Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3333633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: dI8r6JtRrl64NCx4g4l4RIuZVG7H7v97nSwej27kKKs=
Subject key identifier: C1:0E:4C:8D:A9:D7:BC:8C:B5:22:C3:C0:DE:85:AB:21:82:D3:4D:DB
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 436AEB99706476F066B2F966BE99878210D99DA9
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:31 +0000
ROA not before: Mon 26 Sep 2022 09:55:31 +0000
ROA not after: Mon 25 Sep 2023 10:00:31 +0000
asID: 59282
IP address blocks: 2400:d680:33c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:6a:eb:99:70:64:76:f0:66:b2:f9:66:be:99:87:82:10:d9:9d:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:31 2022 GMT
Not After : Sep 25 10:00:31 2023 GMT
Subject: CN=C10E4C8DA9D7BC8CB522C3C0DE85AB2182D34DDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:34:eb:0d:98:6d:cf:27:e5:7d:82:e0:f9:f3:
b2:01:87:84:74:80:5d:0c:52:6d:e8:30:6b:cf:bb:
d4:a2:bc:74:39:ea:26:54:0e:87:a2:1d:0b:2b:88:
a7:e9:36:06:b7:3d:7d:4f:3e:33:6c:2b:8c:ff:bf:
a1:97:84:55:2b:45:39:b9:34:c3:34:67:a3:71:60:
9b:2e:cf:a0:ba:ae:59:46:78:4d:ce:e3:82:49:56:
5e:dd:86:6f:79:e1:a4:7e:27:12:e1:f3:d2:fb:94:
b7:b2:d5:67:e5:51:0c:02:92:75:92:4c:38:f0:b0:
e2:eb:99:4b:fb:d2:66:08:65:89:4d:40:68:11:97:
ff:49:91:d6:92:b4:4e:01:91:63:8b:a5:d9:b3:36:
a4:f8:f6:86:1b:38:f6:b9:8d:8b:85:b9:b6:76:bf:
ce:57:58:18:f7:7c:cd:6f:98:16:6a:7e:1f:45:5d:
bf:cc:1c:ff:a4:1b:e9:91:2c:5a:16:c9:68:0c:c6:
11:2a:69:be:6a:8a:f0:c0:d0:26:4a:c6:1a:2a:06:
ba:2c:48:45:f0:b8:d6:ed:99:df:12:90:16:8f:f3:
10:40:01:c0:e8:9d:ea:de:fa:86:e1:49:40:a7:a5:
f6:bc:43:7b:84:e8:80:8e:03:7e:93:d4:fb:60:9a:
4f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:0E:4C:8D:A9:D7:BC:8C:B5:22:C3:C0:DE:85:AB:21:82:D3:4D:DB
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:33c::/48
Signature Algorithm: sha256WithRSAEncryption
b7:e4:61:c9:63:c6:db:b6:92:c7:c5:13:d1:4b:ea:b7:5b:81:
26:e7:69:de:59:81:1f:b9:ae:6b:bb:5f:51:fc:df:c3:88:e6:
af:d4:d3:6d:dd:85:bb:eb:fe:51:92:ce:be:3b:2c:e8:4c:33:
20:d3:03:f1:a9:11:ae:03:d3:7f:4b:c2:18:a9:6c:cd:2b:00:
c1:5c:3e:63:2f:f6:74:8e:29:61:b7:14:d4:69:97:19:0b:cb:
a0:d6:16:1e:1a:c8:67:de:4f:71:0e:8a:5f:86:2e:e6:13:67:
22:54:29:75:d4:b3:b4:e6:20:9c:8d:8a:fa:99:8c:e7:26:c3:
ec:ab:9d:f8:9d:ae:c1:2f:b2:af:13:9b:27:5a:8e:ae:da:8e:
8a:b4:d0:6e:09:39:b9:3b:67:8c:fa:28:28:11:b3:9a:9c:da:
e4:1a:84:65:c9:be:da:56:1a:17:c0:a5:69:ec:1a:a5:5d:d4:
3f:c4:a0:b1:63:9a:60:2e:1c:98:1d:ff:55:01:1e:d9:0c:35:
fa:27:cb:8d:0b:0b:c5:fc:df:b5:35:11:44:98:d0:fa:b6:d7:
2d:12:b7:e4:50:b8:74:b0:93:a8:32:cd:22:af:cf:2b:90:1d:
39:f1:fc:00:22:65:ad:93:1a:f3:2e:4f:11:bd:42:98:07:2f:
54:cf:4e:b7
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUQ2rrmXBkdvBmsvlmvpmHghDZnakwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MzFaFw0yMzA5MjUxMDAwMzFaMDMxMTAvBgNV
BAMTKEMxMEU0QzhEQTlEN0JDOENCNTIyQzNDMERFODVBQjIxODJEMzREREIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCSNOsNmG3PJ+V9guD587IBh4R0
gF0MUm3oMGvPu9SivHQ56iZUDoeiHQsriKfpNga3PX1PPjNsK4z/v6GXhFUrRTm5
NMM0Z6NxYJsuz6C6rllGeE3O44JJVl7dhm954aR+JxLh89L7lLey1WflUQwCknWS
TDjwsOLrmUv70mYIZYlNQGgRl/9JkdaStE4BkWOLpdmzNqT49oYbOPa5jYuFubZ2
v85XWBj3fM1vmBZqfh9FXb/MHP+kG+mRLFoWyWgMxhEqab5qivDA0CZKxhoqBros
SEXwuNbtmd8SkBaP8xBAAcDonere+obhSUCnpfa8Q3uE6ICOA36T1Ptgmk8HAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUwQ5MjanXvIy1IsPA3oWrIYLTTdswHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzMzYzM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
PDANBgkqhkiG9w0BAQsFAAOCAQEAt+RhyWPG27aSx8UT0Uvqt1uBJudp3lmBH7mu
a7tfUfzfw4jmr9TTbd2Fu+v+UZLOvjss6EwzINMD8akRrgPTf0vCGKlszSsAwVw+
Yy/2dI4pYbcU1GmXGQvLoNYWHhrIZ95PcQ6KX4Yu5hNnIlQpddSztOYgnI2K+pmM
5ybD7Kud+J2uwS+yrxObJ1qOrtqOirTQbgk5uTtnjPooKBGzmpza5BqEZcm+2lYa
F8ClaewapV3UP8SgsWOaYC4cmB3/VQEe2Qw1+ifLjQsLxfzftTURRJjQ+rbXLRK3
5FC4dLCTqDLNIq/PK5AdOfH8ACJlrZMa8y5PEb1CmAcvVM9Otw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org