Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3334313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: bzYK9b2/SlKT/01Zm6ZVKDu2zOv4eBjHA9kTH8KtR04=
Subject key identifier: 7D:E2:78:2A:82:7F:BD:7B:6F:C8:51:BF:06:02:31:E7:22:41:CF:5D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 242A90988F6954D599A49D65E0C69DFFD463067F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:31 +0000
ROA not before: Mon 26 Sep 2022 10:55:31 +0000
ROA not after: Mon 25 Sep 2023 11:00:31 +0000
asID: 59282
IP address blocks: 2400:d680:341::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:2a:90:98:8f:69:54:d5:99:a4:9d:65:e0:c6:9d:ff:d4:63:06:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:31 2022 GMT
Not After : Sep 25 11:00:31 2023 GMT
Subject: CN=7DE2782A827FBD7B6FC851BF060231E72241CF5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1e:0d:22:a4:b9:a8:d5:73:85:60:e1:e8:cf:
4b:1e:38:ab:2f:e8:37:67:a5:53:b3:21:d8:94:72:
e2:20:8f:50:80:d8:8f:c8:fb:a5:1f:b8:da:48:ff:
db:b4:b5:b2:9d:99:47:c6:47:11:53:2e:54:6f:f4:
37:11:c5:f9:f0:b0:5d:19:63:85:5b:d1:6e:2c:8a:
2e:80:42:28:1d:3a:e1:83:5e:88:28:94:73:7b:fc:
9a:cc:75:21:13:16:39:95:a6:4f:10:c3:71:28:40:
bb:69:73:10:5e:e4:c1:60:bc:e7:90:e8:93:b5:f6:
0b:5f:0e:8b:85:94:6b:98:1c:a5:86:be:d6:07:54:
41:2c:84:bd:83:9e:e6:fb:14:c2:45:b2:50:3b:f0:
c4:58:2a:68:a1:4e:dd:1e:aa:f8:a4:f3:9e:a1:0e:
b5:bb:1f:46:51:af:11:d6:ac:a4:37:cc:a7:d1:26:
d3:83:0b:3b:42:97:db:3c:22:c5:ba:52:ca:2a:36:
1a:4c:ef:06:41:97:52:47:0e:40:95:e4:c9:bf:96:
ce:70:0f:ce:00:2b:bc:7d:ff:bc:50:5f:59:8d:79:
75:f3:6b:3e:ed:0c:4b:4e:ae:19:0b:9c:3b:c4:20:
f2:83:69:a0:de:4a:8f:18:ad:cd:74:fa:ed:19:14:
38:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E2:78:2A:82:7F:BD:7B:6F:C8:51:BF:06:02:31:E7:22:41:CF:5D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:341::/48
Signature Algorithm: sha256WithRSAEncryption
1e:8e:d7:3c:07:c8:bc:18:b6:dc:51:c5:ba:e4:57:1e:fe:3a:
50:1d:82:42:9b:0c:f3:cf:a2:7d:1b:43:55:31:fb:85:62:0e:
70:d2:80:87:28:c4:22:26:cc:c4:17:76:05:8b:be:9f:d2:7a:
d1:0d:65:3a:6d:f6:35:2f:a3:91:b5:bd:e5:2c:45:eb:ec:31:
61:24:d5:88:48:49:66:29:4f:32:ee:ba:74:2f:74:df:70:62:
59:fc:2a:bf:c2:6c:40:d8:d9:aa:5b:28:73:74:55:2a:44:ad:
18:c1:37:44:0c:3f:4a:b8:4e:e3:19:e3:b7:d7:41:30:93:c6:
1e:1b:32:a1:78:07:79:df:fe:fb:3c:93:1d:8e:f2:eb:f5:96:
d5:cc:df:e6:59:78:20:b3:91:94:d5:d9:ae:58:23:f9:b7:eb:
33:6f:1e:a3:ab:40:f5:75:4d:8c:2d:29:5f:36:69:22:5b:e6:
b2:9a:32:eb:12:8b:93:dc:98:fc:ca:ce:3a:db:d9:01:3a:8d:
86:8b:00:8f:f5:bc:2b:cf:2d:b0:fa:e2:1f:d2:d4:8f:35:3f:
4e:bd:68:96:fd:35:19:78:61:c0:32:c3:e9:57:b7:c3:62:71:
cd:3d:e8:91:c8:99:1c:38:41:d1:ab:6b:20:a8:c7:9e:d5:29:
80:5c:d5:c6
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUJCqQmI9pVNWZpJ1l4Mad/9RjBn8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MzFaFw0yMzA5MjUxMTAwMzFaMDMxMTAvBgNV
BAMTKDdERTI3ODJBODI3RkJEN0I2RkM4NTFCRjA2MDIzMUU3MjI0MUNGNUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBHg0ipLmo1XOFYOHoz0seOKsv
6DdnpVOzIdiUcuIgj1CA2I/I+6UfuNpI/9u0tbKdmUfGRxFTLlRv9DcRxfnwsF0Z
Y4Vb0W4sii6AQigdOuGDXogolHN7/JrMdSETFjmVpk8Qw3EoQLtpcxBe5MFgvOeQ
6JO19gtfDouFlGuYHKWGvtYHVEEshL2Dnub7FMJFslA78MRYKmihTt0eqvik856h
DrW7H0ZRrxHWrKQ3zKfRJtODCztCl9s8IsW6UsoqNhpM7wZBl1JHDkCV5Mm/ls5w
D84AK7x9/7xQX1mNeXXzaz7tDEtOrhkLnDvEIPKDaaDeSo8Yrc10+u0ZFDhjAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUfeJ4KoJ/vXtvyFG/BgIx5yJBz10wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzNDMxM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
QTANBgkqhkiG9w0BAQsFAAOCAQEAHo7XPAfIvBi23FHFuuRXHv46UB2CQpsM88+i
fRtDVTH7hWIOcNKAhyjEIibMxBd2BYu+n9J60Q1lOm32NS+jkbW95SxF6+wxYSTV
iEhJZilPMu66dC9033BiWfwqv8JsQNjZqlsoc3RVKkStGME3RAw/SrhO4xnjt9dB
MJPGHhsyoXgHed/++zyTHY7y6/WW1czf5ll4ILORlNXZrlgj+bfrM28eo6tA9XVN
jC0pXzZpIlvmspoy6xKLk9yY/MrOOtvZATqNhosAj/W8K88tsPriH9LUjzU/Tr1o
lv01GXhhwDLD6Ve3w2JxzT3okciZHDhB0atrIKjHntUpgFzVxg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org