Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64303a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a64303a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: TIj6ZqkiW/GglGRHpo5o15zzGgUc8BEtV5s4lnKgKqE=
Subject key identifier: B4:A0:5B:93:F3:CA:9B:9D:82:CE:FB:74:5D:D9:10:4C:84:A0:04:84
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1B25D42CA68A7407586A610E3320353C3C21C278
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64303a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:53 +0000
ROA not before: Mon 26 Sep 2022 07:56:53 +0000
ROA not after: Mon 25 Sep 2023 08:01:53 +0000
asID: 59282
IP address blocks: 2400:d680:d0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:25:d4:2c:a6:8a:74:07:58:6a:61:0e:33:20:35:3c:3c:21:c2:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:53 2022 GMT
Not After : Sep 25 08:01:53 2023 GMT
Subject: CN=B4A05B93F3CA9B9D82CEFB745DD9104C84A00484
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:d6:3d:0a:a2:5f:90:44:ab:de:e6:e6:14:eb:
3f:56:36:1a:d5:08:7e:b2:bc:ce:4d:94:bd:3d:cf:
61:4d:12:53:d0:a6:a0:55:71:97:8c:5e:68:c5:b3:
ef:61:33:75:dd:52:76:8a:d7:7a:b1:ca:2e:a7:13:
76:58:2a:7d:85:e4:f5:73:cb:83:e1:15:54:0f:a1:
d4:1e:3d:73:37:5e:55:7f:19:ce:e0:90:3a:f9:23:
e4:fc:24:c1:6a:aa:00:2d:ef:9d:8e:9f:90:32:0f:
0f:84:9b:b0:72:ba:3f:15:8b:79:e2:f3:b3:2c:67:
76:f2:e6:ab:5b:24:60:fc:a8:75:14:a1:89:08:ee:
af:d3:f0:90:1b:74:a8:0e:cd:76:91:b1:d0:f7:f3:
ce:8c:c8:28:82:39:91:37:16:8a:7e:07:51:74:e1:
0e:b1:15:5c:84:85:78:6c:4f:b9:5e:a2:40:52:53:
59:9f:ec:9b:cb:9e:b1:96:d0:fa:c4:bc:e1:9a:a3:
19:da:f3:20:ba:66:71:86:20:17:70:4f:13:cd:d0:
2e:0c:4d:8d:a1:52:26:8e:b5:19:8f:0a:69:62:fd:
0a:b6:8e:b6:01:a0:cf:bd:bb:7b:92:a2:c7:98:b6:
97:a3:c4:e8:87:9d:27:46:e1:d4:e0:c8:3e:03:06:
ef:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:A0:5B:93:F3:CA:9B:9D:82:CE:FB:74:5D:D9:10:4C:84:A0:04:84
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64303a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:d0::/48
Signature Algorithm: sha256WithRSAEncryption
d1:89:8e:e9:59:40:42:ec:43:ae:78:0f:b3:e1:95:b6:2e:86:
ad:8b:0e:7b:22:b9:35:c6:6b:c6:10:a2:46:c2:14:20:1c:6f:
e4:3a:f0:8d:a1:15:b6:a5:27:b1:a0:30:91:e0:2c:5a:00:5e:
59:a7:06:d6:ca:05:43:e1:26:33:d5:d7:41:2a:ed:fa:91:36:
41:49:bb:dd:12:9a:8c:74:0e:24:31:52:87:30:ad:11:30:4d:
40:74:31:81:46:7d:ca:25:ec:21:e1:7c:ed:80:0a:f3:6a:37:
ac:23:16:1f:5a:f9:3f:6d:b6:72:ca:ef:bf:b4:47:d8:b8:29:
b9:1b:48:f6:64:fe:c8:da:49:44:c7:d5:8d:a2:05:82:d9:91:
3c:55:7e:ff:3a:60:d2:7c:53:30:26:63:a9:fa:e2:1c:35:e1:
21:37:73:c8:73:ab:35:63:15:5e:1d:23:36:57:77:77:79:1d:
0b:38:de:28:08:2c:29:a9:19:ee:7e:f3:5f:9f:d4:90:cf:f5:
75:a9:05:93:1c:7f:15:9a:38:49:fa:93:1d:07:d3:ba:9b:33:
fe:f2:c7:28:da:64:e3:71:85:c6:39:bb:6d:74:c8:15:70:b7:
5a:df:c2:73:08:4a:bc:85:de:e6:c4:e8:06:fc:d5:45:bb:94:
40:dc:24:34
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUGyXULKaKdAdYamEOMyA1PDwhwngwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2NTNaFw0yMzA5MjUwODAxNTNaMDMxMTAvBgNV
BAMTKEI0QTA1QjkzRjNDQTlCOUQ4MkNFRkI3NDVERDkxMDRDODRBMDA0ODQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDv1j0Kol+QRKve5uYU6z9WNhrV
CH6yvM5NlL09z2FNElPQpqBVcZeMXmjFs+9hM3XdUnaK13qxyi6nE3ZYKn2F5PVz
y4PhFVQPodQePXM3XlV/Gc7gkDr5I+T8JMFqqgAt752On5AyDw+Em7Byuj8Vi3ni
87MsZ3by5qtbJGD8qHUUoYkI7q/T8JAbdKgOzXaRsdD3886MyCiCOZE3Fop+B1F0
4Q6xFVyEhXhsT7leokBSU1mf7JvLnrGW0PrEvOGaoxna8yC6ZnGGIBdwTxPN0C4M
TY2hUiaOtRmPCmli/Qq2jrYBoM+9u3uSoseYtpejxOiHnSdG4dTgyD4DBu+DAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUtKBbk/PKm52Czvt0XdkQTISgBIQwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjQzMDNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAANAw
DQYJKoZIhvcNAQELBQADggEBANGJjulZQELsQ654D7PhlbYuhq2LDnsiuTXGa8YQ
okbCFCAcb+Q68I2hFbalJ7GgMJHgLFoAXlmnBtbKBUPhJjPV10Eq7fqRNkFJu90S
mox0DiQxUocwrREwTUB0MYFGfcol7CHhfO2ACvNqN6wjFh9a+T9ttnLK77+0R9i4
KbkbSPZk/sjaSUTH1Y2iBYLZkTxVfv86YNJ8UzAmY6n64hw14SE3c8hzqzVjFV4d
IzZXd3d5HQs43igILCmpGe5+81+f1JDP9XWpBZMcfxWaOEn6kx0H07qbM/7yxyja
ZONxhcY5u210yBVwt1rfwnMISryF3ubE6Ab81UW7lEDcJDQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org