Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: AQJjT2CiDpeBlW0O1NFmSP2kJsQ6dl2otZFuV/LbTBk=
Subject key identifier: 63:F3:B3:B3:C1:86:E7:D3:05:1A:B7:F1:80:8B:F0:80:A8:4B:40:D4
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 75EEF90FDA4350D82224E903A5CD4BDA0D19D10E
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 07:00:03 +0000
ROA not before: Mon 26 Sep 2022 06:55:03 +0000
ROA not after: Mon 25 Sep 2023 07:00:03 +0000
asID: 59282
IP address blocks: 2400:d680:d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:ee:f9:0f:da:43:50:d8:22:24:e9:03:a5:cd:4b:da:0d:19:d1:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 06:55:03 2022 GMT
Not After : Sep 25 07:00:03 2023 GMT
Subject: CN=63F3B3B3C186E7D3051AB7F1808BF080A84B40D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8b:ea:31:d7:bf:3c:79:50:91:03:b8:be:31:
03:fb:78:be:0d:6d:5d:2f:b8:8d:b6:53:f9:fc:1c:
99:da:82:5a:84:69:a3:1c:a5:a9:ac:a3:d2:2e:61:
3c:7b:3f:35:46:f7:c6:1a:ae:c9:19:4f:1a:4b:bb:
54:e9:60:69:61:5b:52:ce:84:7b:13:33:03:ba:d5:
18:3e:8b:f6:5b:d0:c9:19:4e:6a:55:15:f8:ec:df:
1c:a9:c8:c3:a7:28:6e:5e:22:f2:77:5e:e9:94:49:
c1:36:df:d4:7e:5e:f9:76:d8:14:eb:7e:ae:82:4a:
69:64:95:dd:40:63:03:55:71:7c:af:a0:f9:b8:f8:
ae:f5:e7:62:b7:be:ef:d2:e3:17:f6:b8:5b:de:2f:
da:d3:db:b3:22:d7:bb:3f:73:d9:e4:dd:48:55:d4:
ae:e6:d5:56:f7:ea:e1:76:50:8f:31:70:56:89:7d:
bd:e8:14:6a:74:0d:0e:99:e6:e4:db:60:6e:8a:0e:
9e:c9:cf:7f:03:61:b8:18:54:d1:71:86:aa:1a:9a:
65:99:cd:e2:59:c5:30:c2:8b:78:7b:2c:2f:8b:75:
33:85:28:b6:9a:7b:8e:92:e3:db:a5:b6:b7:8b:b8:
17:a8:6b:ba:1a:0c:e8:b3:b5:4c:9b:42:91:35:04:
37:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:F3:B3:B3:C1:86:E7:D3:05:1A:B7:F1:80:8B:F0:80:A8:4B:40:D4
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:d::/48
Signature Algorithm: sha256WithRSAEncryption
47:33:77:38:0c:a4:85:3e:92:d5:7d:ad:be:9f:c5:c0:0e:3b:
4b:8b:ea:ff:ef:aa:76:4f:ae:af:25:e9:66:a9:2b:d6:d9:52:
c9:a8:81:3d:7d:ad:ba:f3:5c:01:af:ec:74:b1:02:a6:c2:5f:
11:b4:91:c5:c7:c7:42:c5:c6:2c:0e:66:ba:11:fd:54:0e:d2:
ea:49:a6:a7:de:4b:af:ae:1d:58:df:e4:e3:0a:51:bc:81:41:
99:e4:74:aa:97:11:b4:a4:1a:40:f3:8b:2f:cd:1e:1e:b9:0f:
38:39:e4:3a:1c:0d:7e:04:3f:93:e6:bb:4d:fd:76:e3:73:f6:
fb:7a:17:2c:2f:56:1d:3c:a4:0c:97:08:ce:56:a9:64:98:da:
18:24:09:97:b4:5d:22:b1:5e:4c:72:40:71:ac:c1:de:0c:a1:
ff:04:0c:c5:f0:3e:fa:4c:88:2e:27:39:6e:4b:87:89:e4:9d:
14:a2:43:1a:1d:ac:a7:6e:5b:9a:69:80:4d:7e:a0:6e:ea:9e:
c3:d0:0f:d9:dd:34:2c:d7:1c:19:13:57:58:b2:08:8d:76:e2:
c9:3a:9a:cf:a6:85:f3:e3:e6:28:26:82:dd:e4:a7:40:7d:2c:
69:f1:7f:31:4d:1e:68:6a:a6:1b:e0:ab:5d:8c:d8:41:b2:cd:
51:c7:f9:49
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgIUde75D9pDUNgiJOkDpc1L2g0Z0Q4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNjU1MDNaFw0yMzA5MjUwNzAwMDNaMDMxMTAvBgNV
BAMTKDYzRjNCM0IzQzE4NkU3RDMwNTFBQjdGMTgwOEJGMDgwQTg0QjQwRDQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBi+ox1788eVCRA7i+MQP7eL4N
bV0vuI22U/n8HJnaglqEaaMcpamso9IuYTx7PzVG98YarskZTxpLu1TpYGlhW1LO
hHsTMwO61Rg+i/Zb0MkZTmpVFfjs3xypyMOnKG5eIvJ3XumUScE239R+Xvl22BTr
fq6CSmlkld1AYwNVcXyvoPm4+K7152K3vu/S4xf2uFveL9rT27Mi17s/c9nk3UhV
1K7m1Vb36uF2UI8xcFaJfb3oFGp0DQ6Z5uTbYG6KDp7Jz38DYbgYVNFxhqoammWZ
zeJZxTDCi3h7LC+LdTOFKLaae46S49ultreLuBeoa7oaDOiztUybQpE1BDfzAgMB
AAGjggI3MIICMzAdBgNVHQ4EFgQUY/Ozs8GG59MFGrfxgIvwgKhLQNQwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjQzYTNhMmYz
NDM4MmQzNDM4MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAJADWgAANMA0G
CSqGSIb3DQEBCwUAA4IBAQBHM3c4DKSFPpLVfa2+n8XADjtLi+r/76p2T66vJelm
qSvW2VLJqIE9fa2681wBr+x0sQKmwl8RtJHFx8dCxcYsDma6Ef1UDtLqSaan3kuv
rh1Y3+TjClG8gUGZ5HSqlxG0pBpA84svzR4euQ84OeQ6HA1+BD+T5rtN/Xbjc/b7
ehcsL1YdPKQMlwjOVqlkmNoYJAmXtF0isV5MckBxrMHeDKH/BAzF8D76TIguJzlu
S4eJ5J0UokMaHaynbluaaYBNfqBu6p7D0A/Z3TQs1xwZE1dYsgiNduLJOprPpoXz
4+YoJoLd5KdAfSxp8X8xTR5oaqYb4KtdjNhBss1Rx/lJ
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org