Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361333a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3361333a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: GVde0BcRc37Nq8WA8I9RE1mw0l1yToPGKoLAIvWSByU=
Subject key identifier: 5E:16:06:09:37:6C:6E:66:73:AC:72:0E:AA:75:86:C4:BE:E8:F2:FF
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 6F5D7B1138E291E9C587BBC1D88B070DC335780B
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361333a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:27 +0000
ROA not before: Mon 26 Sep 2022 10:55:27 +0000
ROA not after: Mon 25 Sep 2023 11:00:27 +0000
asID: 59282
IP address blocks: 2400:d680:3a3::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:5d:7b:11:38:e2:91:e9:c5:87:bb:c1:d8:8b:07:0d:c3:35:78:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:27 2022 GMT
Not After : Sep 25 11:00:27 2023 GMT
Subject: CN=5E160609376C6E6673AC720EAA7586C4BEE8F2FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:58:2b:4d:96:9b:4b:41:ea:b0:e6:1f:e9:8f:
5a:32:7b:9d:b1:a8:58:5c:ee:8c:a0:4f:0d:2f:d0:
5e:f5:f8:1e:4f:7d:4d:7c:d7:1a:05:4a:0b:1c:06:
9e:7d:82:a5:c0:d1:4f:c6:35:f7:4d:8e:c0:35:d6:
46:01:cc:16:70:ac:6c:b4:be:6f:97:40:08:44:eb:
4e:94:d0:20:ac:4b:13:51:03:83:ee:0b:b2:94:8e:
51:d0:bc:0c:ae:7e:28:da:58:ba:7b:54:6c:8e:f7:
f1:c6:99:8f:3c:0e:ca:08:01:82:16:86:87:19:4f:
e6:34:c6:9f:c0:a6:16:66:38:32:a4:b0:c6:76:75:
49:9b:29:db:e2:52:f0:41:0a:a7:f0:95:9f:48:14:
ce:74:e9:a2:c4:df:00:49:77:f2:ee:aa:ed:09:4b:
ac:19:dc:12:5d:79:5d:26:51:f2:54:4b:20:59:93:
89:26:3c:5c:cb:f7:4b:41:ab:04:71:3e:e6:aa:f5:
b3:23:7d:6a:f5:f0:41:7d:6f:61:d7:75:4f:90:20:
80:5e:64:d8:8d:6c:2e:14:8c:fc:bb:47:86:bc:ff:
1c:62:29:ca:4e:be:53:eb:47:2e:38:cd:0c:8b:df:
19:a0:95:1c:a4:44:7b:91:84:b6:a5:79:bb:29:06:
78:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:16:06:09:37:6C:6E:66:73:AC:72:0E:AA:75:86:C4:BE:E8:F2:FF
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361333a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3a3::/48
Signature Algorithm: sha256WithRSAEncryption
2d:e4:fb:f8:31:03:e7:ef:64:7f:8a:e2:e6:07:f8:80:e8:48:
8c:f4:60:d2:b8:f8:0f:56:11:2a:11:14:75:80:2d:c8:88:13:
4b:f8:26:64:0f:68:63:b4:bf:1f:d1:85:58:c6:42:f7:1d:db:
05:9f:a9:77:a9:03:63:0a:33:87:d6:81:92:82:ef:e2:b8:f7:
9f:8b:ca:a6:17:c0:0c:0c:f5:fd:98:a3:df:7b:55:6b:bb:a2:
34:bf:8c:cd:9c:e9:24:93:61:f0:93:02:c6:b7:49:04:42:0d:
4b:71:19:69:d7:76:62:16:67:27:00:49:33:1b:dd:d0:a6:14:
3b:93:f7:53:b5:2d:63:42:28:21:69:9b:c0:e9:da:f1:0a:39:
bf:53:c3:cf:f9:fd:5c:c3:b8:43:c6:53:3a:e6:14:29:77:43:
12:15:3c:64:1f:5c:13:5c:d3:77:d0:63:55:da:bf:88:f6:0c:
ad:4e:b9:75:fc:19:f6:ad:0b:45:96:48:c2:dc:4a:51:3e:ae:
98:d3:b1:ee:71:d6:9a:8e:33:fa:1e:e5:41:22:17:a9:95:11:
94:2b:3e:e2:68:c6:17:a0:b7:2a:80:62:8e:63:a3:67:23:b3:
df:ad:d9:72:10:b9:9d:86:3e:9e:ef:34:b5:a3:97:4d:0c:33:
a8:fb:2e:b0
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUb117ETjikenFh7vB2IsHDcM1eAswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MjdaFw0yMzA5MjUxMTAwMjdaMDMxMTAvBgNV
BAMTKDVFMTYwNjA5Mzc2QzZFNjY3M0FDNzIwRUFBNzU4NkM0QkVFOEYyRkYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpWCtNlptLQeqw5h/pj1oye52x
qFhc7oygTw0v0F71+B5PfU181xoFSgscBp59gqXA0U/GNfdNjsA11kYBzBZwrGy0
vm+XQAhE606U0CCsSxNRA4PuC7KUjlHQvAyufijaWLp7VGyO9/HGmY88DsoIAYIW
hocZT+Y0xp/AphZmODKksMZ2dUmbKdviUvBBCqfwlZ9IFM506aLE3wBJd/Luqu0J
S6wZ3BJdeV0mUfJUSyBZk4kmPFzL90tBqwRxPuaq9bMjfWr18EF9b2HXdU+QIIBe
ZNiNbC4UjPy7R4a8/xxiKcpOvlPrRy44zQyL3xmglRykRHuRhLalebspBnjdAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUXhYGCTdsbmZzrHIOqnWGxL7o8v8wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzM2MTMzM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
ozANBgkqhkiG9w0BAQsFAAOCAQEALeT7+DED5+9kf4ri5gf4gOhIjPRg0rj4D1YR
KhEUdYAtyIgTS/gmZA9oY7S/H9GFWMZC9x3bBZ+pd6kDYwozh9aBkoLv4rj3n4vK
phfADAz1/Zij33tVa7uiNL+MzZzpJJNh8JMCxrdJBEINS3EZadd2YhZnJwBJMxvd
0KYUO5P3U7UtY0IoIWmbwOna8Qo5v1PDz/n9XMO4Q8ZTOuYUKXdDEhU8ZB9cE1zT
d9BjVdq/iPYMrU65dfwZ9q0LRZZIwtxKUT6umNOx7nHWmo4z+h7lQSIXqZURlCs+
4mjGF6C3KoBijmOjZyOz363ZchC5nYY+nu80taOXTQwzqPsusA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org