Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64613a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a64613a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: vQ7wiZiqoENCvQaNDAtrJ4Lm8SXagsmuNoSK4aVRy38=
Subject key identifier: 01:4A:7E:93:9A:12:1E:1D:68:56:FD:7D:D6:82:C5:2F:A2:DA:27:C8
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 7E7F77E4FFAF74782DAE3BFD58ECE5B72ED8785D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64613a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:51 +0000
ROA not before: Mon 26 Sep 2022 07:56:51 +0000
ROA not after: Mon 25 Sep 2023 08:01:51 +0000
asID: 59282
IP address blocks: 2400:d680:da::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:7f:77:e4:ff:af:74:78:2d:ae:3b:fd:58:ec:e5:b7:2e:d8:78:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:51 2022 GMT
Not After : Sep 25 08:01:51 2023 GMT
Subject: CN=014A7E939A121E1D6856FD7DD682C52FA2DA27C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:40:5e:4e:c6:ea:c9:5f:89:71:65:6b:06:1e:
b0:ce:19:01:5f:1f:ec:af:a8:31:01:01:20:dc:bb:
a1:dc:6d:0b:e3:ed:bf:40:52:a3:27:98:5b:82:27:
32:42:2f:45:56:f6:97:54:f3:27:ab:f3:1f:53:2c:
4b:de:cb:90:ef:fd:6e:88:96:57:c4:5e:72:dc:d9:
60:53:22:f0:0e:1c:72:60:86:cb:f1:7c:08:a4:48:
10:40:35:d2:4e:23:86:a5:37:88:43:a1:b3:91:7b:
13:f6:eb:bb:2d:15:db:55:6e:51:35:0e:7d:ce:07:
0b:23:2e:58:82:5b:8e:18:49:5e:82:7b:02:41:41:
70:87:6f:4a:f9:f8:bc:a3:e5:66:d9:9a:5d:48:ed:
72:05:62:b7:75:6a:cd:a3:27:f4:8e:eb:00:0c:c4:
33:66:80:c9:a1:a4:4b:45:0c:74:5d:c6:af:a0:9a:
b1:3e:bd:6d:18:da:e5:e8:16:51:ca:38:48:b8:41:
b3:16:ec:55:5d:65:d2:1c:b8:31:a9:30:31:a9:a3:
a8:cb:4c:38:f2:13:1a:9d:f6:9d:df:b9:e1:86:78:
fa:70:15:8d:db:23:72:82:ff:d1:63:fa:f9:17:c2:
5c:08:ee:1b:c4:c4:28:ab:31:4b:e8:99:c9:08:1d:
0d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:4A:7E:93:9A:12:1E:1D:68:56:FD:7D:D6:82:C5:2F:A2:DA:27:C8
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a64613a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:da::/48
Signature Algorithm: sha256WithRSAEncryption
9c:a5:7b:4f:00:26:36:30:43:14:ba:48:9e:36:66:a0:98:77:
6e:d5:db:52:b0:16:3e:31:9e:9c:77:b2:96:84:ee:7f:5c:ac:
15:a3:2a:6e:96:61:1c:de:c9:e0:b6:22:5e:e2:e0:59:b8:3e:
55:61:c8:04:dd:b3:26:59:24:e6:84:cb:d4:17:3c:01:a8:7a:
92:c6:61:01:89:4e:3e:22:85:c1:5c:a3:5f:0f:f3:66:41:f1:
af:32:e7:a6:24:55:ff:0f:0f:d3:26:2f:7e:aa:72:1d:eb:7e:
03:99:aa:58:1e:45:2c:3d:f5:27:5d:1f:3d:c8:42:47:95:e0:
6d:ac:bb:f4:06:8d:0e:c7:a5:db:64:78:ee:20:2a:97:2c:43:
b0:32:bc:40:78:4f:f6:f1:3f:45:b7:a2:11:74:8f:bd:ac:42:
34:11:fa:aa:59:30:6c:df:cf:21:3c:d3:73:bc:fd:19:52:bc:
d3:df:2e:aa:cb:f5:2b:46:c7:f6:f5:df:59:c3:aa:3c:38:07:
0a:a6:1c:01:0f:87:07:d4:5d:91:36:a2:bb:83:38:67:c5:8f:
22:f1:ec:93:55:4a:c9:74:9b:7d:cf:6c:1f:8b:bd:3d:a5:5b:
5f:59:d2:2e:51:2d:e3:cd:13:2c:3c:26:a2:65:58:fd:b2:96:
c6:eb:06:22
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUfn935P+vdHgtrjv9WOzlty7YeF0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2NTFaFw0yMzA5MjUwODAxNTFaMDMxMTAvBgNV
BAMTKDAxNEE3RTkzOUExMjFFMUQ2ODU2RkQ3REQ2ODJDNTJGQTJEQTI3QzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCrQF5OxurJX4lxZWsGHrDOGQFf
H+yvqDEBASDcu6HcbQvj7b9AUqMnmFuCJzJCL0VW9pdU8yer8x9TLEvey5Dv/W6I
llfEXnLc2WBTIvAOHHJghsvxfAikSBBANdJOI4alN4hDobORexP267stFdtVblE1
Dn3OBwsjLliCW44YSV6CewJBQXCHb0r5+Lyj5WbZml1I7XIFYrd1as2jJ/SO6wAM
xDNmgMmhpEtFDHRdxq+gmrE+vW0Y2uXoFlHKOEi4QbMW7FVdZdIcuDGpMDGpo6jL
TDjyExqd9p3fueGGePpwFY3bI3KC/9Fj+vkXwlwI7hvExCirMUvomckIHQ0HAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUAUp+k5oSHh1oVv191oLFL6LaJ8gwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjQ2MTNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAANow
DQYJKoZIhvcNAQELBQADggEBAJyle08AJjYwQxS6SJ42ZqCYd27V21KwFj4xnpx3
spaE7n9crBWjKm6WYRzeyeC2Il7i4Fm4PlVhyATdsyZZJOaEy9QXPAGoepLGYQGJ
Tj4ihcFco18P82ZB8a8y56YkVf8PD9MmL36qch3rfgOZqlgeRSw99SddHz3IQkeV
4G2su/QGjQ7HpdtkeO4gKpcsQ7AyvEB4T/bxP0W3ohF0j72sQjQR+qpZMGzfzyE8
03O8/RlSvNPfLqrL9StGx/b131nDqjw4BwqmHAEPhwfUXZE2oruDOGfFjyLx7JNV
Ssl0m33PbB+LvT2lW19Z0i5RLePNEyw8JqJlWP2ylsbrBiI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org