Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3a2f33322d3332203d3e203338373533.roa
File: 323430313a616530303a3a2f33322d3332203d3e203338373533.roa (raw, json)
Hash identifier: CuqdWUd/ta/pU+bXPz1GeeTf2lG1qmaHgCcEvlkpFbU=
Subject key identifier: F8:C4:2A:D3:0D:C2:D7:E8:B0:6E:54:D2:DB:9E:60:00:D4:77:E3:94
Certificate issuer: /CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14
Certificate serial: 5396A76EF5B286A5259815F8478E4BABFD7BFC8E
Authority key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3a2f33322d3332203d3e203338373533.roa
Signing time: Thu 05 Jan 2023 01:26:46 +0000
ROA not before: Thu 05 Jan 2023 01:21:46 +0000
ROA not after: Thu 04 Jan 2024 01:26:46 +0000
asID: 38753
IP address blocks: 2401:ae00::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:96:a7:6e:f5:b2:86:a5:25:98:15:f8:47:8e:4b:ab:fd:7b:fc:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14
Validity
Not Before: Jan 5 01:21:46 2023 GMT
Not After : Jan 4 01:26:46 2024 GMT
Subject: CN=F8C42AD30DC2D7E8B06E54D2DB9E6000D477E394
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:cf:d6:0c:7b:50:20:e9:cd:e7:fa:e4:dc:32:
78:a6:29:eb:c4:7f:78:af:13:70:e3:2b:8c:f7:09:
77:f9:a3:1f:e2:d9:d6:4f:10:94:7d:c8:75:0a:c6:
69:47:dc:bf:e6:59:9b:2d:1c:fe:57:65:55:91:bb:
f2:c5:cb:f5:86:4d:46:06:3d:ca:71:e9:8e:76:de:
83:54:88:23:45:8e:1c:aa:53:0c:17:36:0a:23:e3:
ef:02:dd:0d:73:d9:d4:8d:0e:82:26:ea:57:5f:e5:
22:a6:31:22:bd:01:a6:c6:17:4b:ea:85:c9:b7:a0:
41:29:5c:cc:63:89:26:66:8c:80:86:5b:f6:8e:3b:
80:bd:50:60:30:b2:8c:0f:3a:d1:d8:fb:25:d9:bb:
94:19:1f:76:81:f3:e9:99:85:19:16:94:a3:18:ab:
ed:dc:04:4e:d2:b0:4c:4d:b1:69:a9:9e:f0:c2:b8:
40:97:7c:69:1c:35:81:68:78:e5:f2:32:0e:1a:20:
e4:b0:60:05:9f:2b:d8:e1:22:00:de:7d:b9:c2:0c:
36:06:aa:55:a1:9e:5f:31:30:bf:0f:5e:2f:da:8d:
d3:40:f3:1f:72:69:30:c5:d2:d8:30:2b:22:b0:cb:
0b:0b:77:07:1f:dc:1b:d4:2f:95:5c:cc:ff:5d:3f:
a1:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:C4:2A:D3:0D:C2:D7:E8:B0:6E:54:D2:DB:9E:60:00:D4:77:E3:94
X509v3 Authority Key Identifier:
keyid:11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/323430313a616530303a3a2f33322d3332203d3e203338373533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:ae00::/32
Signature Algorithm: sha256WithRSAEncryption
25:56:4c:b7:9a:bd:08:c9:39:c5:30:fc:4d:18:5c:91:08:c8:
4b:e2:ff:e3:f9:83:83:a2:0a:c4:74:ad:95:34:ca:e6:21:5f:
