Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a33373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: dwVtw+Xq0qyFq/ikCoCVE7qoSe+FFIJlhwuIYVXjLkg=
Subject key identifier: 70:0E:EA:E9:24:28:B0:61:A1:5C:CC:D3:FE:91:97:1D:31:0E:5A:AA
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 15DA15921683055A529A6D3979B562D857C20B86
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:50 +0000
ROA not before: Mon 26 Sep 2022 07:56:50 +0000
ROA not after: Mon 25 Sep 2023 08:01:50 +0000
asID: 59282
IP address blocks: 2400:d680:37::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:da:15:92:16:83:05:5a:52:9a:6d:39:79:b5:62:d8:57:c2:0b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:50 2022 GMT
Not After : Sep 25 08:01:50 2023 GMT
Subject: CN=700EEAE92428B061A15CCCD3FE91971D310E5AAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:4e:3b:8c:43:67:b1:e8:f6:b6:3f:3b:c9:9d:
4c:78:ea:ed:6a:75:d0:19:77:eb:a1:78:67:21:97:
79:e1:47:f7:3e:27:86:c2:96:69:26:20:9e:a8:1c:
a4:12:e2:a4:1f:97:d2:ea:7e:f9:7a:56:0f:f7:ac:
e1:55:11:2a:63:04:32:3f:97:eb:b8:d3:f0:85:13:
ef:c4:ab:20:09:cc:83:89:91:b3:a9:1b:41:21:f1:
b4:58:ec:5d:f9:51:4f:75:b3:24:3a:b6:d2:d7:4c:
1d:4b:d3:f0:c3:2e:7d:57:77:49:c1:d8:a9:50:17:
77:d8:5b:55:45:79:f5:49:9e:88:00:3e:6e:96:89:
f9:49:dd:d5:a8:fe:2d:4c:bf:48:c9:32:f7:72:cb:
18:d9:63:52:3b:38:0a:57:f6:21:1e:78:c1:94:92:
74:0c:9a:09:be:ee:52:68:8e:36:9b:4b:ad:f0:89:
b2:b5:65:a2:92:7f:36:55:8a:87:14:65:16:3d:8c:
de:74:fd:50:cf:18:9c:e5:34:89:06:40:54:6e:db:
be:ae:1f:58:26:61:5b:61:02:2b:15:24:2d:11:a3:
4f:a5:40:bd:0c:0d:a2:7f:9a:d1:79:2f:4f:25:83:
46:fe:d3:76:5e:c6:2d:4c:0a:c7:45:fe:1e:24:89:
3e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:0E:EA:E9:24:28:B0:61:A1:5C:CC:D3:FE:91:97:1D:31:0E:5A:AA
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a33373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:37::/48
Signature Algorithm: sha256WithRSAEncryption
91:ee:a5:9b:16:f3:4c:c8:4b:7f:83:ca:47:d1:97:d0:9c:41:
d5:29:da:3d:3f:c2:60:a9:72:6c:79:20:f9:68:e6:0b:31:56:
f7:b4:29:e6:06:67:b2:c7:9d:15:d5:15:1d:48:3d:f5:53:28:
ad:48:1a:4e:7f:00:76:76:e3:1b:17:6c:aa:36:8f:49:b5:e3:
13:e2:d0:e1:19:c1:80:46:b7:9a:23:f7:65:e7:48:53:f7:e2:
10:d2:ea:b4:84:81:08:01:b9:39:9d:81:31:60:85:52:36:77:
bd:73:e7:4f:88:a7:f4:96:5e:04:e0:f2:8f:b3:09:e4:5d:9b:
9e:81:fc:e1:09:a4:95:ad:c6:1d:a3:f0:d9:ed:09:6b:12:c0:
df:01:e4:41:d2:d9:3c:f5:4d:2b:0d:53:b4:fa:84:7c:d3:1a:
41:d0:17:aa:94:40:9b:32:88:a7:6e:9e:22:9c:68:cc:50:08:
ea:ec:20:4c:a6:9c:38:db:fc:d7:9b:af:26:ed:66:96:e5:6b:
f8:a6:8b:b4:51:7a:78:ed:da:55:d1:ea:72:2f:67:a5:55:3d:
64:80:59:ae:ac:e6:df:83:aa:2d:4b:0f:07:e0:dc:02:24:7a:
24:3b:11:2c:01:8c:73:99:7d:b9:a0:fb:ce:78:47:c8:ab:1e:
29:68:db:30
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUFdoVkhaDBVpSmm05ebVi2FfCC4YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2NTBaFw0yMzA5MjUwODAxNTBaMDMxMTAvBgNV
BAMTKDcwMEVFQUU5MjQyOEIwNjFBMTVDQ0NEM0ZFOTE5NzFEMzEwRTVBQUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzTjuMQ2ex6Pa2PzvJnUx46u1q
ddAZd+uheGchl3nhR/c+J4bClmkmIJ6oHKQS4qQfl9Lqfvl6Vg/3rOFVESpjBDI/
l+u40/CFE+/EqyAJzIOJkbOpG0Eh8bRY7F35UU91syQ6ttLXTB1L0/DDLn1Xd0nB
2KlQF3fYW1VFefVJnogAPm6WiflJ3dWo/i1Mv0jJMvdyyxjZY1I7OApX9iEeeMGU
knQMmgm+7lJojjabS63wibK1ZaKSfzZViocUZRY9jN50/VDPGJzlNIkGQFRu276u
H1gmYVthAisVJC0Ro0+lQL0MDaJ/mtF5L08lg0b+03Zexi1MCsdF/h4kiT45AgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUcA7q6SQosGGhXMzT/pGXHTEOWqowHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzNzNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAADcw
DQYJKoZIhvcNAQELBQADggEBAJHupZsW80zIS3+DykfRl9CcQdUp2j0/wmCpcmx5
IPlo5gsxVve0KeYGZ7LHnRXVFR1IPfVTKK1IGk5/AHZ24xsXbKo2j0m14xPi0OEZ
wYBGt5oj92XnSFP34hDS6rSEgQgBuTmdgTFghVI2d71z50+Ip/SWXgTg8o+zCeRd
m56B/OEJpJWtxh2j8NntCWsSwN8B5EHS2Tz1TSsNU7T6hHzTGkHQF6qUQJsyiKdu
niKcaMxQCOrsIEymnDjb/NebrybtZpbla/imi7RRenjt2lXR6nIvZ6VVPWSAWa6s
5t+Dqi1LDwfg3AIkeiQ7ESwBjHOZfbmg+854R8irHilo2zA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org