Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3362633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: yOmjTtvUELa07acAQA3kLERR2ZVTt/epiVF1+jzMZ+s=
Subject key identifier: EB:C1:3C:A0:F7:D7:73:B7:C9:85:BA:31:26:D5:D3:38:66:D4:87:14
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 30C6CA6B50B02B5E264C31E2B3C991C130CFCC5C
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:27 +0000
ROA not before: Mon 26 Sep 2022 10:55:27 +0000
ROA not after: Mon 25 Sep 2023 11:00:27 +0000
asID: 59282
IP address blocks: 2400:d680:3bc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:c6:ca:6b:50:b0:2b:5e:26:4c:31:e2:b3:c9:91:c1:30:cf:cc:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:27 2022 GMT
Not After : Sep 25 11:00:27 2023 GMT
Subject: CN=EBC13CA0F7D773B7C985BA3126D5D33866D48714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:cd:59:ec:a2:6e:d2:3c:64:7a:cc:da:b9:4c:
f2:51:f7:a6:ec:98:77:2e:c7:d9:2d:d3:50:5b:91:
df:ab:ec:52:37:ec:70:f7:79:f8:25:b8:37:11:0e:
8b:83:e1:41:8c:61:65:b5:97:83:23:48:13:d2:7c:
0d:b9:d6:5f:5d:3c:d7:e6:c5:ad:e6:65:8a:c7:db:
ce:d4:4f:20:40:d0:a0:90:c5:99:6a:ae:8a:72:52:
53:9b:41:8e:40:c2:ec:20:9f:fe:d8:9c:c5:71:3c:
2f:de:6c:34:73:8b:e9:d6:d7:00:d6:43:ad:0a:52:
b3:f2:46:ed:e2:cf:d0:8a:ca:85:27:89:aa:83:29:
f7:b7:9b:5a:58:15:31:ea:1f:9b:47:08:8c:ef:1b:
97:83:ab:5d:b1:01:be:10:60:6e:9b:bc:df:7d:c6:
ef:61:e2:33:34:d9:35:fc:aa:b1:42:3b:17:fd:32:
a4:ce:97:8c:c9:9c:a5:29:d4:a7:42:f2:dc:82:e4:
e0:fb:a1:db:f5:99:8d:9b:f3:f2:51:86:89:3f:8b:
2d:f0:25:00:e6:00:8f:a9:8f:e8:f3:a1:86:a9:08:
d6:a0:43:33:b2:75:6e:6b:1c:9b:50:3d:e2:b5:69:
b1:d3:fb:1a:e5:5d:51:c2:09:93:28:53:a8:bb:a9:
d5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C1:3C:A0:F7:D7:73:B7:C9:85:BA:31:26:D5:D3:38:66:D4:87:14
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3362633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3bc::/48
Signature Algorithm: sha256WithRSAEncryption
58:69:2d:83:c7:a5:d5:79:73:4a:cb:ca:f4:f2:46:be:4a:07:
83:8b:26:55:ae:1d:34:f9:da:e6:0d:a4:fa:40:4a:22:51:4f:
ba:aa:b8:0d:fc:56:ec:0f:95:ed:9f:aa:84:08:e8:60:f5:28:
63:70:45:10:57:69:66:6c:62:a0:2e:30:50:27:89:fd:3e:98:
ef:88:9c:e3:54:69:e2:2a:3b:2f:df:a1:aa:5e:88:93:51:1a:
f6:43:38:0e:39:c3:15:d2:3c:02:44:14:c5:f9:f7:0a:8e:7a:
d3:d7:54:91:bf:fb:3f:d2:6c:42:fc:b7:b2:ae:ac:ee:8a:44:
0b:11:e9:77:b3:0d:7a:58:45:1f:7f:ef:eb:ca:bc:58:b5:35:
8f:2d:63:b5:5b:cb:8a:d5:3f:2b:d5:af:ba:ab:b8:f1:fc:be:
4c:cf:d8:73:4a:72:10:8a:5a:ae:98:63:ee:67:98:70:cb:aa:
5d:93:df:53:b3:ba:b0:38:00:b3:aa:19:4a:01:39:52:ca:ef:
66:c4:f7:31:3f:87:b7:ac:ee:e6:6e:bf:6a:3a:31:38:2b:d5:
86:b8:25:2d:99:51:a8:10:13:36:cc:87:fe:93:8d:56:ea:b5:
6e:69:f6:a1:6f:92:3c:93:08:20:52:08:a4:11:77:2c:df:c4:
3a:9c:d8:2c
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUMMbKa1CwK14mTDHis8mRwTDPzFwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MjdaFw0yMzA5MjUxMTAwMjdaMDMxMTAvBgNV
BAMTKEVCQzEzQ0EwRjdENzczQjdDOTg1QkEzMTI2RDVEMzM4NjZENDg3MTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/zVnsom7SPGR6zNq5TPJR96bs
mHcux9kt01Bbkd+r7FI37HD3efgluDcRDouD4UGMYWW1l4MjSBPSfA251l9dPNfm
xa3mZYrH287UTyBA0KCQxZlqropyUlObQY5Awuwgn/7YnMVxPC/ebDRzi+nW1wDW
Q60KUrPyRu3iz9CKyoUniaqDKfe3m1pYFTHqH5tHCIzvG5eDq12xAb4QYG6bvN99
xu9h4jM02TX8qrFCOxf9MqTOl4zJnKUp1KdC8tyC5OD7odv1mY2b8/JRhok/iy3w
JQDmAI+pj+jzoYapCNagQzOydW5rHJtQPeK1abHT+xrlXVHCCZMoU6i7qdUHAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU68E8oPfXc7fJhboxJtXTOGbUhxQwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzM2MjYzM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
vDANBgkqhkiG9w0BAQsFAAOCAQEAWGktg8el1XlzSsvK9PJGvkoHg4smVa4dNPna
5g2k+kBKIlFPuqq4DfxW7A+V7Z+qhAjoYPUoY3BFEFdpZmxioC4wUCeJ/T6Y74ic
41Rp4io7L9+hql6Ik1Ea9kM4DjnDFdI8AkQUxfn3Co5609dUkb/7P9JsQvy3sq6s
7opECxHpd7MNelhFH3/v68q8WLU1jy1jtVvLitU/K9Wvuqu48fy+TM/Yc0pyEIpa
rphj7meYcMuqXZPfU7O6sDgAs6oZSgE5UsrvZsT3MT+Ht6zu5m6/ajoxOCvVhrgl
LZlRqBATNsyH/pONVuq1bmn2oW+SPJMIIFIIpBF3LN/EOpzYLA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:14 2024 by rpki-client on console-fra.rpki-client.org