Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334393a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3334393a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: La+RGTCQzJZq5HMQPLDP+FKexvgSKrHhRhiRjA4b9jY=
Subject key identifier: 97:5A:B3:C7:9B:40:7F:78:D1:FA:D9:1E:41:F4:AA:06:D7:06:7F:FD
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 20238E707B58E5FDA68AB0A9B221FB6D1340D491
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334393a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:27 +0000
ROA not before: Mon 26 Sep 2022 10:55:27 +0000
ROA not after: Mon 25 Sep 2023 11:00:27 +0000
asID: 59282
IP address blocks: 2400:d680:349::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:23:8e:70:7b:58:e5:fd:a6:8a:b0:a9:b2:21:fb:6d:13:40:d4:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:27 2022 GMT
Not After : Sep 25 11:00:27 2023 GMT
Subject: CN=975AB3C79B407F78D1FAD91E41F4AA06D7067FFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b4:c4:18:97:3f:e2:c8:cb:d3:fb:ea:1b:47:
7a:49:2d:fb:d0:f4:d3:31:b2:4f:2c:2b:1a:3b:7b:
ed:8c:00:19:f8:dc:ad:d7:30:9d:64:e5:a0:43:19:
5a:b1:2b:65:d5:12:80:08:c8:bd:08:47:af:0d:78:
3d:c5:8e:05:e5:54:f9:2c:4c:cf:73:66:37:18:99:
f2:8d:de:0c:0f:4e:c4:25:f2:f5:68:6e:24:b6:8e:
50:b9:33:9d:72:06:66:d1:1b:9b:d3:48:13:29:83:
72:31:ef:66:f6:3c:68:65:af:69:20:93:94:55:4e:
0c:9f:92:51:cc:5b:04:e3:98:f1:c2:45:47:9b:72:
5c:25:8b:51:39:da:81:58:18:6b:22:6e:dc:d6:be:
f3:14:13:fc:67:a3:b7:e3:72:e4:f7:5a:ae:2c:4b:
25:d7:cc:88:8f:bb:00:79:91:af:fa:8e:f9:2e:4d:
24:d7:23:7b:28:bd:5e:5c:71:91:cb:8f:8d:21:a1:
df:3a:fa:be:c6:c5:55:d7:9e:44:28:f4:46:22:a1:
43:c6:a8:07:7f:0f:41:10:d0:e9:3a:2b:7a:36:de:
17:74:59:c6:84:fb:82:07:6c:7c:ad:aa:d8:3b:24:
74:ac:ec:15:58:d2:5b:da:be:d0:ff:19:c6:29:f8:
b8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:5A:B3:C7:9B:40:7F:78:D1:FA:D9:1E:41:F4:AA:06:D7:06:7F:FD
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3334393a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:349::/48
Signature Algorithm: sha256WithRSAEncryption
4c:89:f2:68:2d:59:41:56:57:47:87:30:33:d0:73:44:c9:18:
ff:8c:ef:00:82:96:36:88:51:bf:f3:29:51:03:67:85:a7:6f:
91:96:de:01:e5:93:e1:57:d2:19:a0:b0:79:55:91:3b:c0:a6:
15:8e:20:24:7a:b8:ab:7c:66:d7:34:db:3c:78:bb:d6:6f:b8:
12:0e:b2:18:df:81:1b:45:9a:fb:73:24:f9:54:56:2a:4e:80:
6c:80:48:63:00:91:e9:a3:32:7d:2b:9d:0f:24:d3:71:db:7f:
2e:75:77:72:bf:48:1b:4b:ea:cd:8e:fb:34:e8:99:d8:70:51:
52:b6:79:66:4e:8a:d6:92:a0:d6:68:f0:52:14:76:a2:27:7c:
25:5c:54:a8:10:96:1c:1f:02:e3:4a:ea:2a:16:31:ae:9d:3a:
4a:54:e6:38:d5:d3:90:89:b0:2b:86:d5:0c:a0:3f:3f:7a:20:
23:75:6f:72:43:d6:db:5c:9a:b0:1b:2f:06:cf:82:55:c6:e4:
05:13:68:4c:01:cb:7c:84:b0:21:7a:df:02:2f:a3:50:09:15:
49:9c:f8:0e:1c:f6:6b:d9:be:f8:ec:cc:a7:a9:d9:36:75:86:
f0:71:9b:af:b9:cf:3d:c2:2c:c5:6d:a7:6a:f4:5f:86:1c:ec:
36:75:35:87
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUICOOcHtY5f2mirCpsiH7bRNA1JEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MjdaFw0yMzA5MjUxMTAwMjdaMDMxMTAvBgNV
BAMTKDk3NUFCM0M3OUI0MDdGNzhEMUZBRDkxRTQxRjRBQTA2RDcwNjdGRkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKtMQYlz/iyMvT++obR3pJLfvQ
9NMxsk8sKxo7e+2MABn43K3XMJ1k5aBDGVqxK2XVEoAIyL0IR68NeD3FjgXlVPks
TM9zZjcYmfKN3gwPTsQl8vVobiS2jlC5M51yBmbRG5vTSBMpg3Ix72b2PGhlr2kg
k5RVTgyfklHMWwTjmPHCRUebclwli1E52oFYGGsibtzWvvMUE/xno7fjcuT3Wq4s
SyXXzIiPuwB5ka/6jvkuTSTXI3sovV5ccZHLj40hod86+r7GxVXXnkQo9EYioUPG
qAd/D0EQ0Ok6K3o23hd0WcaE+4IHbHytqtg7JHSs7BVY0lvavtD/GcYp+LhfAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUl1qzx5tAf3jR+tkeQfSqBtcGf/0wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzNDM5M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
STANBgkqhkiG9w0BAQsFAAOCAQEATInyaC1ZQVZXR4cwM9BzRMkY/4zvAIKWNohR
v/MpUQNnhadvkZbeAeWT4VfSGaCweVWRO8CmFY4gJHq4q3xm1zTbPHi71m+4Eg6y
GN+BG0Wa+3Mk+VRWKk6AbIBIYwCR6aMyfSudDyTTcdt/LnV3cr9IG0vqzY77NOiZ
2HBRUrZ5Zk6K1pKg1mjwUhR2oid8JVxUqBCWHB8C40rqKhYxrp06SlTmONXTkImw
K4bVDKA/P3ogI3VvckPW21yasBsvBs+CVcbkBRNoTAHLfISwIXrfAi+jUAkVSZz4
Dhz2a9m++OzMp6nZNnWG8HGbr7nPPcIsxW2navRfhhzsNnU1hw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org