Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130352e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e3130352e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: kOjECNxL3h7STdv9Gi3JJJEFETBHvHV+FN7vCyOX8qU=
Subject key identifier: 49:5D:18:EC:AF:64:E0:63:15:A2:72:76:F6:A6:27:22:B9:A4:9E:70
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 5D7DCCD133ECDDCBBB6D99D1D61E484AB269CB60
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130352e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:01:10 +0000
ROA not before: Wed 29 Sep 2021 23:56:10 +0000
ROA not after: Fri 30 Sep 2022 00:01:10 +0000
asID: 17451
IP address blocks: 118.99.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:7d:cc:d1:33:ec:dd:cb:bb:6d:99:d1:d6:1e:48:4a:b2:69:cb:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:56:10 2021 GMT
Not After : Sep 30 00:01:10 2022 GMT
Subject: CN=3082010A0282010100D12DB3E549879A8D2F91E3B02EC9A543281B0280475F5409FC193D38D6BE0645CB3C6F56F7A4F85D5919F208523797AD7B22EE18AB4055B990668B0DF7625355FB820CAF16621DC044A230459EF4EFA007A3AF84AD518AEE468D13A5BC57B5694A65AC8B3BABC41396A26D8607F80E70B52133356BABCFCAF19359B3145B1DB0CE330A03CDA2E353831A693EC69E58AEC2C3B1B964ED8A35D62DF3F62C32AB67A9EB115829FD0F4B02770DF688E3E27728DCC4B707535A395EA1A8D8439626D0B0D368E035E6E8D7747C270F83981DD324F9C5C587390E763A5C89C309B745EB55A5A316A3D109D70A310DE7F8840E308D3DA44FB24FE81E61F7FB5A2536C48B0203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2d:b3:e5:49:87:9a:8d:2f:91:e3:b0:2e:c9:
a5:43:28:1b:02:80:47:5f:54:09:fc:19:3d:38:d6:
be:06:45:cb:3c:6f:56:f7:a4:f8:5d:59:19:f2:08:
52:37:97:ad:7b:22:ee:18:ab:40:55:b9:90:66:8b:
0d:f7:62:53:55:fb:82:0c:af:16:62:1d:c0:44:a2:
30:45:9e:f4:ef:a0:07:a3:af:84:ad:51:8a:ee:46:
8d:13:a5:bc:57:b5:69:4a:65:ac:8b:3b:ab:c4:13:
96:a2:6d:86:07:f8:0e:70:b5:21:33:35:6b:ab:cf:
ca:f1:93:59:b3:14:5b:1d:b0:ce:33:0a:03:cd:a2:
e3:53:83:1a:69:3e:c6:9e:58:ae:c2:c3:b1:b9:64:
ed:8a:35:d6:2d:f3:f6:2c:32:ab:67:a9:eb:11:58:
29:fd:0f:4b:02:77:0d:f6:88:e3:e2:77:28:dc:c4:
b7:07:53:5a:39:5e:a1:a8:d8:43:96:26:d0:b0:d3:
68:e0:35:e6:e8:d7:74:7c:27:0f:83:98:1d:d3:24:
f9:c5:c5:87:39:0e:76:3a:5c:89:c3:09:b7:45:eb:
55:a5:a3:16:a3:d1:09:d7:0a:31:0d:e7:f8:84:0e:
30:8d:3d:a4:4f:b2:4f:e8:1e:61:f7:fb:5a:25:36:
c4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:5D:18:EC:AF:64:E0:63:15:A2:72:76:F6:A6:27:22:B9:A4:9E:70
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130352e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.105.0/24
Signature Algorithm: sha256WithRSAEncryption
55:ef:4c:78:92:65:d6:5d:58:94:58:8a:6b:df:b2:dc:07:96:
8a:72:50:b2:3b:8e:39:14:c8:65:47:f9:54:90:fc:db:e7:0d:
c2:19:3b:3a:40:bb:b1:57:6e:55:b1:2c:cd:21:77:8d:31:6a:
a5:9e:c7:40:97:f5:64:e9:a2:6d:d3:62:1d:53:9c:53:12:68:
fb:0c:86:7d:ca:28:13:b2:72:77:d8:77:5a:ba:df:1c:77:39:
79:fc:d1:3d:d8:51:38:38:94:ea:6b:eb:75:5e:a5:7b:f2:7e:
b6:7b:b0:d1:68:ad:e1:7a:1c:85:55:3e:1f:0b:c8:2b:af:8d:
9c:61:dd:45:8c:ae:c3:01:ff:24:04:43:e9:6e:fe:be:1c:3d:
3e:52:c0:bf:03:f1:c3:48:01:4c:db:39:4c:3a:b9:6c:26:21:
37:8d:3c:31:e3:54:04:05:a4:f1:57:8c:5e:bd:8b:82:16:b7:
c7:29:d1:9d:9b:ae:02:cd:cb:60:b5:37:de:08:19:66:af:54:
f3:a6:6a:1e:b3:57:be:b5:3d:98:f8:7f:d9:49:a6:52:3a:95:
f8:ac:61:fe:e1:26:be:ef:89:0b:49:8a:3b:5c:8f:b8:d3:96:
9d:bf:47:32:3e:35:89:79:12:f3:86:4c:8c:07:5b:c9:04:39:
c1:cd:ea:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org