Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a3a2f33322d3438203d3e203633353031.roa
File: 323430333a666338303a3a2f33322d3438203d3e203633353031.roa (raw, json)
Hash identifier: Hx4fJyLYKE/d44UBfHC/yJToDp/IAfeVnqMU+1TCACU=
Subject key identifier: E4:03:AB:EE:28:5D:29:DC:C6:D4:AB:AB:30:19:92:2D:01:B0:44:FD
Certificate issuer: /CN=455696A81F434F9A36D66F455F4B3C43855A18E1
Certificate serial: 28B6847ADB919141BADB5162408FB2466957C7CA
Authority key identifier: 45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a3a2f33322d3438203d3e203633353031.roa
Signing time: Sun 28 Aug 2022 23:07:31 +0000
ROA not before: Sun 28 Aug 2022 23:02:31 +0000
ROA not after: Sun 27 Aug 2023 23:07:31 +0000
asID: 63501
IP address blocks: 2403:fc80::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:b6:84:7a:db:91:91:41:ba:db:51:62:40:8f:b2:46:69:57:c7:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=455696A81F434F9A36D66F455F4B3C43855A18E1
Validity
Not Before: Aug 28 23:02:31 2022 GMT
Not After : Aug 27 23:07:31 2023 GMT
Subject: CN=E403ABEE285D29DCC6D4ABAB3019922D01B044FD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:06:cb:48:12:07:de:f6:f4:9a:ad:9d:8b:e0:
6a:7c:ff:ef:5b:a2:39:e9:4f:67:45:6d:e6:63:38:
6f:42:5a:e6:e1:2c:fe:63:06:0d:02:ba:42:b9:9f:
ce:15:d0:45:26:b9:a7:ea:a3:ec:87:30:ba:62:e7:
f0:bd:30:ce:aa:bb:a2:33:89:ef:42:6f:da:ea:80:
a8:1f:da:86:7c:01:1b:0e:6c:a6:b6:65:39:9e:2d:
b3:b0:65:5d:a7:bb:3b:95:2d:37:24:32:aa:aa:01:
2c:26:fc:8b:d8:c0:e1:0d:a9:b7:96:80:e1:4f:c0:
2c:ae:a7:fa:7f:34:58:ea:93:37:ec:35:33:84:26:
ef:4c:8d:7f:e3:90:4b:5b:a1:4e:4a:cd:09:e7:4b:
96:5e:01:70:f5:06:e2:b4:d3:65:fd:f1:e0:0e:9c:
36:7a:77:7f:ce:39:79:a4:28:16:d6:ed:14:b1:2e:
2d:58:75:55:98:7a:9a:be:61:3d:92:eb:00:d8:c3:
9b:3c:84:2f:3c:46:73:95:95:43:33:86:68:be:76:
b8:ff:23:83:da:08:dd:ad:7c:33:12:29:68:aa:1f:
d7:b9:23:2a:00:6b:8a:30:d4:bd:56:05:a8:df:f8:
86:28:33:cc:90:29:d0:b9:2b:a7:f8:f6:1c:a7:40:
44:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:03:AB:EE:28:5D:29:DC:C6:D4:AB:AB:30:19:92:2D:01:B0:44:FD
X509v3 Authority Key Identifier:
keyid:45:56:96:A8:1F:43:4F:9A:36:D6:6F:45:5F:4B:3C:43:85:5A:18:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/455696A81F434F9A36D66F455F4B3C43855A18E1.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/455696A81F434F9A36D66F455F4B3C43855A18E1.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad918b15-e63e-4b38-a05c-650fb49f0594/0/323430333a666338303a3a2f33322d3438203d3e203633353031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2403:fc80::/32
Signature Algorithm: sha256WithRSAEncryption
