Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365373a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3365373a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: OMW2JX5Wp2pwxLjTlwcCW0hudG+67UqvDENOiCs4n98=
Subject key identifier: EF:50:08:FF:E1:EC:38:28:C7:4A:DB:19:25:6E:D8:5E:9A:76:F2:7D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 680AA95F42D06EA97E0FB24BFA06CE676D2E1093
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365373a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:37 +0000
ROA not before: Mon 26 Sep 2022 10:55:37 +0000
ROA not after: Mon 25 Sep 2023 11:00:37 +0000
asID: 59282
IP address blocks: 2400:d680:3e7::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:0a:a9:5f:42:d0:6e:a9:7e:0f:b2:4b:fa:06:ce:67:6d:2e:10:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:37 2022 GMT
Not After : Sep 25 11:00:37 2023 GMT
Subject: CN=EF5008FFE1EC3828C74ADB19256ED85E9A76F27D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:8b:fa:c5:62:3e:7f:0a:de:03:26:b1:58:e9:
68:2a:86:6e:26:3a:cf:1e:32:e1:6c:6c:94:a2:c3:
55:d0:a7:57:f5:f0:38:74:d0:52:63:dd:c1:b8:f7:
de:14:1b:54:6a:61:f5:52:da:86:80:92:1a:27:be:
cb:48:36:9a:6e:3b:16:b2:87:f0:59:73:e4:2a:9b:
92:f1:59:98:bc:14:a7:71:13:f6:d0:74:0b:7d:82:
d5:3c:2c:61:21:91:39:69:57:de:4a:a6:f1:04:e3:
4f:42:06:16:ca:67:bd:84:04:38:2d:94:5f:78:cd:
be:c5:2b:9d:c9:27:04:cb:04:01:3e:05:cb:0f:1f:
ab:10:29:2f:ba:0e:8b:ba:5d:fa:b1:b1:b6:a0:d4:
79:c1:34:88:ef:ea:2e:8f:24:94:1a:4a:18:08:31:
b7:4f:51:2f:50:92:1a:db:ec:e6:c9:b3:51:32:fd:
e7:76:c7:8b:1d:59:9a:fa:e3:e7:7b:3e:af:18:bb:
4c:f8:a7:38:60:d8:11:4a:a7:a5:00:20:74:62:3a:
45:1b:0f:46:33:c6:ef:c3:44:7a:2f:ab:a8:0f:51:
83:c5:6a:e1:79:4e:34:ce:11:39:eb:1a:e3:5c:b5:
09:cc:4f:39:b2:db:38:ac:fa:49:06:b7:6b:32:44:
a1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:50:08:FF:E1:EC:38:28:C7:4A:DB:19:25:6E:D8:5E:9A:76:F2:7D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3365373a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3e7::/48
Signature Algorithm: sha256WithRSAEncryption
5a:27:90:d7:bd:19:d1:b1:94:5c:8d:eb:82:f5:5d:08:59:2f:
91:9a:8c:31:7d:19:27:79:ca:20:68:82:5b:15:da:85:73:81:
24:14:70:84:d6:5a:c3:3e:11:f0:bc:1b:f0:ed:14:ac:71:d0:
1f:f8:b6:b2:6b:52:10:db:5d:05:0e:39:b2:25:cb:01:a7:b5:
e4:e0:7c:ac:02:ac:df:8b:44:76:2d:29:f0:cd:04:74:5a:dc:
a4:a3:73:cc:db:17:7a:4c:f1:33:cd:a2:a2:3c:39:61:23:ae:
d5:29:5e:a2:7e:b0:fa:8b:65:db:34:e0:91:cd:8a:1f:1d:e6:
8d:87:58:ac:e6:3f:63:6e:6e:0a:0d:ee:e0:63:d5:4f:01:07:
f3:dc:1d:54:9c:50:ef:7d:2a:19:22:f9:e8:b5:ae:16:0b:b0:
70:34:93:34:aa:83:8d:ed:bc:d8:6a:bd:43:ad:8e:7a:60:b9:
88:0a:62:cb:cf:99:0d:64:2e:34:82:ae:0f:b0:44:84:54:1d:
33:77:51:6c:86:31:bb:ba:32:57:00:4f:dd:26:e7:a7:1f:6e:
fc:52:1f:93:c1:82:9b:17:16:57:c4:5c:42:c7:41:e4:8a:43:
f8:c7:6b:ec:79:bf:e8:c5:4b:6d:4f:f8:d2:47:ef:f4:37:fa:
9e:dd:d6:f1
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUaAqpX0LQbql+D7JL+gbOZ20uEJMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1MzdaFw0yMzA5MjUxMTAwMzdaMDMxMTAvBgNV
BAMTKEVGNTAwOEZGRTFFQzM4MjhDNzRBREIxOTI1NkVEODVFOUE3NkYyN0QwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPi/rFYj5/Ct4DJrFY6Wgqhm4m
Os8eMuFsbJSiw1XQp1f18Dh00FJj3cG4994UG1RqYfVS2oaAkhonvstINppuOxay
h/BZc+Qqm5LxWZi8FKdxE/bQdAt9gtU8LGEhkTlpV95KpvEE409CBhbKZ72EBDgt
lF94zb7FK53JJwTLBAE+BcsPH6sQKS+6Dou6Xfqxsbag1HnBNIjv6i6PJJQaShgI
MbdPUS9Qkhrb7ObJs1Ey/ed2x4sdWZr64+d7Pq8Yu0z4pzhg2BFKp6UAIHRiOkUb
D0Yzxu/DRHovq6gPUYPFauF5TjTOETnrGuNctQnMTzmy2zis+kkGt2syRKFHAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU71AI/+HsOCjHStsZJW7YXpp28n0wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzM2NTM3M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
5zANBgkqhkiG9w0BAQsFAAOCAQEAWieQ170Z0bGUXI3rgvVdCFkvkZqMMX0ZJ3nK
IGiCWxXahXOBJBRwhNZawz4R8Lwb8O0UrHHQH/i2smtSENtdBQ45siXLAae15OB8
rAKs34tEdi0p8M0EdFrcpKNzzNsXekzxM82iojw5YSOu1Sleon6w+otl2zTgkc2K
Hx3mjYdYrOY/Y25uCg3u4GPVTwEH89wdVJxQ730qGSL56LWuFguwcDSTNKqDje28
2Gq9Q62OemC5iApiy8+ZDWQuNIKuD7BEhFQdM3dRbIYxu7oyVwBP3Sbnpx9u/FIf
k8GCmxcWV8RcQsdB5IpD+Mdr7Hm/6MVLbU/40kfv9Df6nt3W8Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org