Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3364353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 6ebwfdMihrKnBRekxdCWkXCDHQejmbIp9yvDk+SaTGI=
Subject key identifier: 75:78:8D:59:4A:4B:D3:BE:14:9F:49:75:35:0F:30:85:C6:72:6D:84
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4FA0705D2C0B5BF073F91E2D9D48D708BBCADCF5
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:26 +0000
ROA not before: Mon 26 Sep 2022 10:55:26 +0000
ROA not after: Mon 25 Sep 2023 11:00:26 +0000
asID: 59282
IP address blocks: 2400:d680:3d5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:a0:70:5d:2c:0b:5b:f0:73:f9:1e:2d:9d:48:d7:08:bb:ca:dc:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:26 2022 GMT
Not After : Sep 25 11:00:26 2023 GMT
Subject: CN=75788D594A4BD3BE149F4975350F3085C6726D84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fd:89:03:ff:d3:4c:1e:f8:e7:c0:57:1a:c3:
5f:39:cc:e2:70:a3:d3:9c:08:99:e0:a3:5a:a2:df:
34:7a:1e:f3:a5:15:0e:b5:ed:02:b2:98:9c:37:9f:
69:9c:97:cc:0c:e7:aa:fd:53:a0:db:4b:10:c3:15:
7c:9b:7d:10:48:d2:94:8f:d6:80:1c:95:a2:a2:e6:
ae:fb:03:1f:81:91:f4:a6:ed:14:f2:9c:d6:de:8e:
4c:ee:20:6d:f1:ac:0a:8f:f2:f3:c4:47:0e:e5:b8:
8b:2f:71:c3:a5:17:c9:33:01:49:47:f7:e8:ad:b2:
bf:7b:f0:b8:e5:53:a7:03:8f:7f:d3:8e:9b:7c:b4:
a6:22:76:df:a6:25:f6:c0:4e:03:44:84:f5:19:ea:
12:dc:0d:f1:9f:df:54:39:24:d9:14:b9:cf:2a:db:
7d:fd:40:8d:8f:97:14:57:ad:2d:1f:b4:16:2d:15:
5d:de:5a:7d:2f:71:20:e0:42:cd:66:61:41:a0:da:
35:e8:e0:d2:8a:f6:12:fa:dd:e6:ef:c8:5b:d3:73:
a2:15:4a:cf:ec:36:0c:c0:1a:80:2c:1b:a8:e3:86:
df:40:46:97:8a:c6:1f:d7:92:58:fb:2b:89:2e:1e:
06:84:bf:61:6a:a4:a7:93:70:11:4c:38:b2:8a:7b:
fc:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:78:8D:59:4A:4B:D3:BE:14:9F:49:75:35:0F:30:85:C6:72:6D:84
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3364353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3d5::/48
Signature Algorithm: sha256WithRSAEncryption
20:14:47:c2:95:36:72:ba:a7:ce:e8:5e:38:e9:66:bd:26:77:
41:34:30:c7:e7:b7:98:14:59:d3:c2:75:01:87:d2:0f:4b:8a:
95:e1:55:7f:51:3f:67:25:b5:0e:f6:9a:b1:67:6f:08:df:49:
96:52:d8:12:8f:a3:96:15:f1:e6:92:90:e0:c9:6d:7b:39:c5:
8c:16:cc:8a:b8:f0:12:0d:4c:b3:2f:53:43:32:1a:3d:f8:79:
1b:e1:da:c8:b5:14:1b:db:ce:d0:0d:36:9a:53:47:26:dd:07:
07:c6:0a:19:1d:07:b2:0b:3c:43:40:cd:b9:70:b9:b9:c4:cc:
9c:02:da:66:ad:fe:fc:a6:d6:eb:8a:1e:3c:70:92:e7:68:0e:
33:ec:31:d5:4e:ec:c9:6d:d3:1f:6e:71:73:a6:a9:d7:e7:4a:
15:1c:d9:61:28:cc:fd:0b:3a:8d:48:db:3a:d6:74:37:50:67:
d6:bd:46:ef:44:0c:38:a7:a8:97:35:d4:31:92:f9:a3:17:f4:
cb:6d:18:fd:33:e5:a2:d2:d6:fa:76:e2:ac:d8:91:ce:a2:47:
7f:c7:69:5a:c0:2a:05:91:54:45:37:de:08:03:47:08:71:5e:
89:05:8b:b4:fd:a4:ba:07:84:d8:5b:44:7e:8f:84:b1:40:ed:
93:e0:82:3b
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUT6BwXSwLW/Bz+R4tnUjXCLvK3PUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MjZaFw0yMzA5MjUxMTAwMjZaMDMxMTAvBgNV
BAMTKDc1Nzg4RDU5NEE0QkQzQkUxNDlGNDk3NTM1MEYzMDg1QzY3MjZEODQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9/YkD/9NMHvjnwFcaw185zOJw
o9OcCJngo1qi3zR6HvOlFQ617QKymJw3n2mcl8wM56r9U6DbSxDDFXybfRBI0pSP
1oAclaKi5q77Ax+BkfSm7RTynNbejkzuIG3xrAqP8vPERw7luIsvccOlF8kzAUlH
9+itsr978LjlU6cDj3/Tjpt8tKYidt+mJfbATgNEhPUZ6hLcDfGf31Q5JNkUuc8q
2339QI2PlxRXrS0ftBYtFV3eWn0vcSDgQs1mYUGg2jXo4NKK9hL63ebvyFvTc6IV
Ss/sNgzAGoAsG6jjht9ARpeKxh/Xklj7K4kuHgaEv2FqpKeTcBFMOLKKe/wvAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUdXiNWUpL074Un0l1NQ8whcZybYQwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzM2NDM1M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
1TANBgkqhkiG9w0BAQsFAAOCAQEAIBRHwpU2crqnzuheOOlmvSZ3QTQwx+e3mBRZ
08J1AYfSD0uKleFVf1E/ZyW1DvaasWdvCN9JllLYEo+jlhXx5pKQ4MlteznFjBbM
irjwEg1Msy9TQzIaPfh5G+HayLUUG9vO0A02mlNHJt0HB8YKGR0Hsgs8Q0DNuXC5
ucTMnALaZq3+/KbW64oePHCS52gOM+wx1U7syW3TH25xc6ap1+dKFRzZYSjM/Qs6
jUjbOtZ0N1Bn1r1G70QMOKeolzXUMZL5oxf0y20Y/TPlotLW+nbirNiRzqJHf8dp
WsAqBZFURTfeCANHCHFeiQWLtP2kugeE2FtEfo+EsUDtk+CCOw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org