Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/323430343a636630303a3a2f33322d3332203d3e203338353131.roa
File: 323430343a636630303a3a2f33322d3332203d3e203338353131.roa (raw, json)
Hash identifier: Wh2znG41UMorXUTtPqi42dVGXRtbxtv02cIhdn12eRs=
Subject key identifier: 27:26:D8:08:91:E4:33:E0:74:1E:12:C1:71:FE:52:D4:B4:35:98:BE
Certificate issuer: /CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F
Certificate serial: 1F1C8A53A17C58DD6AB36BA60C4C365C12363F68
Authority key identifier: 91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/323430343a636630303a3a2f33322d3332203d3e203338353131.roa
Signing time: Wed 30 Mar 2022 09:46:02 +0000
ROA not before: Wed 30 Mar 2022 09:41:02 +0000
ROA not after: Wed 29 Mar 2023 09:46:02 +0000
asID: 38511
IP address blocks: 2404:cf00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:1c:8a:53:a1:7c:58:dd:6a:b3:6b:a6:0c:4c:36:5c:12:36:3f:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F
Validity
Not Before: Mar 30 09:41:02 2022 GMT
Not After : Mar 29 09:46:02 2023 GMT
Subject: CN=2726D80891E433E0741E12C171FE52D4B43598BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:93:fc:c5:45:70:1c:1a:54:da:07:f3:41:48:
55:8e:82:61:6e:12:2c:f5:17:9f:43:a5:34:61:e9:
b9:e8:98:a3:52:ec:42:84:90:92:e0:37:82:95:07:
9f:ff:a0:4b:ed:56:ea:04:3b:b8:3b:59:1f:40:2e:
45:0d:dd:b0:72:ed:78:83:6e:83:a2:b3:5c:ca:b1:
57:0d:bf:44:70:61:e8:d9:be:b4:08:d0:92:eb:b9:
04:4d:a6:e5:81:46:10:c5:4e:db:66:76:62:fe:9c:
57:df:a2:dc:bf:ef:41:ca:38:1b:08:61:02:1d:30:
78:53:52:14:6a:ae:4f:3a:21:54:55:32:f8:2e:1a:
a4:75:a6:44:4f:63:d5:f3:83:fd:2f:9f:9f:a8:d2:
e8:b9:37:a1:80:38:3b:79:07:97:f9:55:8c:eb:ef:
a2:25:7f:9b:55:7a:b2:97:ab:ba:84:f9:04:b1:1d:
4f:3b:24:92:56:1d:bb:c0:8e:c3:3a:89:eb:60:d3:
5a:18:ad:ce:6f:d4:f8:f8:c6:ef:4f:89:83:14:6a:
21:41:53:a7:14:23:c9:0d:1e:f7:3f:3d:73:e3:f1:
b5:d5:ad:66:58:05:d2:0e:78:d9:23:bb:99:af:4e:
60:43:f1:85:c1:5f:c4:4a:a5:83:fb:cb:61:0b:4a:
ba:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:26:D8:08:91:E4:33:E0:74:1E:12:C1:71:FE:52:D4:B4:35:98:BE
X509v3 Authority Key Identifier:
keyid:91:69:B9:B6:52:6C:D1:49:84:DD:E3:A4:2E:24:DD:8F:E7:AB:C1:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9169B9B6526CD14984DDE3A42E24DD8FE7ABC17F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/88f2915d-18c9-4e03-bbfb-2074c5980898/0/323430343a636630303a3a2f33322d3332203d3e203338353131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2404:cf00::/32
Signature Algorithm: sha256WithRSAEncryption
0a:59:5e:b7:9e:67:72:02:0c:0a:87:06:92:97:f1:20:59:24:
