Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65643a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a65643a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: RiLrCu7WN60NerOV5zU1z45O+49+ZdjhPbfV8lh3YD0=
Subject key identifier: 70:EC:2A:EF:C6:39:8E:7E:33:B6:06:D2:9C:D0:75:E8:FE:85:C8:34
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1E7C72996E8FB669F1B2817F795917EFA9B1480F
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65643a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:01:34 +0000
ROA not before: Mon 26 Sep 2022 07:56:34 +0000
ROA not after: Mon 25 Sep 2023 08:01:34 +0000
asID: 59282
IP address blocks: 2400:d680:ed::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:7c:72:99:6e:8f:b6:69:f1:b2:81:7f:79:59:17:ef:a9:b1:48:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:56:34 2022 GMT
Not After : Sep 25 08:01:34 2023 GMT
Subject: CN=70EC2AEFC6398E7E33B606D29CD075E8FE85C834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:8d:7b:21:4d:88:47:1b:49:61:9b:f6:27:b2:
e7:4a:a0:24:b4:2e:bb:42:42:f2:98:da:fd:f6:a7:
b5:69:56:ff:fe:4b:e9:63:0e:b0:22:c2:98:84:3a:
9b:95:3e:13:19:a1:88:87:76:28:06:a8:73:10:c9:
b4:83:a2:98:68:fc:f2:03:e1:e8:b6:b4:f8:62:0e:
07:23:e4:48:92:f5:cd:f9:9c:0d:94:98:2e:55:cc:
d5:78:6b:32:e4:f2:20:3c:dc:c9:05:5a:7f:a5:1d:
ce:c9:9e:ce:e8:60:96:ec:90:f0:86:4b:fe:67:05:
74:cb:a0:6b:5b:43:c8:d6:7c:09:67:3e:13:74:c0:
e6:b5:32:d2:53:68:6a:35:f9:af:1d:7c:d2:34:ed:
be:cf:cd:4e:af:39:68:5b:f0:1a:d2:0c:eb:04:af:
05:85:22:4a:31:9c:8c:54:97:23:e2:91:2b:fe:a1:
9e:58:2e:fd:bd:95:1f:34:12:d3:89:72:8b:be:1c:
54:30:fd:4b:fa:18:4e:bd:b8:a8:63:57:53:9b:d6:
63:63:5d:8b:c7:38:51:a8:5c:6a:44:6d:7d:56:5d:
15:74:e8:b6:cd:87:89:36:36:f5:4e:38:a6:f6:fa:
4f:f1:73:3f:b3:a1:dc:9d:c4:a6:42:c0:d8:e6:5c:
3a:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:EC:2A:EF:C6:39:8E:7E:33:B6:06:D2:9C:D0:75:E8:FE:85:C8:34
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a65643a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:ed::/48
Signature Algorithm: sha256WithRSAEncryption
a3:5f:25:23:40:17:18:4f:aa:f2:a9:02:3b:b8:fb:ec:59:ed:
69:6a:91:e1:92:62:ad:4c:6f:42:36:33:46:d6:b3:6d:63:08:
ad:15:14:80:30:f2:dc:14:87:1a:5f:ea:c9:ff:36:4b:3f:8c:
ee:be:5c:bc:31:5c:d1:25:87:5a:a5:d5:e5:4c:59:89:71:cf:
62:b4:a1:e0:7e:53:2f:80:90:2d:88:8c:54:82:15:9d:5e:02:
81:5d:83:42:a6:cb:b6:bb:01:82:11:3c:19:72:35:3f:6f:ae:
d4:f1:fe:65:27:21:f1:35:53:2f:c1:82:ee:aa:e6:5f:15:bb:
be:7b:4a:2b:b6:d3:f2:08:32:cf:11:b6:1d:ef:44:f5:1c:9d:
a8:20:17:41:84:2c:4f:48:f8:08:63:31:36:d1:11:7d:1f:aa:
70:b2:21:4b:ff:ef:f6:75:0c:e4:f7:5a:cb:f8:33:51:39:f9:
4b:0d:8c:f8:b3:63:c9:33:cb:ce:7f:2c:9e:5e:d3:c8:46:a0:
1d:07:1c:ac:27:e1:a6:06:ee:bf:ab:42:fe:46:a9:c0:cc:57:
1b:48:0d:6d:4b:54:c6:5e:5f:3e:df:51:89:66:fb:ba:ce:35:
ad:fc:b4:91:f8:2a:ca:7e:b0:ef:55:3f:13:4f:59:df:47:05:
94:1f:25:b7
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUHnxymW6PtmnxsoF/eVkX76mxSA8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU2MzRaFw0yMzA5MjUwODAxMzRaMDMxMTAvBgNV
BAMTKDcwRUMyQUVGQzYzOThFN0UzM0I2MDZEMjlDRDA3NUU4RkU4NUM4MzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqjXshTYhHG0lhm/YnsudKoCS0
LrtCQvKY2v32p7VpVv/+S+ljDrAiwpiEOpuVPhMZoYiHdigGqHMQybSDopho/PID
4ei2tPhiDgcj5EiS9c35nA2UmC5VzNV4azLk8iA83MkFWn+lHc7Jns7oYJbskPCG
S/5nBXTLoGtbQ8jWfAlnPhN0wOa1MtJTaGo1+a8dfNI07b7PzU6vOWhb8BrSDOsE
rwWFIkoxnIxUlyPikSv+oZ5YLv29lR80EtOJcou+HFQw/Uv6GE69uKhjV1Ob1mNj
XYvHOFGoXGpEbX1WXRV06LbNh4k2NvVOOKb2+k/xcz+zodydxKZCwNjmXDppAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQUcOwq78Y5jn4ztgbSnNB16P6FyDQwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjU2NDNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAO0w
DQYJKoZIhvcNAQELBQADggEBAKNfJSNAFxhPqvKpAju4++xZ7WlqkeGSYq1Mb0I2
M0bWs21jCK0VFIAw8twUhxpf6sn/Nks/jO6+XLwxXNElh1ql1eVMWYlxz2K0oeB+
Uy+AkC2IjFSCFZ1eAoFdg0Kmy7a7AYIRPBlyNT9vrtTx/mUnIfE1Uy/Bgu6q5l8V
u757Siu20/IIMs8Rth3vRPUcnaggF0GELE9I+AhjMTbREX0fqnCyIUv/7/Z1DOT3
Wsv4M1E5+UsNjPizY8kzy85/LJ5e08hGoB0HHKwn4aYG7r+rQv5GqcDMVxtIDW1L
VMZeXz7fUYlm+7rONa38tJH4Ksp+sO9VPxNPWd9HBZQfJbc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org