Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333653a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3333653a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 7PCc5bhHc7lDlf06IKY0qyV4Ar4c+T+1ilOBj02I8bI=
Subject key identifier: 70:EC:E0:76:4F:2B:2D:85:8F:5A:10:B8:F8:46:E3:9E:4C:A4:D4:D7
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6D4586506EE2C7ECB230C6C300816FAD3689ECD5
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333653a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 10:00:09 +0000
ROA not before: Mon 26 Sep 2022 09:55:09 +0000
ROA not after: Mon 25 Sep 2023 10:00:09 +0000
asID: 59282
IP address blocks: 2400:d680:33e::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:45:86:50:6e:e2:c7:ec:b2:30:c6:c3:00:81:6f:ad:36:89:ec:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 09:55:09 2022 GMT
Not After : Sep 25 10:00:09 2023 GMT
Subject: CN=70ECE0764F2B2D858F5A10B8F846E39E4CA4D4D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:79:a0:f7:65:91:dd:23:54:28:d8:f0:a3:0e:
19:5b:64:68:e9:25:d0:a6:f3:3e:7f:90:d6:b5:ca:
8b:a1:5c:8b:d4:3c:12:41:04:9c:e6:07:d4:4b:97:
dc:35:00:0c:42:25:25:f9:e5:9d:b8:0b:5b:e3:00:
81:97:aa:de:68:4c:6e:18:d4:7a:10:58:23:34:8f:
2a:f2:b7:58:23:9d:bd:ab:76:91:cd:ea:f8:e7:26:
7d:90:68:a8:69:6b:d0:42:b8:ea:77:83:cb:e2:03:
c8:b7:18:eb:60:71:43:a2:b8:a4:89:a7:be:73:c6:
bf:70:ef:31:dd:cf:b4:bb:47:67:5d:b0:73:1f:a4:
27:5b:cf:de:af:e4:4e:a2:58:65:d2:0e:f9:d3:5e:
9b:48:de:24:89:ca:5f:2d:66:92:93:82:96:f0:26:
14:f6:51:6e:ac:5b:08:d9:ba:17:cc:d8:7e:6e:3a:
5d:91:12:2b:75:13:cc:86:03:48:3a:50:75:f8:9f:
7a:83:ae:1b:4d:cf:49:c4:1c:1a:d5:3b:7f:4b:32:
fa:8a:e7:62:bb:92:95:2f:d5:87:1d:bc:d3:2c:ac:
65:ba:1b:0c:a8:de:6f:5d:2d:c3:04:72:c8:25:2c:
10:2d:10:33:bc:63:ce:17:dc:f9:d3:8c:2c:35:9d:
20:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:EC:E0:76:4F:2B:2D:85:8F:5A:10:B8:F8:46:E3:9E:4C:A4:D4:D7
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3333653a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:33e::/48
Signature Algorithm: sha256WithRSAEncryption
63:2e:f1:66:46:0f:b9:d7:f9:b6:d5:76:4f:8c:07:9b:54:2b:
78:1b:23:71:d5:a3:a4:3a:ac:42:44:ae:c1:88:c8:72:cd:95:
ed:83:29:82:8a:75:04:3a:c7:49:d4:4a:55:81:b5:09:15:f7:
53:d9:72:fb:df:16:ff:d6:b1:d7:31:57:f5:2f:f0:3a:95:a8:
3f:d8:7b:cf:4e:f4:70:80:95:c1:fa:44:ce:e3:f4:7d:b2:b6:
be:09:6a:e2:12:90:87:19:10:a6:cf:3c:0b:f0:e1:23:02:66:
cf:38:e3:6b:8c:2b:3f:bc:8e:26:f1:c1:ab:ad:04:a4:ed:12:
f5:fe:0d:3a:39:c2:98:29:ec:5c:be:f2:80:f0:a0:55:f1:54:
79:0c:c6:ab:a6:0c:9b:55:a0:78:1a:a5:08:b5:e8:9d:f2:61:
4e:89:16:61:5d:6e:10:73:b9:b8:57:5a:a4:3c:f1:7b:88:ca:
7c:e1:a7:1f:ac:f6:b0:12:1f:c1:8d:cf:54:c5:21:10:79:95:
28:25:81:9a:58:d6:44:4a:4b:0e:47:2f:64:ef:5f:19:6a:a9:
15:16:68:f4:98:b9:01:56:5c:19:b0:a7:dd:d8:b2:ca:28:80:
d6:a1:33:60:65:2c:95:d1:4b:0f:7b:6b:f7:6d:96:90:02:ac:
f0:c1:6a:dc
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUbUWGUG7ix+yyMMbDAIFvrTaJ7NUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwOTU1MDlaFw0yMzA5MjUxMDAwMDlaMDMxMTAvBgNV
BAMTKDcwRUNFMDc2NEYyQjJEODU4RjVBMTBCOEY4NDZFMzlFNENBNEQ0RDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDeaD3ZZHdI1Qo2PCjDhlbZGjp
JdCm8z5/kNa1youhXIvUPBJBBJzmB9RLl9w1AAxCJSX55Z24C1vjAIGXqt5oTG4Y
1HoQWCM0jyryt1gjnb2rdpHN6vjnJn2QaKhpa9BCuOp3g8viA8i3GOtgcUOiuKSJ
p75zxr9w7zHdz7S7R2ddsHMfpCdbz96v5E6iWGXSDvnTXptI3iSJyl8tZpKTgpbw
JhT2UW6sWwjZuhfM2H5uOl2REit1E8yGA0g6UHX4n3qDrhtNz0nEHBrVO39LMvqK
52K7kpUv1YcdvNMsrGW6Gwyo3m9dLcMEcsglLBAtEDO8Y84X3PnTjCw1nSABAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUcOzgdk8rLYWPWhC4+Ebjnkyk1NcwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzMzY1M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
PjANBgkqhkiG9w0BAQsFAAOCAQEAYy7xZkYPudf5ttV2T4wHm1QreBsjcdWjpDqs
QkSuwYjIcs2V7YMpgop1BDrHSdRKVYG1CRX3U9ly+98W/9ax1zFX9S/wOpWoP9h7
z070cICVwfpEzuP0fbK2vglq4hKQhxkQps88C/DhIwJmzzjja4wrP7yOJvHBq60E
pO0S9f4NOjnCmCnsXL7ygPCgVfFUeQzGq6YMm1WgeBqlCLXonfJhTokWYV1uEHO5
uFdapDzxe4jKfOGnH6z2sBIfwY3PVMUhEHmVKCWBmljWREpLDkcvZO9fGWqpFRZo
9Ji5AVZcGbCn3diyyiiA1qEzYGUsldFLD3tr922WkAKs8MFq3A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org