bc:d2:dd:d9:5b:42:53:d4:1e:9a:28:ac:88:92:88:36:a3:5a:
cb:ea:e3:9c:6c:7d:0f:d1:f4:e5:54:e7:b1:e5:5e:19:1a:0c:
65:11:09:70:40:5f:f3:d9:6e:d8:a6:c5:8e:79:b5:65:9e:f8:
ad:0e:05:3d:fb:37:ae:ad:fd:b7:01:5d:8e:af:fb:04:38:60:
1e:b1:77:7a:06:2c:df:91:fc:60:88:98:76:36:3a:a2:d3:e6:
79:f8:e5:82:45:7f:eb:86:49:f4:18:99:79:bf:17:4d:6a:9b:
ae:b2:e7:2c:45:6b:1b:9a:ed:54:af:0e:e3:c9:5e:de:b6:7e:
ba:f0:a6:08:ea:00:8b:a0:e4:21:0b:52:dd:52:12:42:ca:03:
8c:d4:36:37:5d:cd:a1:38:14:17:f5:a8:e7:0e:cd:88:3c:e7:
ea:6e:0f:9e:f5:d9:09:9f:bc:81:b7:32:1e:50:4c:f0:3c:d1:
53:9e:63:2a:f0:32:dd:c9:65:1b:40:af:36:26:0b:49:4e:2f:
47:9c:0b:5f:5d:79:05:69:0f:43:c6:22:b4:f2:30:5a:1a:74:
17:60:06:fd:ae:f2:47:49:4f:c6:d6:95:3d:85:95:89:e9:4d:
43:5f:bf:ea
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgIUHxyKU6F8WN1qs2umDEw2XBI2P2gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTE2OUI5QjY1MjZDRDE0OTg0RERFM0E0MkUyNEREOEZF
N0FCQzE3RjAeFw0yMjAzMzAwOTQxMDJaFw0yMzAzMjkwOTQ2MDJaMDMxMTAvBgNV
BAMTKDI3MjZEODA4OTFFNDMzRTA3NDFFMTJDMTcxRkU1MkQ0QjQzNTk4QkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjk/zFRXAcGlTaB/NBSFWOgmFu
Eiz1F59DpTRh6bnomKNS7EKEkJLgN4KVB5//oEvtVuoEO7g7WR9ALkUN3bBy7XiD
boOis1zKsVcNv0RwYejZvrQI0JLruQRNpuWBRhDFTttmdmL+nFffoty/70HKOBsI
YQIdMHhTUhRqrk86IVRVMvguGqR1pkRPY9Xzg/0vn5+o0ui5N6GAODt5B5f5VYzr
76Ilf5tVerKXq7qE+QSxHU87JJJWHbvAjsM6ietg01oYrc5v1Pj4xu9PiYMUaiFB
U6cUI8kNHvc/PXPj8bXVrWZYBdIOeNkju5mvTmBD8YXBX8RKpYP7y2ELSrp5AgMB
AAGjggIxMIICLTAdBgNVHQ4EFgQUJybYCJHkM+B0HhLBcf5S1LQ1mL4wHwYDVR0j
BBgwFoAUkWm5tlJs0UmE3eOkLiTdj+erwX8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84
OGYyOTE1ZC0xOGM5LTRlMDMtYmJmYi0yMDc0YzU5ODA4OTgvMC85MTY5QjlCNjUy
NkNEMTQ5ODREREUzQTQyRTI0REQ4RkU3QUJDMTdGLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvOTE2OUI5QjY1MjZDRDE0OTg0RERFM0E0MkUyNEREOEZFN0FC
QzE3Ri5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg4ZjI5MTVkLTE4YzktNGUwMy1i
YmZiLTIwNzRjNTk4MDg5OC8wLzMyMzQzMDM0M2E2MzY2MzAzMDNhM2EyZjMzMzIy
ZDMzMzIyMDNkM2UyMDMzMzgzNTMxMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBM8AMA0GCSqGSIb3
DQEBCwUAA4IBAQAKWV63nmdyAgwKhwaSl/EgWSS80t3ZW0JT1B6aKKyIkog2o1rL
6uOcbH0P0fTlVOex5V4ZGgxlEQlwQF/z2W7YpsWOebVlnvitDgU9+zeurf23AV2O
r/sEOGAesXd6BizfkfxgiJh2Njqi0+Z5+OWCRX/rhkn0GJl5vxdNapuusucsRWsb
mu1Urw7jyV7etn668KYI6gCLoOQhC1LdUhJCygOM1DY3Xc2hOBQX9ajnDs2IPOfq
bg+e9dkJn7yBtzIeUEzwPNFTnmMq8DLdyWUbQK82JgtJTi9HnAtfXXkFaQ9DxiK0
8jBaGnQXYAb9rvJHSU/G1pU9hZWJ6U1DX7/q
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:08 2024 by rpki-client on console-fra.rpki-client.org