Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131372e3130322e39312e302f32342d3234203d3e203137343531.roa
File: 3131372e3130322e39312e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: VO0BVIyNn8cDe7pl6/2+8i3nZsgVd9N38DsJq4yeC8Y=
Subject key identifier: 64:1A:44:4B:D9:A3:34:3A:D0:75:82:3A:E8:D7:DC:29:C4:A9:99:20
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 2481C8FD40E4465DF7FD0FFE841FB222F674010D
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131372e3130322e39312e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:01:01 +0000
ROA not before: Wed 29 Sep 2021 23:56:01 +0000
ROA not after: Fri 30 Sep 2022 00:01:01 +0000
asID: 17451
IP address blocks: 117.102.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:81:c8:fd:40:e4:46:5d:f7:fd:0f:fe:84:1f:b2:22:f6:74:01:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:56:01 2021 GMT
Not After : Sep 30 00:01:01 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9d:9c:ad:51:e6:e7:f1:03:62:1f:9e:91:bf:
e3:d3:24:d4:56:59:46:ee:8d:fe:f5:b3:b9:71:24:
33:86:96:0c:1e:a7:e1:84:cb:39:b6:e2:f5:63:56:
d1:d6:be:ce:c4:52:47:fa:07:d6:17:d4:ce:74:75:
f3:cb:28:d6:d4:a1:2e:62:a1:58:de:ac:e2:03:c7:
de:28:1c:d3:2c:26:cb:0b:2e:9a:3b:b4:7b:ea:14:
76:27:ef:e5:8f:0a:14:f8:fa:ad:fb:38:92:03:1e:
ef:3b:93:7d:5c:88:f0:c0:a3:b9:68:d7:32:23:c8:
b7:97:e6:17:51:d7:58:74:38:84:bf:b0:5c:16:4c:
f9:2f:8a:b1:92:66:07:b2:34:fa:1a:6e:92:e3:ad:
aa:28:60:97:79:ce:d0:b6:d2:7c:b1:79:18:ff:d4:
21:67:1a:01:34:5b:75:af:73:6a:ca:7f:94:89:2b:
da:05:3e:cf:a3:d2:63:f8:7b:4a:10:18:70:26:20:
c2:b5:60:98:cb:d1:27:07:b5:8a:87:fa:f7:7d:7d:
4c:26:11:b2:f8:45:2d:16:b7:3d:b0:01:9a:a9:89:
e6:ba:8e:21:43:cd:b3:41:82:6c:c1:96:32:f1:5f:
65:dc:d2:63:68:cd:8f:29:93:2e:8c:df:56:c3:80:
6f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:1A:44:4B:D9:A3:34:3A:D0:75:82:3A:E8:D7:DC:29:C4:A9:99:20
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131372e3130322e39312e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
117.102.91.0/24
Signature Algorithm: sha256WithRSAEncryption
63:13:52:ae:89:5e:6f:29:9b:ec:64:77:c4:67:aa:39:96:cd:
05:25:0a:47:4f:ce:06:2e:94:fa:86:00:f2:20:6d:f9:ea:46:
88:9b:28:19:a5:9a:9b:88:21:21:6f:3b:5f:1d:d3:de:3e:99:
48:02:ac:62:d2:25:93:19:e8:53:4e:22:c4:ae:af:97:4c:27:
8a:1c:d2:aa:47:54:74:49:c9:90:22:56:68:83:a7:f0:63:ce:
d3:b0:18:a2:a5:b3:04:53:2f:cd:7b:43:6e:b9:49:64:91:ca:
2e:10:0f:14:23:22:7d:42:12:f2:8a:ad:62:d1:d2:1c:26:ea:
d5:fe:33:02:52:58:5e:22:4d:9c:41:5d:a9:f3:3f:cc:26:f1:
0c:ab:45:d2:80:54:82:9e:9f:34:f6:fe:9b:17:0d:e0:3a:2d:
10:5e:48:6b:10:2e:e2:5a:f0:42:30:cf:84:f0:9f:a9:3c:eb:
b3:db:d7:42:4c:bd:a1:d9:a9:c9:47:e1:f2:04:46:9f:5c:a9:
00:37:b6:d1:3e:9f:12:e9:15:80:f0:b4:a0:99:4f:95:76:a6:
