Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38633a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a38633a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: 3tk7U+nKoQPxEAfxHOOw/yLNe0KAB9wP6JTqUfaDUw0=
Subject key identifier: 3E:B3:97:63:2B:0F:DF:92:ED:63:06:B9:B7:95:EB:13:38:F7:8C:6A
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 62842CBBB854270D88D64F9AC9D8DDB6251E51C5
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38633a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:56 +0000
ROA not before: Mon 26 Sep 2022 07:56:56 +0000
ROA not after: Mon 25 Sep 2023 08:01:56 +0000
asID: 59282
IP address blocks: 2400:d680:8c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:84:2c:bb:b8:54:27:0d:88:d6:4f:9a:c9:d8:dd:b6:25:1e:51:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:56 2022 GMT
Not After : Sep 25 08:01:56 2023 GMT
Subject: CN=3EB397632B0FDF92ED6306B9B795EB1338F78C6A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:06:26:34:e9:40:bf:11:7c:4f:29:0a:86:26:
c2:d9:28:66:6e:4c:11:04:ee:40:bc:04:e8:8a:50:
fb:48:83:d0:11:db:ac:f4:2a:d7:ac:c8:5a:0b:ed:
41:b4:b6:53:28:92:bd:f0:49:2c:5c:6b:96:4b:a0:
5c:10:ce:c3:cb:8c:59:06:a7:ec:5e:42:39:a3:e7:
69:f8:bf:40:07:5a:93:ee:d0:9e:56:d8:4f:35:d3:
d4:c8:ed:70:bf:76:15:68:fe:d1:2e:fd:68:49:26:
eb:08:54:59:76:44:a2:6f:ec:0d:89:02:cc:16:8f:
c4:f5:1a:c9:5f:31:cf:3f:a3:cf:1e:83:68:62:2e:
e2:b0:5c:3d:cf:06:ef:69:37:ec:2f:db:c5:f0:03:
5f:a4:a4:82:da:ce:1e:0d:fc:2c:0e:66:59:7c:87:
21:28:d3:e1:ca:4d:a2:ac:a8:54:60:6c:5f:40:ab:
4f:0e:c1:94:29:9c:79:e4:d9:35:b4:7b:28:a1:43:
2e:6b:17:30:0e:3e:38:7b:46:c4:15:9f:98:d8:1f:
4f:dd:c8:d5:69:d9:45:d2:37:fa:dc:21:c8:25:aa:
88:c1:a5:c1:af:99:09:1e:cf:cb:d3:e5:71:30:7b:
3d:fe:89:89:e5:56:5d:ee:b7:e0:74:e9:ba:60:89:
42:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B3:97:63:2B:0F:DF:92:ED:63:06:B9:B7:95:EB:13:38:F7:8C:6A
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a38633a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:8c::/48
Signature Algorithm: sha256WithRSAEncryption
a3:ec:c4:4e:30:82:40:33:1d:ab:44:de:1d:dc:45:38:85:d8:
45:64:8b:65:2d:fe:af:f6:43:2e:11:ff:21:c7:15:11:12:39:
00:5f:b8:54:e9:15:7f:87:24:27:77:9b:c2:64:9a:c8:4b:8a:
17:61:a6:b5:5b:f0:a3:71:13:ce:ba:36:8d:ae:d1:17:06:01:
09:2c:c1:dc:30:2b:82:cb:80:9b:8c:3c:77:9e:e3:98:68:7c:
c2:f0:43:13:8b:8a:60:3e:82:3c:e3:71:d7:35:28:7d:9e:63:
87:32:b6:b0:4f:5f:6d:ad:eb:b9:45:09:27:92:03:ac:f9:e3:
50:c2:8c:70:78:7c:52:9b:d5:e5:72:00:dd:d2:9f:60:ad:1c:
a5:c5:94:1b:d3:ab:b6:07:a5:cf:b8:71:82:d6:db:75:3a:e6:
0d:a9:f5:e0:58:9b:3e:3e:97:7e:f9:d3:55:03:f8:7e:da:65:
56:83:20:09:00:17:01:aa:89:74:19:2a:b9:0e:25:6a:4e:e1:
f1:fd:19:a2:36:64:35:09:3b:3a:ff:e3:d2:67:72:7c:39:6f:
50:3a:83:84:49:6e:00:89:df:e8:69:9e:a2:23:b9:4e:ba:04:
cf:fd:06:b2:c0:a1:ff:46:61:bb:78:bc:d0:68:63:74:2f:11:
b6:61:4c:32
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUYoQsu7hUJw2I1k+aydjdtiUeUcUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2NTZaFw0yMzA5MjUwODAxNTZaMDMxMTAvBgNV
BAMTKDNFQjM5NzYzMkIwRkRGOTJFRDYzMDZCOUI3OTVFQjEzMzhGNzhDNkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtBiY06UC/EXxPKQqGJsLZKGZu
TBEE7kC8BOiKUPtIg9AR26z0KtesyFoL7UG0tlMokr3wSSxca5ZLoFwQzsPLjFkG
p+xeQjmj52n4v0AHWpPu0J5W2E8109TI7XC/dhVo/tEu/WhJJusIVFl2RKJv7A2J
AswWj8T1GslfMc8/o88eg2hiLuKwXD3PBu9pN+wv28XwA1+kpILazh4N/CwOZll8
hyEo0+HKTaKsqFRgbF9Aq08OwZQpnHnk2TW0eyihQy5rFzAOPjh7RsQVn5jYH0/d
yNVp2UXSN/rcIcglqojBpcGvmQkez8vT5XEwez3+iYnlVl3ut+B06bpgiUJLAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUPrOXYysP35LtYwa5t5XrEzj3jGowHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhMzg2MzNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAIww
DQYJKoZIhvcNAQELBQADggEBAKPsxE4wgkAzHatE3h3cRTiF2EVki2Ut/q/2Qy4R
/yHHFRESOQBfuFTpFX+HJCd3m8JkmshLihdhprVb8KNxE866No2u0RcGAQkswdww
K4LLgJuMPHee45hofMLwQxOLimA+gjzjcdc1KH2eY4cytrBPX22t67lFCSeSA6z5
41DCjHB4fFKb1eVyAN3Sn2CtHKXFlBvTq7YHpc+4cYLW23U65g2p9eBYmz4+l375
01UD+H7aZVaDIAkAFwGqiXQZKrkOJWpO4fH9GaI2ZDUJOzr/49Jncnw5b1A6g4RJ
bgCJ3+hpnqIjuU66BM/9BrLAof9GYbt4vNBoY3QvEbZhTDI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org