U8kDb0FRsVDlvv/CUiyXtfntLx+o1YVrCmbuCFzu9PSNyanRoNyASia35Ry8Q
//IrvANf/7LuyWzs3KY1xjTjJbN7nTnc1z5jTXaWXK4JJfXrH8/kLKp1hUpjO4sK
Qf1feoIw6MOlIIDikQrmM2ZsJ3BKaeEI74Zk0BrhAFZmHkGA5fqTaDX7PuLqvTQe
gCwPVg94EqqNcNwEKxh6pmyZECp/PL6mAOZEiEIrfEkrSFea8w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org