f5:51:ce:56:54:91:c8:58:2f:7f:23:de:7e:8d:27:66:48:32:
82:29:07:d6:1f:25:46:71:1d:ce:7e:e8:e2:af:ba:82:28:45:
d2:70:bb:ab
-----BEGIN CERTIFICATE-----
MIIHJDCCBgygAwIBAgIUJIHI/UDkRl33/Q/+hB+yIvZ0AQ0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJBNDE3
RjcyOERCRjAeFw0yMTA5MjkyMzU2MDFaFw0yMjA5MzAwMDAxMDFaMIICLTGCAikw
ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwQjk5RDlDQUQ1MUU2RTdGMTAz
NjIxRjlFOTFCRkUzRDMyNEQ0NTY1OTQ2RUU4REZFRjVCM0I5NzEyNDMzODY5NjBD
MUVBN0UxODRDQjM5QjZFMkY1NjM1NkQxRDZCRUNFQzQ1MjQ3RkEwN0Q2MTdENENF
NzQ3NUYzQ0IyOEQ2RDRBMTJFNjJBMTU4REVBQ0UyMDNDN0RFMjgxQ0QzMkMyNkNC
MEIyRTlBM0JCNDdCRUExNDc2MjdFRkU1OEYwQTE0RjhGQUFERkIzODkyMDMxRUVG
M0I5MzdENUM4OEYwQzBBM0I5NjhENzMyMjNDOEI3OTdFNjE3NTFENzU4NzQzODg0
QkZCMDVDMTY0Q0Y5MkY4QUIxOTI2NjA3QjIzNEZBMUE2RTkyRTNBREFBMjg2MDk3
NzlDRUQwQjZEMjdDQjE3OTE4RkZENDIxNjcxQTAxMzQ1Qjc1QUY3MzZBQ0E3Rjk0
ODkyQkRBMDUzRUNGQTNEMjYzRjg3QjRBMTAxODcwMjYyMEMyQjU2MDk4Q0JEMTI3
MDdCNThBODdGQUY3N0Q3RDRDMjYxMUIyRjg0NTJEMTZCNzNEQjAwMTlBQTk4OUU2
QkE4RTIxNDNDREIzNDE4MjZDQzE5NjMyRjE1RjY1RENEMjYzNjhDRDhGMjk5MzJF
OENERjU2QzM4MDZGNjUwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
MIIBCgKCAQEAuZ2crVHm5/EDYh+ekb/j0yTUVllG7o3+9bO5cSQzhpYMHqfhhMs5
tuL1Y1bR1r7OxFJH+gfWF9TOdHXzyyjW1KEuYqFY3qziA8feKBzTLCbLCy6aO7R7
6hR2J+/ljwoU+Pqt+ziSAx7vO5N9XIjwwKO5aNcyI8i3l+YXUddYdDiEv7BcFkz5
L4qxkmYHsjT6Gm6S462qKGCXec7QttJ8sXkY/9QhZxoBNFt1r3Nqyn+UiSvaBT7P
o9Jj+HtKEBhwJiDCtWCYy9EnB7WKh/r3fX1MJhGy+EUtFrc9sAGaqYnmuo4hQ82z
QYJswZYy8V9l3NJjaM2PKZMujN9Ww4BvZQIDAQABo4ICMjCCAi4wHQYDVR0OBBYE
FGQaREvZozQ60HWCOujX3CnEqZkgMB8GA1UdIwQYMBaAFKxVVEe6YsORB/Fr9XL4
KkF/co2/MA4GA1UdDwEB/wQEAwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzk5M2YzNTAtYjc1Ni00OTE2LThk
ODQtNDg0ZjAyNWRmZmNjLzAvQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJB
NDE3RjcyOERCRi5jcmwwdAYIKwYBBQUHAQEEaDBmMGQGCCsGAQUFBzAChlhyc3lu
YzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8yL0FDNTU1NDQ3
QkE2MkMzOTEwN0YxNkJGNTcyRjgyQTQxN0Y3MjhEQkYuY2VyMIGiBggrBgEFBQcB
CwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby8zOTkzZjM1MC1iNzU2LTQ5MTYtOGQ4NC00ODRmMDI1ZGZmY2MvMC8z
MTMxMzcyZTMxMzAzMjJlMzkzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzcz
NDM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcB
Af8EEDAOMAwEAgABMAYDBAB1ZlswDQYJKoZIhvcNAQELBQADggEBAGMTUq6JXm8p
m+xkd8RnqjmWzQUlCkdPzgYulPqGAPIgbfnqRoibKBmlmpuIISFvO18d094+mUgC
rGLSJZMZ6FNOIsSur5dMJ4oc0qpHVHRJyZAiVmiDp/BjztOwGKKlswRTL817Q265
SWSRyi4QDxQjIn1CEvKKrWLR0hwm6tX+MwJSWF4iTZxBXanzP8wm8QyrRdKAVIKe
nzT2/psXDeA6LRBeSGsQLuJa8EIwz4Twn6k867Pb10JMvaHZqclH4fIERp9cqQA3
ttE+nxLpFYDwtKCZT5V2pvVRzlZUkchYL38j3n6NJ2ZIMoIpB9YfJUZxHc5+6OKv
uoIoRdJwu6s=
-----END CERTIFICATE-----
Generated at Mon Jul 7 00:18:50 2025 by rpki-client