Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366353a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3366353a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: TRtDmovPGgTZwnc5R55jEG1TSOv1CeHs/3orAWoJ4UU=
Subject key identifier: D9:D9:7C:CE:51:F2:27:B9:D1:70:71:ED:E9:05:9C:F9:36:8D:BF:3D
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3B68B5202BB3561466140C27622577198DF0B703
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366353a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:47 +0000
ROA not before: Mon 26 Sep 2022 10:55:47 +0000
ROA not after: Mon 25 Sep 2023 11:00:47 +0000
asID: 59282
IP address blocks: 2400:d680:3f5::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:68:b5:20:2b:b3:56:14:66:14:0c:27:62:25:77:19:8d:f0:b7:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:47 2022 GMT
Not After : Sep 25 11:00:47 2023 GMT
Subject: CN=D9D97CCE51F227B9D17071EDE9059CF9368DBF3D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:83:a7:56:b7:22:c4:a8:91:7e:db:a4:b5:dc:
06:24:7e:43:f1:af:df:30:da:dd:0a:ad:97:e3:d3:
6a:3e:a5:58:cb:08:f7:e1:a2:d7:bb:34:1a:c8:0a:
54:33:38:2c:5f:a6:e5:3f:95:22:b0:dc:94:fe:ea:
97:8c:3d:86:ad:ac:32:3f:ef:95:a4:5b:87:b0:e0:
b1:53:bf:e8:ab:7e:99:42:96:73:ec:d2:96:ed:21:
4d:04:5e:f5:f6:7a:9d:fa:87:d6:0d:ec:d2:ce:19:
4b:11:26:a6:32:09:94:9c:59:1a:d1:70:e6:b6:0e:
74:46:c7:64:2a:74:a0:fe:7a:36:32:60:79:53:69:
fa:6c:d7:2f:f6:81:1d:2c:52:87:39:13:10:66:90:
98:2b:b7:f6:02:ff:83:22:61:09:5d:0f:1d:1e:fb:
3d:61:c0:b7:5d:ad:41:23:6c:59:ff:f0:a1:ee:9a:
47:c4:00:48:d7:39:58:cb:1f:23:17:d9:42:68:ba:
cd:c7:fb:1c:1e:5e:c8:79:c6:85:8d:8b:a9:f9:1c:
09:bc:da:eb:6d:a0:6b:2b:77:30:b9:b6:1f:79:7f:
be:01:53:0b:f1:c7:60:92:88:c0:aa:88:83:64:6e:
78:57:0a:87:16:f9:e3:f5:55:df:b4:fa:f8:a1:31:
30:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D9:7C:CE:51:F2:27:B9:D1:70:71:ED:E9:05:9C:F9:36:8D:BF:3D
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366353a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3f5::/48
Signature Algorithm: sha256WithRSAEncryption
11:7d:07:ea:42:7a:bb:09:bd:fe:27:1f:ce:c1:87:6b:2e:4c:
92:03:0c:da:81:b5:d6:31:d2:73:5d:24:97:14:6b:65:de:c6:
d5:a1:dd:fb:7f:0c:49:44:9a:82:4a:01:be:8e:b0:18:c4:83:
6d:89:80:c2:12:00:55:e3:38:8a:54:19:d7:82:69:8d:01:c6:
0c:fa:8e:7a:21:38:db:c0:65:a5:f6:94:91:71:75:f5:a3:8e:
cc:bf:49:fc:b0:3b:0a:88:27:95:df:61:af:48:61:eb:d8:a2:
79:14:97:08:af:41:5c:88:e4:04:8d:45:3c:86:04:d4:e9:7b:
c8:5f:15:f0:93:31:1d:6a:fd:22:2a:7a:9a:ee:cf:7e:c6:ae:
19:6f:ec:45:42:25:e7:1d:0f:00:9e:26:bc:07:ae:74:6c:6b:
6b:be:33:13:2a:a2:9c:32:3b:e9:da:86:b4:35:3f:9b:71:97:
8b:dc:bf:4f:1b:8f:e3:48:a3:45:23:b1:c9:53:13:9d:66:d2:
06:37:2d:ea:1d:8b:af:70:45:49:b4:ce:85:6f:e2:46:a3:d6:
39:c7:48:55:25:06:a2:30:dd:7f:be:8d:f3:ba:e6:bc:78:bf:
2f:58:3d:81:40:68:dc:0d:3d:2a:15:18:cf:ab:f2:46:11:e7:
1b:a6:86:19
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUO2i1ICuzVhRmFAwnYiV3GY3wtwMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1NDdaFw0yMzA5MjUxMTAwNDdaMDMxMTAvBgNV
BAMTKEQ5RDk3Q0NFNTFGMjI3QjlEMTcwNzFFREU5MDU5Q0Y5MzY4REJGM0QwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8g6dWtyLEqJF+26S13AYkfkPx
r98w2t0KrZfj02o+pVjLCPfhote7NBrIClQzOCxfpuU/lSKw3JT+6peMPYatrDI/
75WkW4ew4LFTv+irfplClnPs0pbtIU0EXvX2ep36h9YN7NLOGUsRJqYyCZScWRrR
cOa2DnRGx2QqdKD+ejYyYHlTafps1y/2gR0sUoc5ExBmkJgrt/YC/4MiYQldDx0e
+z1hwLddrUEjbFn/8KHumkfEAEjXOVjLHyMX2UJous3H+xweXsh5xoWNi6n5HAm8
2uttoGsrdzC5th95f74BUwvxx2CSiMCqiINkbnhXCocW+eP1Vd+0+vihMTAxAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQU2dl8zlHyJ7nRcHHt6QWc+TaNvz0wHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzM2NjM1M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
9TANBgkqhkiG9w0BAQsFAAOCAQEAEX0H6kJ6uwm9/icfzsGHay5MkgMM2oG11jHS
c10klxRrZd7G1aHd+38MSUSagkoBvo6wGMSDbYmAwhIAVeM4ilQZ14JpjQHGDPqO
eiE428BlpfaUkXF19aOOzL9J/LA7Cognld9hr0hh69iieRSXCK9BXIjkBI1FPIYE
1Ol7yF8V8JMxHWr9Iip6mu7PfsauGW/sRUIl5x0PAJ4mvAeudGxra74zEyqinDI7
6dqGtDU/m3GXi9y/TxuP40ijRSOxyVMTnWbSBjct6h2Lr3BFSbTOhW/iRqPWOcdI
VSUGojDdf76N87rmvHi/L1g9gUBo3A09KhUYz6vyRhHnG6aGGQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org