Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a36643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: TZhDaoBNlC/nu3h4SqsypfJx1YrkxWW0KXdNhYzVEew=
Subject key identifier: B9:8B:2D:58:86:1F:DA:15:C2:00:75:BC:39:C3:8F:54:69:8F:F2:E7
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 4959A1D4E49FCDD4EEAFC1D2B2A5C9C3736617ED
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:06 +0000
ROA not before: Mon 26 Sep 2022 07:57:06 +0000
ROA not after: Mon 25 Sep 2023 08:02:06 +0000
asID: 59282
IP address blocks: 2400:d680:6d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:59:a1:d4:e4:9f:cd:d4:ee:af:c1:d2:b2:a5:c9:c3:73:66:17:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:06 2022 GMT
Not After : Sep 25 08:02:06 2023 GMT
Subject: CN=B98B2D58861FDA15C20075BC39C38F54698FF2E7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a4:4d:0b:52:ee:ff:71:46:79:65:59:58:77:
81:2c:62:b2:03:44:de:49:4a:5b:66:a9:52:05:ef:
f3:80:a7:85:cb:dd:67:09:be:8c:a2:e8:4d:f6:24:
ec:00:7f:fd:86:1f:f5:dc:ca:9b:2e:ae:01:77:1c:
28:a8:0d:5a:46:9d:5f:bb:e7:35:5a:a9:a8:d5:6d:
06:26:35:13:a0:e4:61:53:de:a3:87:5b:0d:ef:b6:
cf:77:aa:ee:37:2d:23:8f:5e:f7:d6:93:18:c4:18:
04:32:20:95:1d:19:53:2e:1f:5e:73:c9:aa:73:d7:
d5:ca:9a:76:36:0f:6c:fc:cb:d5:82:63:b7:1c:5a:
72:c3:b1:dc:0a:6c:b9:cc:23:59:83:88:11:d0:55:
e1:8a:3b:9e:d5:14:cf:0c:c9:56:20:ae:16:b3:9a:
45:cb:42:b7:5e:8b:a1:13:76:87:b7:42:22:5b:33:
3c:46:e7:e5:45:24:31:5d:7f:9f:b9:90:bd:37:4e:
62:b8:03:86:33:32:ce:90:38:25:dd:64:0e:cc:8e:
e5:fb:5c:8c:ad:76:76:c9:80:24:81:a5:51:5f:92:
3f:a5:3d:d8:1a:ab:bc:2b:9b:10:d2:7f:a3:20:ca:
06:dd:bb:46:ee:96:52:fa:50:6c:61:73:ed:76:67:
be:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:8B:2D:58:86:1F:DA:15:C2:00:75:BC:39:C3:8F:54:69:8F:F2:E7
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a36643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:6d::/48
Signature Algorithm: sha256WithRSAEncryption
3d:b0:83:f3:f2:23:2c:a9:cb:95:0f:dc:6e:4f:7c:fa:ec:df:
ea:2d:a2:92:44:8a:e0:55:d2:4e:f1:7e:9b:e7:fd:42:a4:16:
63:8a:45:3c:b1:a3:d5:73:cc:0b:f6:3f:63:68:be:bc:45:bd:
b5:a3:4a:9f:12:73:e4:f8:e6:96:89:3e:2e:d3:fa:18:d7:b0:
93:cd:5f:90:54:f5:32:8e:33:6a:c7:05:e9:1d:a8:9c:a8:5b:
34:c1:78:12:1f:21:a1:26:ab:9b:7c:d3:9c:d2:a2:d9:c7:83:
55:24:c4:b3:1e:68:1d:26:d6:93:e2:26:06:67:b1:97:c4:90:
0f:ff:6e:bf:65:c1:96:86:31:2d:47:6e:a2:ae:e6:77:d5:e1:
17:d3:34:52:e6:8f:1f:27:c1:a5:87:37:5f:61:8d:0d:f8:2e:
a7:f3:5f:d6:7a:f1:17:ad:77:d5:2c:87:5a:1e:64:89:0a:f8:
35:6e:23:3b:03:ac:f2:38:ed:3f:54:30:0e:6e:4c:04:81:8c:
20:ba:14:48:a9:b0:12:29:1b:92:fd:1d:4c:db:fd:a1:67:74:
49:53:1d:aa:43:2c:a8:0f:b0:f4:33:9c:34:2f:9a:3e:6c:62:
29:31:53:32:b7:3b:4d:6e:5a:75:2f:e0:ad:69:29:e7:1c:ec:
f7:a8:25:8a
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUSVmh1OSfzdTur8HSsqXJw3NmF+0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MDZaFw0yMzA5MjUwODAyMDZaMDMxMTAvBgNV
BAMTKEI5OEIyRDU4ODYxRkRBMTVDMjAwNzVCQzM5QzM4RjU0Njk4RkYyRTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwpE0LUu7/cUZ5ZVlYd4EsYrID
RN5JSltmqVIF7/OAp4XL3WcJvoyi6E32JOwAf/2GH/XcypsurgF3HCioDVpGnV+7
5zVaqajVbQYmNROg5GFT3qOHWw3vts93qu43LSOPXvfWkxjEGAQyIJUdGVMuH15z
yapz19XKmnY2D2z8y9WCY7ccWnLDsdwKbLnMI1mDiBHQVeGKO57VFM8MyVYgrhaz
mkXLQrdei6ETdoe3QiJbMzxG5+VFJDFdf5+5kL03TmK4A4YzMs6QOCXdZA7MjuX7
XIytdnbJgCSBpVFfkj+lPdgaq7wrmxDSf6Mgygbdu0bullL6UGxhc+12Z74/AgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUuYstWIYf2hXCAHW8OcOPVGmP8ucwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzY2NDNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAG0w
DQYJKoZIhvcNAQELBQADggEBAD2wg/PyIyypy5UP3G5PfPrs3+otopJEiuBV0k7x
fpvn/UKkFmOKRTyxo9VzzAv2P2NovrxFvbWjSp8Sc+T45paJPi7T+hjXsJPNX5BU
9TKOM2rHBekdqJyoWzTBeBIfIaEmq5t805zSotnHg1UkxLMeaB0m1pPiJgZnsZfE
kA//br9lwZaGMS1HbqKu5nfV4RfTNFLmjx8nwaWHN19hjQ34LqfzX9Z68Retd9Us
h1oeZIkK+DVuIzsDrPI47T9UMA5uTASBjCC6FEipsBIpG5L9HUzb/aFndElTHapD
LKgPsPQznDQvmj5sYikxUzK3O01uWnUv4K1pKecc7PeoJYo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org