Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130362e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e3130362e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: jksfhzTp3n13FwBJf00Vu4f5BKgMfbJasvHgbSjLux4=
Subject key identifier: 6F:4D:BD:09:68:F5:0B:4B:E5:A5:CC:65:00:E7:F0:B1:97:92:63:85
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 2D60613C818DE1E065F8E0C3F85323D58EEA85B5
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130362e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:11 +0000
ROA not before: Wed 29 Sep 2021 23:55:11 +0000
ROA not after: Fri 30 Sep 2022 00:00:11 +0000
asID: 17451
IP address blocks: 118.99.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:60:61:3c:81:8d:e1:e0:65:f8:e0:c3:f8:53:23:d5:8e:ea:85:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:11 2021 GMT
Not After : Sep 30 00:00:11 2022 GMT
Subject: CN=3082010A0282010100BBFE959EA8A1B60AAFA7EADCE57F6E096C5FE9EBDEF61AD4A2D1006492C34A443B25248C2ACD5017CBA9F94BB075DA0F95F588D2F1D71FDEBCD22755364A95283ADAC333C76FC8477AB59685DDFD6CC2236596948A89D3689D90CB30FD5912DB29523B879AFAD8267E45445CA6BFF6D4258BF6E0D46969B2D4622E90C732CACC23738A01A64BCE750AA1619D84F8D1CDCB3A997178A2AB35322A504C46967538EF280990BDACE93A3925956CF90F03B0D0A6D0D720E3060C2FB4CF9B4318E8E2988C3CD735EEAB9CC6B6F179A7F9E868D1D6C2F5A25B329B48B6A06EEA335698BB923F1D36D9630B2D6E21C460DC252C2D887DE74F6C69488DB927B1EFD67BFF0203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fe:95:9e:a8:a1:b6:0a:af:a7:ea:dc:e5:7f:
6e:09:6c:5f:e9:eb:de:f6:1a:d4:a2:d1:00:64:92:
c3:4a:44:3b:25:24:8c:2a:cd:50:17:cb:a9:f9:4b:
b0:75:da:0f:95:f5:88:d2:f1:d7:1f:de:bc:d2:27:
55:36:4a:95:28:3a:da:c3:33:c7:6f:c8:47:7a:b5:
96:85:dd:fd:6c:c2:23:65:96:94:8a:89:d3:68:9d:
90:cb:30:fd:59:12:db:29:52:3b:87:9a:fa:d8:26:
7e:45:44:5c:a6:bf:f6:d4:25:8b:f6:e0:d4:69:69:
b2:d4:62:2e:90:c7:32:ca:cc:23:73:8a:01:a6:4b:
ce:75:0a:a1:61:9d:84:f8:d1:cd:cb:3a:99:71:78:
a2:ab:35:32:2a:50:4c:46:96:75:38:ef:28:09:90:
bd:ac:e9:3a:39:25:95:6c:f9:0f:03:b0:d0:a6:d0:
d7:20:e3:06:0c:2f:b4:cf:9b:43:18:e8:e2:98:8c:
3c:d7:35:ee:ab:9c:c6:b6:f1:79:a7:f9:e8:68:d1:
d6:c2:f5:a2:5b:32:9b:48:b6:a0:6e:ea:33:56:98:
bb:92:3f:1d:36:d9:63:0b:2d:6e:21:c4:60:dc:25:
2c:2d:88:7d:e7:4f:6c:69:48:8d:b9:27:b1:ef:d6:
7b:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:4D:BD:09:68:F5:0B:4B:E5:A5:CC:65:00:E7:F0:B1:97:92:63:85
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130362e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.106.0/24
Signature Algorithm: sha256WithRSAEncryption
14:e6:7e:cc:90:53:f5:34:53:58:b4:da:60:64:bb:b6:df:21:
e4:fe:75:09:e8:de:55:77:2a:d8:38:dc:6e:ae:41:47:5b:02:
97:84:16:51:08:22:f5:d1:30:da:52:82:84:fd:82:53:74:f5:
5c:3e:a5:46:19:f7:a9:1e:65:22:78:52:20:e2:0e:2f:63:7e:
e9:d4:dc:ed:f4:64:13:6c:dd:3f:45:21:96:ba:2c:8e:87:b7:
a5:e3:41:77:84:91:02:36:c3:98:4e:57:74:65:ce:cd:71:59:
5f:c1:c0:93:2f:91:b0:81:2a:18:73:93:37:b6:8f:a4:90:26:
3d:23:a2:21:02:df:51:6e:d1:06:d8:d5:12:77:31:53:3d:2e:
97:2b:62:61:fa:a1:33:31:22:d2:ca:55:63:61:8f:78:6d:15:
39:f1:05:07:25:96:e2:af:e2:a8:bd:c3:f0:2e:0c:f5:09:0c:
96:c9:0a:69:23:4b:4a:78:78:87:f7:1a:d7:a7:d9:a7:a8:32:
63:89:8b:f7:1f:d4:51:9b:71:1a:ee:66:b3:55:6b:15:87:9d:
92:a0:9d:4b:4e:4c:fb:b5:d5:2e:8f:4e:c4:3c:38:8b:10:66:
7c:03:30:6b:4b:c7:a7:bb:d1:8f:3a:60:e4:c0:8e:18:6a:90:
42:a2:6a:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:44 2023 by rpki-client on console-fra.rpki-client.org