Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130302e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e3130302e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: 5LpN3kYOvUEONDumdR2c1dzfSNsRC8qqg1uspRREx5g=
Subject key identifier: 82:4C:5E:74:7A:87:57:B5:6D:72:B1:59:67:7D:9D:D6:40:2C:BD:8C
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 0F0CEC23F6064383C5721637629F83676218AF6E
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130302e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:01 +0000
ROA not before: Wed 29 Sep 2021 23:55:01 +0000
ROA not after: Fri 30 Sep 2022 00:00:01 +0000
asID: 17451
IP address blocks: 118.99.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:0c:ec:23:f6:06:43:83:c5:72:16:37:62:9f:83:67:62:18:af:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:01 2021 GMT
Not After : Sep 30 00:00:01 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:eb:29:b6:6d:49:c9:19:eb:13:f3:74:8a:8c:
7b:36:f9:5a:d4:80:c8:2a:72:4c:8f:ef:d9:30:ed:
4c:d3:6a:a7:15:13:a8:c2:01:7a:db:1d:7d:4e:ad:
72:d7:31:7d:c7:6e:7d:b5:dc:12:d0:01:01:b7:48:
ac:29:83:8f:e2:de:53:92:78:7e:32:e5:88:2e:4d:
6f:37:6d:d8:35:15:e9:12:66:1a:c4:4d:e3:62:5c:
d7:57:61:0a:5a:7f:18:86:27:10:9d:71:6a:7e:df:
40:a1:bd:19:61:c9:5d:61:be:a1:05:aa:95:af:d8:
79:7c:1c:b0:84:a7:8d:2f:20:2b:cb:70:46:08:57:
09:48:63:0c:8a:af:5d:7c:07:26:83:68:5f:aa:f2:
dc:8d:1c:9c:a5:c6:32:7c:40:ef:70:d4:1c:5a:3b:
5f:90:00:01:b6:8a:dd:99:ef:ad:82:6c:29:67:0d:
b8:76:0e:0c:f3:01:ef:f5:26:5c:b5:64:3f:c3:d6:
48:69:80:7c:07:67:2c:9c:2f:62:c5:81:2b:d4:97:
cc:ef:52:ee:e4:9a:8c:58:1e:44:ea:c6:b5:d3:32:
d9:ff:1c:cb:aa:06:5a:fa:02:a9:14:54:2b:cb:e7:
5b:2e:a1:31:ca:3d:7f:83:3e:28:9a:d4:02:18:f9:
2e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:4C:5E:74:7A:87:57:B5:6D:72:B1:59:67:7D:9D:D6:40:2C:BD:8C
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130302e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.100.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:28:b8:9b:30:0b:35:8c:8b:13:c5:53:40:69:7e:d6:a7:56:
52:9c:47:02:28:c9:a4:96:f4:79:3c:d0:ef:43:6b:fe:13:6b:
17:2a:b4:0a:23:d4:91:ed:06:28:81:5c:af:42:5c:ea:12:2c:
4b:25:92:b0:f3:e6:65:65:c4:fd:b7:53:36:d1:e3:8b:27:8b:
5f:93:12:e9:ad:86:3a:ac:82:a6:f8:ee:e1:cd:dd:d2:e4:8b:
8e:70:3d:db:90:8f:ab:b4:44:f3:40:30:15:2d:96:b6:99:7c:
1c:e2:d8:bf:1c:1b:dd:54:1c:f1:cd:80:07:d1:14:8c:8b:f5:
8e:8f:90:3a:dd:01:07:9a:19:9c:1b:4b:0e:69:a8:8b:4c:3c:
1c:46:47:bf:03:07:b6:7d:0d:ea:48:5d:1b:08:87:dd:77:3f:
d6:6d:f9:b6:c0:c5:90:cd:86:05:eb:bb:3d:e4:66:03:bf:c7:
33:d2:c9:22:1f:2c:16:87:7f:cd:f4:cf:37:5f:3d:ad:7a:5a:
bd:30:3a:5a:76:17:01:b0:14:38:01:cd:1c:80:10:c3:33:5a:
f5:56:6b:3c:47:11:ca:cd:61:5e:df:48:74:58:56:31:39:54:
