Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37313a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a37313a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: Vn0dcQjVNdre21oJdntDgB6XoOXM9KBGFvhE7hB9vYk=
Subject key identifier: 1A:BB:26:FB:C0:D6:BD:90:2C:B4:F7:F0:F4:74:F1:4B:00:32:2C:50
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 149FB94F2C154F62E1A7409D572393FCD2EF110A
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37313a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:32 +0000
ROA not before: Mon 26 Sep 2022 07:56:32 +0000
ROA not after: Mon 25 Sep 2023 08:01:32 +0000
asID: 59282
IP address blocks: 2400:d680:71::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:9f:b9:4f:2c:15:4f:62:e1:a7:40:9d:57:23:93:fc:d2:ef:11:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:32 2022 GMT
Not After : Sep 25 08:01:32 2023 GMT
Subject: CN=1ABB26FBC0D6BD902CB4F7F0F474F14B00322C50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:66:74:46:81:7a:bf:76:d7:d8:d2:92:88:08:
26:3e:35:b5:46:3a:ad:fc:6e:2b:5e:a4:3c:8f:95:
98:a7:83:72:3e:40:f9:52:95:34:7d:87:dc:a0:86:
ae:1a:3f:0d:c5:2d:3a:ea:d5:47:55:5c:99:f7:f8:
c8:24:40:8a:45:69:32:79:71:9c:ab:85:26:30:a9:
8d:c7:f6:aa:8c:29:ad:67:f0:0b:33:f3:c7:54:d5:
0d:c9:05:8a:e6:99:36:99:40:2f:99:da:f0:e2:9f:
a3:5b:01:19:30:1c:ff:35:de:04:4d:13:09:9c:9c:
0f:4f:3e:fa:bf:ba:2b:44:d9:a0:68:02:a1:5a:65:
46:8f:77:ce:c1:c1:dc:8c:98:fa:b4:1c:ac:33:c6:
8c:69:8d:0e:73:25:5a:6d:18:54:4b:ed:54:90:49:
aa:5b:2e:db:06:fc:31:d8:d6:99:d7:8c:ec:07:ff:
8f:69:7f:eb:c2:5c:97:31:2c:23:e4:6b:8f:22:c5:
a7:98:9d:c4:00:49:26:41:d5:d0:ca:86:ba:97:de:
63:9c:4d:ee:35:84:6b:28:53:e5:e7:a0:f6:19:88:
95:69:fc:af:98:02:fe:eb:ff:21:7f:52:65:7b:65:
1e:81:61:4f:c1:a4:cd:3c:24:81:e6:a6:05:38:dc:
3a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:BB:26:FB:C0:D6:BD:90:2C:B4:F7:F0:F4:74:F1:4B:00:32:2C:50
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a37313a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:71::/48
Signature Algorithm: sha256WithRSAEncryption
d5:1c:5a:04:74:d3:d6:74:2c:70:2a:f3:1c:7e:cc:b6:5a:7c:
1e:9d:27:d2:20:8f:7d:2b:62:13:ca:c5:9f:0b:88:db:d0:7d:
b4:97:c1:a3:46:65:ce:b6:ec:e5:e2:87:20:41:fd:d1:00:c7:
77:b5:f7:5f:cf:5a:3c:51:75:f7:88:81:7a:d8:36:19:5f:0f:
7d:77:11:0f:4e:2a:47:dc:26:7d:b7:f0:ef:a6:61:52:50:a2:
e4:56:2b:6f:c6:b3:25:33:a7:18:0d:bf:04:78:81:8c:91:bb:
76:43:e0:f8:5d:56:94:e5:39:0a:6a:4d:33:bf:8e:a0:8d:10:
b1:f9:37:5b:12:62:a3:29:db:f3:8b:81:8c:44:8d:eb:b8:ea:
74:4f:07:31:9e:58:38:f9:9e:39:e2:db:58:da:64:00:7c:2a:
40:e2:41:69:fe:c6:14:2e:48:44:3a:20:eb:95:3c:12:5c:e8:
c0:c6:b0:3e:7f:79:c8:99:d1:fe:29:23:84:cf:8e:03:c2:a3:
24:e8:4e:62:b4:67:54:9f:26:68:24:fb:2d:ad:93:e6:9d:6b:
76:44:40:5b:5a:48:02:3b:ca:3a:7b:39:b7:ec:48:33:bf:29:
72:1b:18:06:5b:4c:84:b2:fe:bf:3c:55:cb:73:7a:f9:f0:0d:
3c:3f:21:1a
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUFJ+5TywVT2Lhp0CdVyOT/NLvEQowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MzJaFw0yMzA5MjUwODAxMzJaMDMxMTAvBgNV
BAMTKDFBQkIyNkZCQzBENkJEOTAyQ0I0RjdGMEY0NzRGMTRCMDAzMjJDNTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwZnRGgXq/dtfY0pKICCY+NbVG
Oq38bitepDyPlZing3I+QPlSlTR9h9yghq4aPw3FLTrq1UdVXJn3+MgkQIpFaTJ5
cZyrhSYwqY3H9qqMKa1n8Asz88dU1Q3JBYrmmTaZQC+Z2vDin6NbARkwHP813gRN
EwmcnA9PPvq/uitE2aBoAqFaZUaPd87BwdyMmPq0HKwzxoxpjQ5zJVptGFRL7VSQ
SapbLtsG/DHY1pnXjOwH/49pf+vCXJcxLCPka48ixaeYncQASSZB1dDKhrqX3mOc
Te41hGsoU+XnoPYZiJVp/K+YAv7r/yF/UmV7ZR6BYU/BpM08JIHmpgU43Do3AgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUGrsm+8DWvZAstPfw9HTxSwAyLFAwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzczMTNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAHEw
DQYJKoZIhvcNAQELBQADggEBANUcWgR009Z0LHAq8xx+zLZafB6dJ9Igj30rYhPK
xZ8LiNvQfbSXwaNGZc627OXihyBB/dEAx3e191/PWjxRdfeIgXrYNhlfD313EQ9O
KkfcJn238O+mYVJQouRWK2/GsyUzpxgNvwR4gYyRu3ZD4PhdVpTlOQpqTTO/jqCN
ELH5N1sSYqMp2/OLgYxEjeu46nRPBzGeWDj5njni21jaZAB8KkDiQWn+xhQuSEQ6
IOuVPBJc6MDGsD5/eciZ0f4pI4TPjgPCoyToTmK0Z1SfJmgk+y2tk+ada3ZEQFta
SAI7yjp7ObfsSDO/KXIbGAZbTISy/r88VctzevnwDTw/IRo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org