Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339343a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3339343a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: O4rCBV4f3Zw5PUSclGSMtmSoIWi3rBLVgx7KDGLxqmE=
Subject key identifier: D5:2F:D0:E8:5E:7D:12:6D:31:05:0D:67:77:DD:4D:23:40:8F:08:C5
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0500E9B98B998861EACE6CDFFA3EFEF8193D3320
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339343a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:37 +0000
ROA not before: Mon 26 Sep 2022 10:55:37 +0000
ROA not after: Mon 25 Sep 2023 11:00:37 +0000
asID: 59282
IP address blocks: 2400:d680:394::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:00:e9:b9:8b:99:88:61:ea:ce:6c:df:fa:3e:fe:f8:19:3d:33:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:37 2022 GMT
Not After : Sep 25 11:00:37 2023 GMT
Subject: CN=D52FD0E85E7D126D31050D6777DD4D23408F08C5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b9:0e:e0:1b:06:ac:ee:df:11:b6:16:b5:27:
09:fe:e5:f8:ec:a3:35:1a:9e:f7:e1:36:04:17:f8:
0e:04:63:15:c3:36:88:54:e5:8f:a8:a8:09:e0:a7:
0c:95:ce:d2:8f:3d:e6:dd:5e:da:47:9c:48:93:21:
d2:1c:8d:e4:ac:24:27:4f:94:6c:59:c8:8a:c3:5b:
fc:eb:d1:6b:4e:2a:6f:b7:55:42:bf:7a:87:75:cb:
87:d8:07:88:7a:19:77:e9:88:aa:1e:53:c4:d8:a6:
a9:62:c3:2a:7a:84:61:83:3b:b5:be:01:5f:74:ee:
c8:57:2e:e6:34:fb:2a:72:71:55:d6:6d:2d:fe:35:
80:94:bc:6e:2d:e8:d0:0b:e0:2d:ff:37:94:3f:0a:
76:f0:a1:8f:78:b1:7c:1b:59:fc:cb:fc:f7:24:2e:
19:6b:16:ac:23:bd:dd:9a:64:62:d4:97:18:21:ed:
cb:66:56:a7:2a:14:a1:30:91:62:fb:4e:9e:d2:c2:
2e:09:a8:c8:38:ab:08:3b:91:ec:bb:57:da:15:6a:
eb:94:f2:a7:72:bf:a4:65:20:b1:8d:bb:54:5d:ae:
c8:0e:1c:f8:ca:06:e3:6a:92:44:d1:84:01:c8:20:
55:d0:7e:bd:8a:e0:ca:26:5a:d5:5c:f5:71:c5:f7:
4a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:2F:D0:E8:5E:7D:12:6D:31:05:0D:67:77:DD:4D:23:40:8F:08:C5
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339343a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:394::/48
Signature Algorithm: sha256WithRSAEncryption
47:2c:05:7c:38:f8:0d:84:07:2d:86:86:1c:fb:a2:e7:ce:05:
bf:cc:e6:0e:02:98:1f:0c:8f:96:a5:39:d8:6a:ae:8b:dc:41:
4a:f2:8a:2f:43:75:e5:27:73:c6:20:93:d2:21:b1:69:bd:72:
a2:63:92:72:1a:36:f4:a1:b1:f2:60:6e:17:45:ee:ce:f0:42:
46:a7:6f:e4:d4:be:57:f1:23:e7:57:df:39:be:68:17:e4:76:
4c:5a:28:25:7f:f2:fb:ad:b2:00:29:d5:7c:80:c2:e8:bc:86:
a2:5e:e3:5a:d9:d2:6e:51:22:18:9b:5c:02:29:bf:75:4c:86:
79:3c:9c:cb:21:04:81:5a:13:a9:d0:13:8a:50:9a:35:32:62:
40:4c:86:10:e9:5e:51:65:bd:72:a3:d9:75:23:23:6e:27:a5:
cc:26:e4:f1:4b:28:1d:7a:ce:1b:8b:7a:2d:c9:f1:05:80:83:
57:c4:6e:0a:af:5e:44:9c:fe:7c:06:32:04:d7:90:48:c1:d2:
dc:37:16:9a:d9:39:09:91:0f:c1:fc:9d:0a:f5:4e:7e:51:82:
71:e8:8c:e3:cc:14:33:9a:0c:81:6d:7c:37:fe:37:dc:8b:61:
cd:ef:68:83:3c:02:4d:be:e5:e7:af:b2:bd:13:2c:bc:0c:c6:
b6:91:79:fc
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUBQDpuYuZiGHqzmzf+j7++Bk9MyAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MzdaFw0yMzA5MjUxMTAwMzdaMDMxMTAvBgNV
BAMTKEQ1MkZEMEU4NUU3RDEyNkQzMTA1MEQ2Nzc3REQ0RDIzNDA4RjA4QzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGuQ7gGwas7t8Rtha1Jwn+5fjs
ozUanvfhNgQX+A4EYxXDNohU5Y+oqAngpwyVztKPPebdXtpHnEiTIdIcjeSsJCdP
lGxZyIrDW/zr0WtOKm+3VUK/eod1y4fYB4h6GXfpiKoeU8TYpqliwyp6hGGDO7W+
AV907shXLuY0+ypycVXWbS3+NYCUvG4t6NAL4C3/N5Q/CnbwoY94sXwbWfzL/Pck
LhlrFqwjvd2aZGLUlxgh7ctmVqcqFKEwkWL7Tp7Swi4JqMg4qwg7key7V9oVauuU
8qdyv6RlILGNu1RdrsgOHPjKBuNqkkTRhAHIIFXQfr2K4MomWtVc9XHF90rJAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU1S/Q6F59Em0xBQ1nd91NI0CPCMUwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzOTM0M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
lDANBgkqhkiG9w0BAQsFAAOCAQEARywFfDj4DYQHLYaGHPui584Fv8zmDgKYHwyP
lqU52Gqui9xBSvKKL0N15SdzxiCT0iGxab1yomOScho29KGx8mBuF0XuzvBCRqdv
5NS+V/Ej51ffOb5oF+R2TFooJX/y+62yACnVfIDC6LyGol7jWtnSblEiGJtcAim/
dUyGeTycyyEEgVoTqdATilCaNTJiQEyGEOleUWW9cqPZdSMjbielzCbk8UsoHXrO
G4t6LcnxBYCDV8RuCq9eRJz+fAYyBNeQSMHS3DcWmtk5CZEPwfydCvVOflGCceiM
48wUM5oMgW18N/433Ithze9ogzwCTb7l56+yvRMsvAzGtpF5/A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org