Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363623a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3363623a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: tR7Fz37yrvQgiwVIwGrbvdQnHgt9cryyNUtbh9QzXIg=
Subject key identifier: 12:8D:EE:EA:5B:2A:D2:D6:B3:76:8E:ED:B2:E5:49:4C:63:88:43:2C
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 45FDF0E71918E110E5509E86DE735AF494C4181A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363623a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:28 +0000
ROA not before: Mon 26 Sep 2022 10:55:28 +0000
ROA not after: Mon 25 Sep 2023 11:00:28 +0000
asID: 59282
IP address blocks: 2400:d680:3cb::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:fd:f0:e7:19:18:e1:10:e5:50:9e:86:de:73:5a:f4:94:c4:18:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:28 2022 GMT
Not After : Sep 25 11:00:28 2023 GMT
Subject: CN=128DEEEA5B2AD2D6B3768EEDB2E5494C6388432C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c0:93:ed:49:a7:1a:52:84:42:9b:31:41:fc:
7e:8b:74:b4:ff:a0:5a:42:e5:06:77:df:b5:e2:87:
bc:48:bf:03:ca:9f:96:08:ca:c0:25:2d:92:a7:8f:
c2:a9:2f:7f:19:d5:6b:0b:08:06:43:2a:e7:ce:1d:
4d:e9:77:a4:64:a2:5a:42:26:32:a4:1d:52:17:f0:
61:a2:9a:b2:0c:e3:37:cd:e9:74:7e:aa:3c:16:26:
91:c1:bc:1a:69:e2:4a:3c:54:10:d6:ab:97:01:96:
90:b5:92:64:0a:04:80:25:66:b9:72:db:70:54:dc:
52:c0:7a:2a:f1:61:13:55:ec:fb:53:9b:26:10:6e:
7c:d1:08:e2:7a:55:00:d2:8f:96:84:20:6d:0b:d0:
ef:d2:c7:4e:b7:3f:76:51:2b:95:26:bc:8d:4d:9d:
7a:d1:7e:7f:2e:a1:08:ab:8c:f7:00:10:29:bf:ab:
63:68:4e:1b:51:a3:4c:e7:7e:bb:86:63:1b:31:50:
44:46:e8:6c:1a:d4:44:8e:0a:5f:cc:6f:08:d6:a5:
ff:38:b5:dc:c2:3c:f4:c7:16:9e:da:3c:3f:de:f1:
5d:82:f1:d1:26:dc:59:e3:89:75:72:8b:71:46:f8:
59:fe:0b:27:d9:51:47:69:7c:61:ae:7d:f7:69:18:
41:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:8D:EE:EA:5B:2A:D2:D6:B3:76:8E:ED:B2:E5:49:4C:63:88:43:2C
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3363623a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3cb::/48
Signature Algorithm: sha256WithRSAEncryption
1f:5d:36:b7:fb:1c:c7:c7:56:54:f3:61:47:85:24:53:80:b5:
41:d5:4f:4b:13:51:49:e9:30:75:53:a6:74:f2:d2:bd:31:68:
1c:61:6c:0a:ad:dc:35:9c:b1:14:3a:12:dc:46:2a:04:95:87:
a6:ad:85:d0:be:73:0b:7c:da:91:06:42:c0:cf:69:b4:69:60:
43:76:67:d2:fe:85:e2:c3:f6:c8:6a:41:b8:7f:02:95:bf:fd:
dc:fb:7f:99:e2:35:5e:b7:c9:0c:46:85:a3:b8:28:d7:eb:5c:
5e:70:08:35:c8:ce:2c:e6:4e:c5:b5:85:54:05:df:5a:f4:a7:
0f:d8:78:39:4e:93:f5:e7:36:7b:2b:52:9c:08:1f:35:5c:63:
02:37:98:f6:af:4c:5b:44:32:40:5c:25:67:0d:5e:0c:d1:42:
8a:1b:6b:b6:da:b2:9c:30:65:09:f1:4f:4d:69:68:9b:de:99:
a8:97:07:4c:3f:66:e9:50:ba:2e:ac:13:ef:9e:d4:2e:e9:19:
c3:dd:bb:0d:3e:43:68:90:ef:52:79:2e:79:86:16:3c:7d:2c:
7e:0e:ba:5c:8e:54:6c:24:a9:e0:e5:2b:5a:c2:df:c0:50:b5:
3c:eb:e3:36:0d:ca:b7:71:dc:72:35:1a:42:06:42:81:4b:0f:
48:fc:a0:db
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIURf3w5xkY4RDlUJ6G3nNa9JTEGBowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MjhaFw0yMzA5MjUxMTAwMjhaMDMxMTAvBgNV
BAMTKDEyOERFRUVBNUIyQUQyRDZCMzc2OEVFREIyRTU0OTRDNjM4ODQzMkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYwJPtSacaUoRCmzFB/H6LdLT/
oFpC5QZ337Xih7xIvwPKn5YIysAlLZKnj8KpL38Z1WsLCAZDKufOHU3pd6RkolpC
JjKkHVIX8GGimrIM4zfN6XR+qjwWJpHBvBpp4ko8VBDWq5cBlpC1kmQKBIAlZrly
23BU3FLAeirxYRNV7PtTmyYQbnzRCOJ6VQDSj5aEIG0L0O/Sx063P3ZRK5UmvI1N
nXrRfn8uoQirjPcAECm/q2NoThtRo0znfruGYxsxUERG6Gwa1ESOCl/MbwjWpf84
tdzCPPTHFp7aPD/e8V2C8dEm3FnjiXVyi3FG+Fn+CyfZUUdpfGGuffdpGEFDAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUEo3u6lsq0tazdo7tsuVJTGOIQywwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzM2MzYyM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
yzANBgkqhkiG9w0BAQsFAAOCAQEAH102t/scx8dWVPNhR4UkU4C1QdVPSxNRSekw
dVOmdPLSvTFoHGFsCq3cNZyxFDoS3EYqBJWHpq2F0L5zC3zakQZCwM9ptGlgQ3Zn
0v6F4sP2yGpBuH8Clb/93Pt/meI1XrfJDEaFo7go1+tcXnAINcjOLOZOxbWFVAXf
WvSnD9h4OU6T9ec2eytSnAgfNVxjAjeY9q9MW0QyQFwlZw1eDNFCihtrttqynDBl
CfFPTWlom96ZqJcHTD9m6VC6LqwT757ULukZw927DT5DaJDvUnkueYYWPH0sfg66
XI5UbCSp4OUrWsLfwFC1POvjNg3Kt3HccjUaQgZCgUsPSPyg2w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org