f8:63:e7:3a:f0:be:10:f9:d7:3d:e2:af:28:f3:00:9f:f6:f5:
07:09:2c:8d
-----BEGIN CERTIFICATE-----
MIIHJDCCBgygAwIBAgIUDwzsI/YGQ4PFchY3Yp+DZ2IYr24wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJBNDE3
RjcyOERCRjAeFw0yMTA5MjkyMzU1MDFaFw0yMjA5MzAwMDAwMDFaMIICLTGCAikw
ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwQkNFQjI5QjY2RDQ5QzkxOUVC
MTNGMzc0OEE4QzdCMzZGOTVBRDQ4MEM4MkE3MjRDOEZFRkQ5MzBFRDRDRDM2QUE3
MTUxM0E4QzIwMTdBREIxRDdENEVBRDcyRDczMTdEQzc2RTdEQjVEQzEyRDAwMTAx
Qjc0OEFDMjk4MzhGRTJERTUzOTI3ODdFMzJFNTg4MkU0RDZGMzc2REQ4MzUxNUU5
MTI2NjFBQzQ0REUzNjI1Q0Q3NTc2MTBBNUE3RjE4ODYyNzEwOUQ3MTZBN0VERjQw
QTFCRDE5NjFDOTVENjFCRUExMDVBQTk1QUZEODc5N0MxQ0IwODRBNzhEMkYyMDJC
Q0I3MDQ2MDg1NzA5NDg2MzBDOEFBRjVEN0MwNzI2ODM2ODVGQUFGMkRDOEQxQzlD
QTVDNjMyN0M0MEVGNzBENDFDNUEzQjVGOTAwMDAxQjY4QUREOTlFRkFEODI2QzI5
NjcwREI4NzYwRTBDRjMwMUVGRjUyNjVDQjU2NDNGQzNENjQ4Njk4MDdDMDc2NzJD
OUMyRjYyQzU4MTJCRDQ5N0NDRUY1MkVFRTQ5QThDNTgxRTQ0RUFDNkI1RDMzMkQ5
RkYxQ0NCQUEwNjVBRkEwMkE5MTQ1NDJCQ0JFNzVCMkVBMTMxQ0EzRDdGODMzRTI4
OUFENDAyMThGOTJFMzUwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
MIIBCgKCAQEAvOsptm1JyRnrE/N0iox7Nvla1IDIKnJMj+/ZMO1M02qnFROowgF6
2x19Tq1y1zF9x259tdwS0AEBt0isKYOP4t5Tknh+MuWILk1vN23YNRXpEmYaxE3j
YlzXV2EKWn8YhicQnXFqft9Aob0ZYcldYb6hBaqVr9h5fBywhKeNLyAry3BGCFcJ
SGMMiq9dfAcmg2hfqvLcjRycpcYyfEDvcNQcWjtfkAABtordme+tgmwpZw24dg4M
8wHv9SZctWQ/w9ZIaYB8B2csnC9ixYEr1JfM71Lu5JqMWB5E6sa10zLZ/xzLqgZa
+gKpFFQry+dbLqExyj1/gz4omtQCGPkuNQIDAQABo4ICMjCCAi4wHQYDVR0OBBYE
FIJMXnR6h1e1bXKxWWd9ndZALL2MMB8GA1UdIwQYMBaAFKxVVEe6YsORB/Fr9XL4
KkF/co2/MA4GA1UdDwEB/wQEAwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzk5M2YzNTAtYjc1Ni00OTE2LThk
ODQtNDg0ZjAyNWRmZmNjLzAvQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJB
NDE3RjcyOERCRi5jcmwwdAYIKwYBBQUHAQEEaDBmMGQGCCsGAQUFBzAChlhyc3lu
YzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8yL0FDNTU1NDQ3
QkE2MkMzOTEwN0YxNkJGNTcyRjgyQTQxN0Y3MjhEQkYuY2VyMIGiBggrBgEFBQcB
CwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby8zOTkzZjM1MC1iNzU2LTQ5MTYtOGQ4NC00ODRmMDI1ZGZmY2MvMC8z
MTMxMzgyZTM5MzkyZTMxMzAzMDJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzcz
NDM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcB
Af8EEDAOMAwEAgABMAYDBAB2Y2QwDQYJKoZIhvcNAQELBQADggEBAHoouJswCzWM
ixPFU0BpftanVlKcRwIoyaSW9Hk80O9Da/4TaxcqtAoj1JHtBiiBXK9CXOoSLEsl
krDz5mVlxP23UzbR44sni1+TEumthjqsgqb47uHN3dLki45wPduQj6u0RPNAMBUt
lraZfBzi2L8cG91UHPHNgAfRFIyL9Y6PkDrdAQeaGZwbSw5pqItMPBxGR78DB7Z9
DepIXRsIh913P9Zt+bbAxZDNhgXruz3kZgO/xzPSySIfLBaHf830zzdfPa16Wr0w
Olp2FwGwFDgBzRyAEMMzWvVWazxHEcrNYV7fSHRYVjE5VPhj5zrwvhD51z3iryjz
AJ/29QcJLI0=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:44 2023 by rpki-client on console-fra.rpki-client.org