Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a3366643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: QE2hvdlPxuiXR50J1rMoJ7nbp5DWY+F2rLQr2+QJOhI=
Subject key identifier: 87:CA:A7:87:90:54:F3:34:2A:07:68:C5:AA:59:6F:D7:B1:0D:A3:69
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 202156E8EC22E445E172B0EE94502806DF3B8C66
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 11:00:43 +0000
ROA not before: Mon 26 Sep 2022 10:55:43 +0000
ROA not after: Mon 25 Sep 2023 11:00:43 +0000
asID: 59282
IP address blocks: 2400:d680:3fd::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:21:56:e8:ec:22:e4:45:e1:72:b0:ee:94:50:28:06:df:3b:8c:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 10:55:43 2022 GMT
Not After : Sep 25 11:00:43 2023 GMT
Subject: CN=87CAA7879054F3342A0768C5AA596FD7B10DA369
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:10:71:34:1d:48:66:15:bf:95:d0:fa:d2:70:
2f:57:3b:e9:fa:8f:36:0d:5b:d3:d5:22:ca:64:9e:
2d:1b:c0:55:03:47:b6:8d:54:32:d6:57:61:67:09:
5f:5f:58:91:54:d6:62:7c:6d:73:4d:c0:b5:9c:ed:
18:e4:ab:05:c0:f8:51:54:b5:c9:da:3e:86:66:b6:
fc:42:52:00:4d:f1:15:a3:89:8f:9f:34:d9:7d:cb:
4c:ce:f5:1e:bd:f5:9e:d9:75:d5:dc:5d:18:34:3d:
9f:70:93:d0:8d:78:88:55:c0:e2:c8:b9:6f:0e:70:
f8:b3:70:18:fd:a9:61:31:0b:a3:f4:ba:2d:62:e1:
3a:37:01:4c:a0:45:cc:a6:e3:8f:7c:04:b3:66:4c:
4f:a7:19:bf:21:1b:19:af:bb:a4:38:8e:1a:09:a9:
1a:16:81:5f:51:2c:45:1b:b5:a5:b5:89:21:95:f8:
8a:3d:c5:99:29:58:1f:12:17:a2:72:a9:9d:c1:9d:
ab:d8:87:d6:90:91:66:61:5d:12:fb:10:1f:06:df:
f8:25:f2:67:13:d8:b4:f5:bc:50:0c:42:4f:04:50:
f2:f9:7e:ad:81:0c:52:fb:ec:81:35:2a:53:8d:55:
f0:08:e2:35:a9:d7:53:e2:44:a1:ac:af:05:f2:7c:
54:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:CA:A7:87:90:54:F3:34:2A:07:68:C5:AA:59:6F:D7:B1:0D:A3:69
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a3366643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:3fd::/48
Signature Algorithm: sha256WithRSAEncryption
92:a5:dc:4b:3f:17:2c:f1:73:4e:61:13:2d:b0:10:07:b2:b9:
aa:d3:e0:f0:66:78:c8:5e:d0:3f:d9:9a:6a:40:c3:9f:d8:97:
25:57:59:4c:a0:18:87:44:63:4e:83:3e:6c:c0:38:a7:32:0e:
b3:72:df:0f:f8:3e:ac:f0:9b:d1:50:77:e9:38:4d:e2:c9:1b:
f1:76:32:3d:e2:04:32:1f:7c:b3:82:a5:5d:49:66:df:1c:41:
44:f7:7d:87:58:ce:b8:9a:ff:6f:9d:49:a5:76:3e:b3:15:f0:
91:50:de:95:97:dd:6e:8f:55:21:d0:fb:04:0c:2e:7d:be:91:
3c:bc:88:70:31:78:c9:43:ff:b3:dd:ff:9b:bd:21:af:06:c3:
02:82:de:b5:70:a8:15:4c:6c:6a:67:c8:90:90:80:40:aa:4b:
68:6f:55:15:4a:35:18:19:43:c2:65:6a:0d:02:d5:69:83:45:
35:72:9a:62:96:82:86:50:b1:5a:98:6b:33:02:7b:1b:b1:3a:
5a:61:1c:a8:4e:36:bf:63:ac:56:89:00:d9:1a:67:c4:55:93:
1f:13:5e:27:74:64:2c:b7:15:49:61:39:67:2f:20:32:c0:76:
91:93:27:71:f8:80:99:24:c0:c1:59:a8:40:c5:6a:43:f5:68:
49:15:d2:87
-----BEGIN CERTIFICATE-----
MIIFMTCCBBmgAwIBAgIUICFW6Owi5EXhcrDulFAoBt87jGYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYxMDU1NDNaFw0yMzA5MjUxMTAwNDNaMDMxMTAvBgNV
BAMTKDg3Q0FBNzg3OTA1NEYzMzQyQTA3NjhDNUFBNTk2RkQ3QjEwREEzNjkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwEHE0HUhmFb+V0PrScC9XO+n6
jzYNW9PVIspkni0bwFUDR7aNVDLWV2FnCV9fWJFU1mJ8bXNNwLWc7RjkqwXA+FFU
tcnaPoZmtvxCUgBN8RWjiY+fNNl9y0zO9R699Z7ZddXcXRg0PZ9wk9CNeIhVwOLI
uW8OcPizcBj9qWExC6P0ui1i4To3AUygRcym4498BLNmTE+nGb8hGxmvu6Q4jhoJ
qRoWgV9RLEUbtaW1iSGV+Io9xZkpWB8SF6JyqZ3BnavYh9aQkWZhXRL7EB8G3/gl
8mcT2LT1vFAMQk8EUPL5fq2BDFL77IE1KlONVfAI4jWp11PiRKGsrwXyfFRtAgMB
AAGjggI7MIICNzAdBgNVHQ4EFgQUh8qnh5BU8zQqB2jFqllv17ENo2kwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgagGCCsGAQUFBwELBIGbMIGYMIGVBggrBgEFBQcwC4aBiHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzM2NjY0M2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzUzOTMyMzgzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQA1oAD
/TANBgkqhkiG9w0BAQsFAAOCAQEAkqXcSz8XLPFzTmETLbAQB7K5qtPg8GZ4yF7Q
P9maakDDn9iXJVdZTKAYh0RjToM+bMA4pzIOs3LfD/g+rPCb0VB36ThN4skb8XYy
PeIEMh98s4KlXUlm3xxBRPd9h1jOuJr/b51JpXY+sxXwkVDelZfdbo9VIdD7BAwu
fb6RPLyIcDF4yUP/s93/m70hrwbDAoLetXCoFUxsamfIkJCAQKpLaG9VFUo1GBlD
wmVqDQLVaYNFNXKaYpaChlCxWphrMwJ7G7E6WmEcqE42v2OsVokA2RpnxFWTHxNe
J3RkLLcVSWE5Zy8gMsB2kZMncfiAmSTAwVmoQMVqQ/VoSRXShw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org