Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/323430323a333730303a3a2f33322d3438203d3e203338343936.roa
File: 323430323a333730303a3a2f33322d3438203d3e203338343936.roa (raw, json)
Hash identifier: xcTNSNlbUWNxlz1VzPYhiEtjH38yTsYv/dsazuQWvEw=
Subject key identifier: 3B:F3:C7:74:DB:50:06:F7:8F:92:5A:DB:E6:63:10:47:EB:BF:27:4D
Certificate issuer: /CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Certificate serial: 153306481D4AED370371A2F201DBDD0A2F3562DE
Authority key identifier: 6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/323430323a333730303a3a2f33322d3438203d3e203338343936.roa
Signing time: Tue 26 Jul 2022 03:03:56 +0000
ROA not before: Tue 26 Jul 2022 02:58:56 +0000
ROA not after: Tue 25 Jul 2023 03:03:56 +0000
asID: 38496
IP address blocks: 2402:3700::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:33:06:48:1d:4a:ed:37:03:71:a2:f2:01:db:dd:0a:2f:35:62:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC
Validity
Not Before: Jul 26 02:58:56 2022 GMT
Not After : Jul 25 03:03:56 2023 GMT
Subject: CN=3BF3C774DB5006F78F925ADBE6631047EBBF274D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:74:94:83:02:7c:94:c4:7e:4f:54:82:11:85:
63:ec:34:3c:2f:77:cb:1d:eb:8e:ba:42:f4:a3:6b:
1a:9e:fb:be:e1:3b:2f:3b:79:65:9b:f1:af:00:98:
d5:e0:36:7a:dd:e0:37:08:95:7c:d8:54:61:27:f8:
b6:0a:7f:d7:9a:3b:3d:ee:a3:bf:49:8f:9b:95:73:
22:3d:0d:80:90:a1:82:ce:ce:76:37:a1:95:61:c4:
46:72:17:2d:35:53:6b:b3:93:a5:fb:c7:15:63:19:
32:e9:4d:c6:cb:ec:2c:ba:f8:e5:34:67:9a:1e:ff:
61:5e:5f:89:b2:4d:e3:1f:b0:ef:63:37:0e:ca:5d:
c9:6f:62:4a:00:b5:ab:70:2d:03:48:3d:60:b0:b6:
53:86:d3:47:9d:cc:fb:a2:c5:5a:4e:51:37:12:08:
64:3a:ea:04:11:90:b4:ad:cc:39:d5:6e:8b:d9:05:
84:64:ac:3d:b0:47:05:6a:f7:6d:3e:71:d9:be:2c:
ef:20:5a:3c:f2:1c:e4:6f:ff:1f:e2:5d:39:b6:25:
06:71:22:7e:a9:df:31:b3:a0:bd:3b:a2:79:e4:b2:
a5:1d:5d:33:2a:8f:91:81:2a:4d:24:06:72:17:20:
a6:33:82:ab:58:d7:34:c8:6a:e8:45:86:19:b2:89:
e5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F3:C7:74:DB:50:06:F7:8F:92:5A:DB:E6:63:10:47:EB:BF:27:4D
X509v3 Authority Key Identifier:
keyid:6A:D9:56:36:B6:B3:E0:D5:F9:0E:E4:1F:3C:3D:6D:51:F8:FC:06:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/6AD95636B6B3E0D5F90EE41F3C3D6D51F8FC06EC.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e87349fb-465e-4e8b-a974-90e939bcb0fb/0/323430323a333730303a3a2f33322d3438203d3e203338343936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2402:3700::/32
Signature Algorithm: sha256WithRSAEncryption
