Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66663a3a2f34382d3438203d3e203539323832.roa
File: 323430303a643638303a66663a3a2f34382d3438203d3e203539323832.roa (raw, json)
Hash identifier: QQQALSVJ4lR2k0Ohpg2ABSg+y2mmI9FeL2UfYItubbs=
Subject key identifier: D1:BA:79:B2:0E:89:48:D3:38:5A:E0:E4:98:5E:81:FA:97:C5:2D:03
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 5FD256B24FD02703D1A2796D3C7CAAB6571D1114
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66663a3a2f34382d3438203d3e203539323832.roa
Signing time: Mon 26 Sep 2022 08:02:07 +0000
ROA not before: Mon 26 Sep 2022 07:57:07 +0000
ROA not after: Mon 25 Sep 2023 08:02:07 +0000
asID: 59282
IP address blocks: 2400:d680:ff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:d2:56:b2:4f:d0:27:03:d1:a2:79:6d:3c:7c:aa:b6:57:1d:11:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Sep 26 07:57:07 2022 GMT
Not After : Sep 25 08:02:07 2023 GMT
Subject: CN=D1BA79B20E8948D3385AE0E4985E81FA97C52D03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2f:84:26:d3:87:40:46:19:da:7c:07:74:ac:
dd:81:5c:bf:c7:c3:a5:a7:6d:61:55:ec:68:3b:cf:
d7:c1:e1:3f:2f:e9:fe:72:25:16:14:16:c2:7f:b7:
24:ac:6e:b0:91:7e:5e:6f:bc:72:ed:05:10:2d:0c:
f7:33:ab:4c:a7:0d:23:d0:c2:b3:49:df:c0:17:b7:
59:eb:97:01:24:3a:a5:11:2a:c9:b4:d0:9c:54:85:
28:35:f1:b4:35:d5:05:79:98:4b:20:34:bd:30:e3:
03:9f:bd:5e:91:ee:0d:ec:1c:1b:e1:c6:7b:d8:a4:
9f:ce:63:0e:21:f6:f7:92:fd:c8:2d:c4:21:21:b8:
3c:bf:a7:45:ac:87:b7:00:f2:f6:a0:c3:46:13:34:
07:bb:1a:be:6b:f5:91:8c:ea:7b:d3:96:54:93:3e:
ee:ae:e7:01:fe:70:c5:d2:62:c7:ee:16:55:7f:47:
b0:08:8c:2a:9e:93:49:7d:ef:7f:06:fc:99:ef:91:
75:98:67:07:91:96:89:03:48:33:77:f5:fd:7d:74:
13:01:05:16:52:29:91:46:b4:15:cd:10:3d:f1:bb:
58:d9:9d:2e:04:25:f8:a5:02:0e:f7:a4:d6:61:6c:
97:e5:4f:6f:34:4c:84:4c:23:83:3e:e4:03:9b:61:
6d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:BA:79:B2:0E:89:48:D3:38:5A:E0:E4:98:5E:81:FA:97:C5:2D:03
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/323430303a643638303a66663a3a2f34382d3438203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:d680:ff::/48
Signature Algorithm: sha256WithRSAEncryption
8e:de:79:ba:ca:2c:6f:a3:19:ac:05:55:b0:66:c2:e9:4c:80:
a8:26:46:24:d3:51:41:ee:f8:8c:e9:a8:ff:5b:dd:be:48:03:
0a:31:27:c1:71:ee:fd:e7:ce:46:bb:f3:b4:94:00:4c:19:c2:
3c:1b:51:26:8c:89:3b:d4:23:e2:22:a1:08:74:d0:f6:68:a1:
78:a6:5d:c5:d2:b8:69:4e:89:4a:48:47:d7:be:0e:0a:c4:30:
ea:72:f7:8a:a5:60:6f:1f:fa:7b:b6:e2:5f:12:56:41:85:25:
17:3d:b2:cf:c4:6a:e7:8f:9e:92:98:59:b0:e7:f8:bc:86:13:
96:7d:74:83:20:c8:bb:88:29:29:5a:5c:de:02:99:cc:ff:3b:
4d:06:a2:51:d5:33:39:65:3a:17:67:8d:18:4b:f0:2b:12:15:
26:b1:67:4d:96:5d:21:d5:e6:02:5d:b8:8b:10:d7:c7:a5:24:
ff:78:35:b6:62:2a:7b:42:4c:e3:7e:12:2f:10:84:cf:c8:f3:
64:ba:a5:9c:d1:28:e3:26:99:15:3e:db:f9:bf:6d:4b:a2:db:
c1:55:bf:ab:29:c0:0a:80:6e:ad:02:07:c6:b4:ef:79:e7:75:
6c:e8:b9:38:84:de:4b:a7:bd:46:ad:af:d8:8b:2b:c4:dc:e9:
3d:0b:92:ee
-----BEGIN CERTIFICATE-----
MIIFLzCCBBegAwIBAgIUX9JWsk/QJwPRonltPHyqtlcdERQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA5MjYwNzU3MDdaFw0yMzA5MjUwODAyMDdaMDMxMTAvBgNV
BAMTKEQxQkE3OUIyMEU4OTQ4RDMzODVBRTBFNDk4NUU4MUZBOTdDNTJEMDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQL4Qm04dARhnafAd0rN2BXL/H
w6WnbWFV7Gg7z9fB4T8v6f5yJRYUFsJ/tySsbrCRfl5vvHLtBRAtDPczq0ynDSPQ
wrNJ38AXt1nrlwEkOqURKsm00JxUhSg18bQ11QV5mEsgNL0w4wOfvV6R7g3sHBvh
xnvYpJ/OYw4h9veS/cgtxCEhuDy/p0Wsh7cA8vagw0YTNAe7Gr5r9ZGM6nvTllST
Pu6u5wH+cMXSYsfuFlV/R7AIjCqek0l9738G/JnvkXWYZweRlokDSDN39f19dBMB
BRZSKZFGtBXNED3xu1jZnS4EJfilAg73pNZhbJflT280TIRMI4M+5AObYW3ZAgMB
AAGjggI5MIICNTAdBgNVHQ4EFgQU0bp5sg6JSNM4WuDkmF6B+pfFLQMwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaYGCCsGAQUFBwELBIGZMIGWMIGTBggrBgEFBQcwC4aBhnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMyMzQzMDMwM2E2NDM2MzgzMDNhNjY2NjNhM2Ey
ZjM0MzgyZDM0MzgyMDNkM2UyMDM1MzkzMjM4MzIucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkANaAAP8w
DQYJKoZIhvcNAQELBQADggEBAI7eebrKLG+jGawFVbBmwulMgKgmRiTTUUHu+Izp
qP9b3b5IAwoxJ8Fx7v3nzka787SUAEwZwjwbUSaMiTvUI+IioQh00PZooXimXcXS
uGlOiUpIR9e+DgrEMOpy94qlYG8f+nu24l8SVkGFJRc9ss/EauePnpKYWbDn+LyG
E5Z9dIMgyLuIKSlaXN4Cmcz/O00GolHVMzllOhdnjRhL8CsSFSaxZ02WXSHV5gJd
uIsQ18elJP94NbZiKntCTON+Ei8QhM/I82S6pZzRKOMmmRU+2/m/bUui28FVv6sp
wAqAbq0CB8a073nndWzouTiE3kunvUatr9iLK8Tc6T0Lku4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org