Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3339643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: lZKDF4A4zO279iVLtML1kPeEJcyMjlcXkgeUhd+mQKA=
Subject key identifier: 14:71:79:78:EC:93:7E:B3:3C:4A:9E:62:7F:A2:CF:1E:1D:55:CE:60
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 0A8A33784B7F20EDB002C192D37EF5366C29A76F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:34 +0000
ROA not before: Mon 26 Sep 2022 10:55:34 +0000
ROA not after: Mon 25 Sep 2023 11:00:34 +0000
asID: 59282
IP address blocks: 2400:d680:39d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:8a:33:78:4b:7f:20:ed:b0:02:c1:92:d3:7e:f5:36:6c:29:a7:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:34 2022 GMT
Not After : Sep 25 11:00:34 2023 GMT
Subject: CN=14717978EC937EB33C4A9E627FA2CF1E1D55CE60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:15:f4:c5:34:47:7b:81:3d:33:5c:8b:a2:c4:
0a:b7:94:34:6f:a8:ee:ea:04:d1:b4:ba:13:56:be:
39:a8:8c:05:38:06:f8:90:0a:e6:98:6e:76:51:29:
27:1a:e7:fc:97:dd:38:2e:f8:20:dd:57:db:0c:0f:
5b:f5:b7:17:73:d6:c6:1b:08:8e:87:80:45:65:25:
11:0c:2b:54:0f:8c:3e:e0:2b:79:08:51:70:69:02:
0b:aa:62:b1:27:1b:49:1e:93:31:6a:e8:62:f8:2f:
41:63:96:c7:1f:5b:d7:76:94:b3:5c:f3:db:cc:80:
50:5a:75:c9:99:9a:62:47:54:a9:26:d3:78:83:5d:
c8:b2:a4:ae:62:a0:4d:71:7a:35:cb:97:81:20:1c:
cc:d1:87:4c:57:be:aa:d7:a3:7e:cf:cc:18:0d:b3:
c4:c2:f0:29:49:07:79:8d:6c:78:58:bc:b6:22:f0:
e5:e2:bd:13:c4:39:bf:71:54:3e:50:9a:d3:ec:a5:
fc:f2:29:26:86:5b:23:10:fd:f8:7a:4b:d6:ac:14:
8b:03:e0:2d:4f:1a:32:bb:a2:f2:ac:3e:a6:2f:3b:
30:fb:18:5d:f4:e0:e2:3a:ed:08:78:4c:96:1e:dd:
e6:3d:ba:34:ec:87:26:3d:27:eb:2d:8a:a2:77:81:
f6:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:71:79:78:EC:93:7E:B3:3C:4A:9E:62:7F:A2:CF:1E:1D:55:CE:60
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3339643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:39d::/48
Signature Algorithm: sha256WithRSAEncryption
21:0f:6e:85:26:73:a4:21:6f:7b:7d:2b:64:d9:9b:62:32:c0:
2a:a3:b6:2c:ae:bd:8c:0e:ed:64:cd:a0:0d:11:0a:f9:61:5e:
d4:8d:aa:db:4b:4c:9f:8f:4e:3f:72:ca:0c:b6:22:6c:3a:c4:
ad:62:38:00:58:a0:59:a8:e3:ad:c9:b9:86:15:78:14:0a:31:
21:54:9f:24:cf:ce:ff:f6:c4:ab:25:dd:74:e7:77:b1:3b:4c:
41:83:77:0e:11:66:b4:61:ce:5a:49:81:ae:60:86:21:81:04:
31:c9:44:71:43:d4:77:dc:d7:0b:f1:78:c1:e9:7a:c4:4b:10:
4b:d1:8a:d4:52:7f:39:ad:f6:ed:67:ee:1a:82:4d:72:03:00:
b0:5c:ad:88:2f:2f:73:46:38:d9:ec:86:2f:02:aa:91:8b:26:
5f:82:af:7b:0e:70:23:68:e1:a5:07:30:ff:7b:c6:f1:df:a3:
0d:74:80:d3:3b:c9:89:b1:ff:7e:0a:7e:b5:fb:66:08:21:6f:
53:8f:69:37:94:73:6c:46:88:d7:ec:32:51:32:94:ac:5b:eb:
c4:1b:b2:77:78:fc:a9:97:79:29:e4:5b:40:fd:b7:b9:a1:35:
f0:28:e3:22:61:4f:da:00:b8:17:7f:f2:ae:b8:20:d3:42:51:
f7:9a:e2:92
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUCoozeEt/IO2wAsGS0371Nmwpp28wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MzRaFw0yMzA5MjUxMTAwMzRaMDMxMTAvBgNV
BAMTKDE0NzE3OTc4RUM5MzdFQjMzQzRBOUU2MjdGQTJDRjFFMUQ1NUNFNjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoFfTFNEd7gT0zXIuixAq3lDRv
qO7qBNG0uhNWvjmojAU4BviQCuaYbnZRKSca5/yX3Tgu+CDdV9sMD1v1txdz1sYb
CI6HgEVlJREMK1QPjD7gK3kIUXBpAguqYrEnG0kekzFq6GL4L0FjlscfW9d2lLNc
89vMgFBadcmZmmJHVKkm03iDXciypK5ioE1xejXLl4EgHMzRh0xXvqrXo37PzBgN
s8TC8ClJB3mNbHhYvLYi8OXivRPEOb9xVD5QmtPspfzyKSaGWyMQ/fh6S9asFIsD
4C1PGjK7ovKsPqYvOzD7GF304OI67Qh4TJYe3eY9ujTshyY9J+stiqJ3gfaPAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUFHF5eOyTfrM8Sp5if6LPHh1VzmAwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzMzOTY0M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
nTANBgkqhkiG9w0BAQsFAAOCAQEAIQ9uhSZzpCFve30rZNmbYjLAKqO2LK69jA7t
ZM2gDREK+WFe1I2q20tMn49OP3LKDLYibDrErWI4AFigWajjrcm5hhV4FAoxIVSf
JM/O//bEqyXddOd3sTtMQYN3DhFmtGHOWkmBrmCGIYEEMclEcUPUd9zXC/F4wel6
xEsQS9GK1FJ/Oa327WfuGoJNcgMAsFytiC8vc0Y42eyGLwKqkYsmX4Kvew5wI2jh
pQcw/3vG8d+jDXSA0zvJibH/fgp+tftmCCFvU49pN5RzbEaI1+wyUTKUrFvrxBuy
d3j8qZd5KeRbQP23uaE18CjjImFP2gC4F3/yrrgg00JR95rikg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org