11:2c:12:aa:8a:2f:34:af:86:63:45:f0:ae:22:30:a2:c1:90:
1a:90:b1:f7:3e:ec:b5:a8:d5:3a:5b:2f:0c:59:fd:6e:2c:a1:
8f:97:dd:7c:5a:5e:21:50:be:c3:ab:93:13:75:bd:2d:48:c3:
0f:9e:f7:55:33:6b:87:a1:a7:db:cf:8e:63:f6:8c:fb:7b:fe:
e3:a0:5e:da:f0:ec:86:9c:d2:b4:6b:92:b6:69:a8:55:d0:bc:
b5:1b:49:b6:89:b9:4f:bc:a0:22:ac:a7:ad:a6:93:1d:23:9f:
55:ca:07:c4:c1:42:87:36:ee:b8:f8:e6:cc:8f:de:bb:64:36:
5e:cf:61:49:7e:61:df:a4:08:20:46:d6:e5:c9:26:4a:26:f3:
69:cf:0b:63:af:6c:30:5b:c4:ce:a9:a2:af:80:72:8a:2e:eb:
d4:9f:6c:cf:94:d2:23:67:a3:3b:c0:5f:d3:27:c5:40:a3:88:
de:f0:d2:a1:e3:86:45:06:24:d9:19:10:27:0c:17:2a:01:97:
e8:e2:d6:46:ed:93:fc:12:6d:26:57:8e:51:90:81:aa:a3:4d:
73:4b:ec:77:58:4d:41:0b:f4:a4:c4:93:31:96:66:8d:62:fe:
27:29:b1:2e:dd:df:49:14:25:ab:17:5c:10:fc:4b:8c:47:de:
6b:0e:78:24
-----BEGIN CERTIFICATE-----
MIIFJzCCBA+gAwIBAgIUFTMGSB1K7TcDcaLyAdvdCi81Yt4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFG
OEZDMDZFQzAeFw0yMjA3MjYwMjU4NTZaFw0yMzA3MjUwMzAzNTZaMDMxMTAvBgNV
BAMTKDNCRjNDNzc0REI1MDA2Rjc4RjkyNUFEQkU2NjMxMDQ3RUJCRjI3NEQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD1dJSDAnyUxH5PVIIRhWPsNDwv
d8sd6466QvSjaxqe+77hOy87eWWb8a8AmNXgNnrd4DcIlXzYVGEn+LYKf9eaOz3u
o79Jj5uVcyI9DYCQoYLOznY3oZVhxEZyFy01U2uzk6X7xxVjGTLpTcbL7Cy6+OU0
Z5oe/2FeX4myTeMfsO9jNw7KXclvYkoAtatwLQNIPWCwtlOG00edzPuixVpOUTcS
CGQ66gQRkLStzDnVbovZBYRkrD2wRwVq920+cdm+LO8gWjzyHORv/x/iXTm2JQZx
In6p3zGzoL07onnksqUdXTMqj5GBKk0kBnIXIKYzgqtY1zTIauhFhhmyieUtAgMB
AAGjggIxMIICLTAdBgNVHQ4EFgQUO/PHdNtQBvePklrb5mMQR+u/J00wHwYDVR0j
BBgwFoAUatlWNraz4NX5DuQfPD1tUfj8BuwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l
ODczNDlmYi00NjVlLTRlOGItYTk3NC05MGU5MzliY2IwZmIvMC82QUQ5NTYzNkI2
QjNFMEQ1RjkwRUU0MUYzQzNENkQ1MUY4RkMwNkVDLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNkFEOTU2MzZCNkIzRTBENUY5MEVFNDFGM0MzRDZENTFGOEZD
MDZFQy5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4NzM0OWZiLTQ2NWUtNGU4Yi1h
OTc0LTkwZTkzOWJjYjBmYi8wLzMyMzQzMDMyM2EzMzM3MzAzMDNhM2EyZjMzMzIy
ZDM0MzgyMDNkM2UyMDMzMzgzNDM5MzYucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAjcAMA0GCSqGSIb3
DQEBCwUAA4IBAQARLBKqii80r4ZjRfCuIjCiwZAakLH3Puy1qNU6Wy8MWf1uLKGP
l918Wl4hUL7Dq5MTdb0tSMMPnvdVM2uHoafbz45j9oz7e/7joF7a8OyGnNK0a5K2
aahV0Ly1G0m2iblPvKAirKetppMdI59VygfEwUKHNu64+ObMj967ZDZez2FJfmHf
pAggRtblySZKJvNpzwtjr2wwW8TOqaKvgHKKLuvUn2zPlNIjZ6M7wF/TJ8VAo4je
8NKh44ZFBiTZGRAnDBcqAZfo4tZG7ZP8Em0mV45RkIGqo01zS+x3WE1BC/SkxJMx
lmaNYv4nKbEu3d9JFCWrF1wQ/EuMR95rDngk
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org