Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130312e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e3130312e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: UOa3l/XfrLyZyFDtt4U7Oihy1W+qt93SAEfMmBWp8Mg=
Subject key identifier: B9:C0:12:B1:27:DC:4E:F2:96:F4:B5:9A:E5:49:FE:54:DC:C6:34:61
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 792AC78AB6949567EC1DA5E3BFC08C04CE1655F8
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130312e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:01:18 +0000
ROA not before: Wed 29 Sep 2021 23:56:18 +0000
ROA not after: Fri 30 Sep 2022 00:01:18 +0000
asID: 17451
IP address blocks: 118.99.101.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:2a:c7:8a:b6:94:95:67:ec:1d:a5:e3:bf:c0:8c:04:ce:16:55:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:56:18 2021 GMT
Not After : Sep 30 00:01:18 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:24:29:fc:0f:8e:b8:26:48:63:34:13:4c:c6:
81:05:4f:31:45:66:73:cb:24:02:1e:b6:64:b3:59:
91:99:de:76:f9:f9:31:db:d6:c2:88:10:69:b7:e3:
c6:26:00:3d:63:36:c8:65:e7:4a:30:e7:d0:43:26:
20:c5:1c:52:81:5c:6b:df:92:cb:a1:e8:61:11:8f:
aa:25:77:6d:23:46:19:df:fa:29:33:16:f5:e8:2f:
57:b6:28:3b:9d:f2:db:ce:c3:5d:ce:26:75:21:32:
0c:a2:d1:fe:96:60:3d:d7:10:5f:00:85:36:c0:29:
b9:50:ac:b8:06:64:90:76:f6:66:b0:74:b8:a6:55:
3a:00:13:6b:ab:9b:59:71:c4:d6:c0:6f:0b:99:8d:
5f:55:be:62:c5:61:7d:06:3e:62:ed:21:b3:0f:c8:
5d:0e:5e:4a:91:1e:24:c5:0c:32:5e:94:44:c4:ba:
0e:6d:33:7c:1d:ac:3b:7a:dd:8a:93:c9:f3:9d:a4:
63:cc:7d:34:c3:07:75:6a:98:78:5a:c5:af:74:35:
85:5b:7b:4f:29:e3:81:dc:9c:ac:a7:2a:79:4a:76:
04:be:87:0d:b7:0a:ab:7b:32:35:90:5f:55:8e:c4:
f0:ab:28:b0:4f:10:0e:21:97:48:fc:1b:d8:2f:44:
f5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:C0:12:B1:27:DC:4E:F2:96:F4:B5:9A:E5:49:FE:54:DC:C6:34:61
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130312e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.101.0/24
Signature Algorithm: sha256WithRSAEncryption
33:a9:db:0b:a3:e8:3c:14:97:0b:89:49:32:6a:03:dc:f1:44:
f4:a8:59:58:9c:0f:18:18:88:60:e7:64:5f:1b:3b:5b:25:28:
f0:81:57:85:dc:98:e8:8c:eb:2e:e3:a9:77:32:5e:80:f8:6f:
e0:9a:5a:8e:24:17:24:31:fb:48:d8:2b:22:eb:f4:73:fd:a0:
9f:84:c5:6e:88:8a:ce:8e:a0:d9:97:1d:c5:5f:db:42:de:01:
a0:e4:8f:cb:45:ea:7c:b4:76:cc:d1:09:ca:1b:04:02:c7:e8:
65:2a:57:18:98:98:fa:86:97:f6:7e:2e:d4:b1:8a:e5:19:cb:
af:e6:0a:e2:df:db:e2:fe:40:d5:e4:6d:ad:da:b4:c1:4a:42:
96:0e:5a:78:03:23:38:5d:bd:75:91:3b:3d:58:46:18:84:be:
2a:72:4b:e4:8b:a3:fd:7c:35:01:f6:c9:30:18:17:25:ea:2a:
ff:12:55:a4:20:98:49:72:f9:7a:89:c6:9d:34:e2:e0:d0:30:
91:b9:b1:12:9f:67:03:d0:a2:b5:15:a6:01:ac:06:b7:38:49:
1d:3a:ad:0c:56:c0:9c:88:5f:9f:0b:c7:6a:b6:9b:ec:b6:4c:
21:4e:0f:f5:99:ff:94:f3:66:02:80:51:94:b4:76:ad:64:26:
99:b9:3e:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:44 2023 by rpki-client on console-fra.rpki-client.org