8b:c2:b7:b9:e1:32:3f:d0:00:a9:16:fd:bf:1f:80:c7:03:e5:
61:53:0c:87:91:0b:26:f3:4e:c2:79:1f:36:a4:f4:32:6d:14:
aa:fa:5e:5a:75:91:92:cd:56:11:69:03:03:45:17:a2:c3:00:
9d:89:38:82:e4:65:04:b6:25:50:ef:3b:8c:cb:cf:5c:30:40:
13:05:21:64:76:8e:27:59:ce:b2:8b:2b:14:b1:48:7b:0e:47:
47:88:8f:16:ab:ed:ff:9d:6a:b2:56:b0:82:34:91:21:dd:9c:
0b:99:fe:6e:f6:15:17:84:86:5b:8b:2f:77:8a:d4:85:39:9c:
31:c4:42:15:2c:a4:8a:5d:1d:ce:00:2a:41:ea:dd:c2:78:9d:
5b:4e:69:60:74:da:27:94:28:a1:0a:f3:de:cb:41:6d:ea:7b:
7a:73:1d:12:3a:00:3c:62:d4:7a:51:a4:cc:57:1b:02:0d:64:
cd:a1:10:6b:a5:43:97:0a:77:1b:ca:f9:5e:53:5a:7d:08:14:
e5:7a:f0:9c:3b:e2:eb:2c:8b:f9:30:54:47:88:2a:0b:42:7f:
6e:b3:ef:fb:39:4d:3c:ec:79:77:3e:28:50:dc:51:60:59:b4:
aa:79:05:dd:f7:48:da:be:54:19:ba:a2:ff:cb:ce:6b:70:19:
a4:75:ce:84
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgIUKLaEetuRkUG621FiQI+yRmlXx8owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDU1Njk2QTgxRjQzNEY5QTM2RDY2RjQ1NUY0QjNDNDM4
NTVBMThFMTAeFw0yMjA4MjgyMzAyMzFaFw0yMzA4MjcyMzA3MzFaMDMxMTAvBgNV
BAMTKEU0MDNBQkVFMjg1RDI5RENDNkQ0QUJBQjMwMTk5MjJEMDFCMDQ0RkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCnBstIEgfe9vSarZ2L4Gp8/+9b
ojnpT2dFbeZjOG9CWubhLP5jBg0CukK5n84V0EUmuafqo+yHMLpi5/C9MM6qu6Iz
ie9Cb9rqgKgf2oZ8ARsObKa2ZTmeLbOwZV2nuzuVLTckMqqqASwm/IvYwOENqbeW
gOFPwCyup/p/NFjqkzfsNTOEJu9MjX/jkEtboU5KzQnnS5ZeAXD1BuK002X98eAO
nDZ6d3/OOXmkKBbW7RSxLi1YdVWYepq+YT2S6wDYw5s8hC88RnOVlUMzhmi+drj/
I4PaCN2tfDMSKWiqH9e5IyoAa4ow1L1WBajf+IYoM8yQKdC5K6f49hynQETpAgMB
AAGjggIxMIICLTAdBgNVHQ4EFgQU5AOr7ihdKdzG1KurMBmSLQGwRP0wHwYDVR0j
BBgwFoAURVaWqB9DT5o21m9FX0s8Q4VaGOEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ZDkxOGIxNS1lNjNlLTRiMzgtYTA1Yy02NTBmYjQ5ZjA1OTQvMC80NTU2OTZBODFG
NDM0RjlBMzZENjZGNDU1RjRCM0M0Mzg1NUExOEUxLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNDU1Njk2QTgxRjQzNEY5QTM2RDY2RjQ1NUY0QjNDNDM4NTVB
MThFMS5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkOTE4YjE1LWU2M2UtNGIzOC1h
MDVjLTY1MGZiNDlmMDU5NC8wLzMyMzQzMDMzM2E2NjYzMzgzMDNhM2EyZjMzMzIy
ZDM0MzgyMDNkM2UyMDM2MzMzNTMwMzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkA/yAMA0GCSqGSIb3
DQEBCwUAA4IBAQCLwre54TI/0ACpFv2/H4DHA+VhUwyHkQsm807CeR82pPQybRSq
+l5adZGSzVYRaQMDRReiwwCdiTiC5GUEtiVQ7zuMy89cMEATBSFkdo4nWc6yiysU
sUh7DkdHiI8Wq+3/nWqyVrCCNJEh3ZwLmf5u9hUXhIZbiy93itSFOZwxxEIVLKSK
XR3OACpB6t3CeJ1bTmlgdNonlCihCvPey0Ft6nt6cx0SOgA8YtR6UaTMVxsCDWTN
oRBrpUOXCncbyvleU1p9CBTlevCcO+LrLIv5MFRHiCoLQn9us+/7OU087Hl3PihQ
3FFgWbSqeQXd90javlQZuqL/y85rcBmkdc6E
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:15 2024 by rpki-client on console-fra.rpki-client.org