ad:ca:4c:8c:9c:77:93:0a:f8:fe:b5:ba:35:52:bb:0d:ca:e0:
b0:9d:01:15:ff:3a:06:99:b7:1f:52:c6:f0:f3:4a:fd:1e:69:
84:a9:4c:35:03:f0:d7:e6:d4:e7:a0:63:3a:c5:1e:3b:25:29:
19:5c:e9:24:31:85:7d:d7:6d:47:c2:8d:1d:0b:1a:2b:00:62:
0b:52:52:c4:d7:6f:32:26:b9:bb:c6:4b:73:0f:f6:e1:21:fa:
81:4b:42:3d:a5:3a:7d:a8:83:ae:7d:78:ab:c3:56:9a:1c:04:
10:45:59:ff:3c:93:0a:60:8b:ec:65:4b:5b:23:02:13:9f:0c:
66:f7:41:30:dd:d2:44:68:1a:18:90:46:be:fe:77:68:15:a4:
fd:ad:f9:da:83:ac:be:f8:d1:11:83:f9:f5:bb:86:8e:23:db:
a9:04:85:cd:87:52:67:41:35:ce:1e:f7:87:24:9e:47:a5:73:
f9:e8:36:35:37:c8:c0:87:4b:a1:dc:31:9e:aa:65:dd:3b:9c:
03:65:88:06:4a:5d:5f:10:7f:cf:84:93:81:82:31:99:a2:8c:
c3:9d:1c:ce
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgIUU5anbvWyhqUlmBX4R45Lq/17/I4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2
OERGNkUxNDAeFw0yMzAxMDUwMTIxNDZaFw0yNDAxMDQwMTI2NDZaMDMxMTAvBgNV
BAMTKEY4QzQyQUQzMERDMkQ3RThCMDZFNTREMkRCOUU2MDAwRDQ3N0UzOTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgz9YMe1Ag6c3n+uTcMnimKevE
f3ivE3DjK4z3CXf5ox/i2dZPEJR9yHUKxmlH3L/mWZstHP5XZVWRu/LFy/WGTUYG
Pcpx6Y523oNUiCNFjhyqUwwXNgoj4+8C3Q1z2dSNDoIm6ldf5SKmMSK9AabGF0vq
hcm3oEEpXMxjiSZmjICGW/aOO4C9UGAwsowPOtHY+yXZu5QZH3aB8+mZhRkWlKMY
q+3cBE7SsExNsWmpnvDCuECXfGkcNYFoeOXyMg4aIOSwYAWfK9jhIgDefbnCDDYG
qlWhnl8xML8PXi/ajdNA8x9yaTDF0tgwKyKwywsLdwcf3BvUL5VczP9dP6HBAgMB
AAGjggIxMIICLTAdBgNVHQ4EFgQU+MQq0w3C1+iwblTS255gANR345QwHwYDVR0j
BBgwFoAUEcm6KFNLpEmZtLpdaw8o5WjfbhQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
MDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMC8xMUM5QkEyODUz
NEJBNDQ5OTlCNEJBNUQ2QjBGMjhFNTY4REY2RTE0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMTFDOUJBMjg1MzRCQTQ0OTk5QjRCQTVENkIwRjI4RTU2OERG
NkUxNC5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2NjczLTQ3YTEtNDVlNS1i
NmMyLTQyYWI4YjQ3NjI0OS8wLzMyMzQzMDMxM2E2MTY1MzAzMDNhM2EyZjMzMzIy
ZDMzMzIyMDNkM2UyMDMzMzgzNzM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAa4AMA0GCSqGSIb3
DQEBCwUAA4IBAQAlVky3mr0IyTnFMPxNGFyRCMhL4v/j+YODogrEdK2VNMrmIV+t
ykyMnHeTCvj+tbo1UrsNyuCwnQEV/zoGmbcfUsbw80r9HmmEqUw1A/DX5tTnoGM6
xR47JSkZXOkkMYV9121Hwo0dCxorAGILUlLE128yJrm7xktzD/bhIfqBS0I9pTp9
qIOufXirw1aaHAQQRVn/PJMKYIvsZUtbIwITnwxm90Ew3dJEaBoYkEa+/ndoFaT9
rfnag6y++NERg/n1u4aOI9upBIXNh1JnQTXOHveHJJ5HpXP56DY1N8jAh0uh3DGe
qmXdO5wDZYgGSl1fEH/PhJOBgjGZoozDnRzO
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org