Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361383a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3361383a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: lyqCEWoRh+7Ck0A0DHRNig2zHfNqh/JOjjeFgDyfPnk=
Subject key identifier: 1F:A1:5F:5D:A2:B9:7F:7C:FF:F6:D4:E8:7F:2F:F9:97:B8:A8:21:D0
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 75200DAF02A9A82D652E7575F0CA6E0C4B6BE7EF
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361383a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:38 +0000
ROA not before: Mon 26 Sep 2022 10:55:38 +0000
ROA not after: Mon 25 Sep 2023 11:00:38 +0000
asID: 59282
IP address blocks: 2400:d680:3a8::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:20:0d:af:02:a9:a8:2d:65:2e:75:75:f0:ca:6e:0c:4b:6b:e7:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:38 2022 GMT
Not After : Sep 25 11:00:38 2023 GMT
Subject: CN=1FA15F5DA2B97F7CFFF6D4E87F2FF997B8A821D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:33:a8:fd:84:ef:2d:12:84:5a:b6:be:a5:ff:
24:3c:c9:9e:eb:48:e0:8e:38:c9:a9:07:22:0d:0a:
fb:f2:b9:83:d6:ee:0b:2f:83:62:c0:f7:b2:e7:f8:
7a:2d:28:24:09:51:a6:cf:06:ca:5c:05:0e:20:70:
a5:50:2d:42:24:1a:17:79:30:bd:d5:4c:47:b5:dc:
d5:94:70:da:c2:f1:fd:14:c7:20:1a:e7:85:45:5e:
21:2d:98:9e:00:bb:89:32:72:be:b4:b2:be:ca:bb:
b5:d7:a1:a8:ce:24:17:84:de:a5:7a:4c:eb:3b:cd:
69:ed:00:7e:30:13:49:7f:d2:fa:31:5a:0f:2b:81:
01:4e:f8:b2:d0:e6:f0:cc:0a:c8:a5:b8:54:db:75:
6e:fe:d4:d6:cc:cd:ed:66:b9:81:61:ab:99:70:1b:
a8:15:78:14:92:5c:45:52:22:22:7e:75:4e:39:8d:
bb:33:f6:e3:72:f4:68:70:19:0a:4b:95:2f:40:64:
17:e6:9e:de:95:89:98:4a:0b:0f:c6:41:7f:8a:16:
8d:5a:ea:2b:8f:b8:a4:12:0a:2c:f9:79:35:8b:57:
dd:a0:a1:ff:27:ba:7e:e1:9d:7f:81:a3:84:7c:47:
0f:ae:5c:ad:b2:93:4c:5c:70:4a:d3:5d:ee:c4:47:
97:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:A1:5F:5D:A2:B9:7F:7C:FF:F6:D4:E8:7F:2F:F9:97:B8:A8:21:D0
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3361383a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3a8::/48
Signature Algorithm: sha256WithRSAEncryption
03:f8:2a:d7:6f:e5:a7:66:6b:4b:de:1b:45:63:cb:79:19:93:
9a:ee:0d:4c:ae:e5:1b:f2:8e:4c:57:4a:98:c8:3f:53:2f:9a:
89:e3:e2:0e:25:04:2c:96:fa:69:aa:87:c4:38:40:bc:90:e8:
a6:8c:42:75:1a:c7:1d:80:7c:ce:34:7d:e6:20:1a:ba:15:68:
04:20:be:2d:36:0f:cf:ef:c2:d0:51:27:4d:fe:21:90:05:c2:
e1:f3:61:5b:57:80:fc:e2:2c:47:63:d0:6a:7d:22:a3:12:5c:
d5:07:39:65:4c:07:8e:95:28:16:c7:2a:8c:30:b7:a4:fa:8b:
c3:bc:f4:76:f7:59:95:c8:a4:c8:cd:d9:da:15:7c:cd:dc:28:
f3:5e:fa:b1:14:bf:ad:90:ab:61:ee:8e:df:6b:b0:97:34:b6:
59:cd:70:0d:8e:aa:46:61:d7:10:3e:94:19:59:cd:64:86:e1:
52:07:ed:4f:5e:b6:85:91:1d:e1:8c:1f:3c:62:c9:6c:13:d3:
1b:8e:bc:6d:8c:1d:2d:6c:83:0f:87:40:ac:59:78:16:25:bc:
92:9b:a2:f8:3d:8e:76:b0:38:be:e2:87:24:3a:78:49:c7:54:
df:4d:df:b6:c6:cf:89:59:ce:94:dc:fb:4e:28:43:98:6a:c1:
fc:84:a0:e7
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUdSANrwKpqC1lLnV18MpuDEtr5+8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MzhaFw0yMzA5MjUxMTAwMzhaMDMxMTAvBgNV
BAMTKDFGQTE1RjVEQTJCOTdGN0NGRkY2RDRFODdGMkZGOTk3QjhBODIxRDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD4M6j9hO8tEoRatr6l/yQ8yZ7r
SOCOOMmpByINCvvyuYPW7gsvg2LA97Ln+HotKCQJUabPBspcBQ4gcKVQLUIkGhd5
ML3VTEe13NWUcNrC8f0UxyAa54VFXiEtmJ4Au4kycr60sr7Ku7XXoajOJBeE3qV6
TOs7zWntAH4wE0l/0voxWg8rgQFO+LLQ5vDMCsiluFTbdW7+1NbMze1muYFhq5lw
G6gVeBSSXEVSIiJ+dU45jbsz9uNy9GhwGQpLlS9AZBfmnt6ViZhKCw/GQX+KFo1a
6iuPuKQSCiz5eTWLV92gof8nun7hnX+Bo4R8Rw+uXK2yk0xccErTXe7ER5fFAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUH6FfXaK5f3z/9tTofy/5l7ioIdAwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzM2MTM4M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
qDANBgkqhkiG9w0BAQsFAAOCAQEAA/gq12/lp2ZrS94bRWPLeRmTmu4NTK7lG/KO
TFdKmMg/Uy+aiePiDiUELJb6aaqHxDhAvJDopoxCdRrHHYB8zjR95iAauhVoBCC+
LTYPz+/C0FEnTf4hkAXC4fNhW1eA/OIsR2PQan0ioxJc1Qc5ZUwHjpUoFscqjDC3
pPqLw7z0dvdZlcikyM3Z2hV8zdwo8176sRS/rZCrYe6O32uwlzS2Wc1wDY6qRmHX
ED6UGVnNZIbhUgftT162hZEd4YwfPGLJbBPTG468bYwdLWyDD4dArFl4FiW8kpui
+D2OdrA4vuKHJDp4ScdU303ftsbPiVnOlNz7TihDmGrB/ISg5w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org