Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130372e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e3130372e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: 6s9qe/263L+R9gleEDsm6SA6sfpem6718ztLXCp9lYk=
Subject key identifier: A9:41:B3:04:51:77:30:02:4F:65:70:AB:00:F7:76:67:2C:CA:9C:20
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 33B8BDCC947DC582A92AFB3AB303C853D0D28EFE
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130372e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:22 +0000
ROA not before: Wed 29 Sep 2021 23:55:22 +0000
ROA not after: Fri 30 Sep 2022 00:00:22 +0000
asID: 17451
IP address blocks: 118.99.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:b8:bd:cc:94:7d:c5:82:a9:2a:fb:3a:b3:03:c8:53:d0:d2:8e:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:22 2021 GMT
Not After : Sep 30 00:00:22 2022 GMT
Subject: CN=3082010A0282010100B6416F2E48B8828B1FC903238E14A797B032B9D9EB34B955CE9989976E885FF615BFDF14021D345469D17C0B12D8013074E78080147B6D3E270DEAD3332A30B8E0628687B718EAAC03D144DDDFFC45673F4247951D56D374C138217001337C891FD5C6164E1253AD77E9A472498DBA6968CDA4299B1773F6E470652D8D0BF08152D7A832D06794F63AEB2B27B97708F72A979DA7851C6F4E088433824CC8B67312F0363402C2870DB7162D08F0067EC1E5D85FE34B00E85126F4B1141324E3CC52090C815551C78ACDA1A08AF36237FBBCAEAC1BFA3FAAB4F5A7B5E5058E349E37D31D80FD122A344E1C9A1F766387DF732F7EA92D717E7005BDAD2BD54BF8210203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:41:6f:2e:48:b8:82:8b:1f:c9:03:23:8e:14:
a7:97:b0:32:b9:d9:eb:34:b9:55:ce:99:89:97:6e:
88:5f:f6:15:bf:df:14:02:1d:34:54:69:d1:7c:0b:
12:d8:01:30:74:e7:80:80:14:7b:6d:3e:27:0d:ea:
d3:33:2a:30:b8:e0:62:86:87:b7:18:ea:ac:03:d1:
44:dd:df:fc:45:67:3f:42:47:95:1d:56:d3:74:c1:
38:21:70:01:33:7c:89:1f:d5:c6:16:4e:12:53:ad:
77:e9:a4:72:49:8d:ba:69:68:cd:a4:29:9b:17:73:
f6:e4:70:65:2d:8d:0b:f0:81:52:d7:a8:32:d0:67:
94:f6:3a:eb:2b:27:b9:77:08:f7:2a:97:9d:a7:85:
1c:6f:4e:08:84:33:82:4c:c8:b6:73:12:f0:36:34:
02:c2:87:0d:b7:16:2d:08:f0:06:7e:c1:e5:d8:5f:
e3:4b:00:e8:51:26:f4:b1:14:13:24:e3:cc:52:09:
0c:81:55:51:c7:8a:cd:a1:a0:8a:f3:62:37:fb:bc:
ae:ac:1b:fa:3f:aa:b4:f5:a7:b5:e5:05:8e:34:9e:
37:d3:1d:80:fd:12:2a:34:4e:1c:9a:1f:76:63:87:
df:73:2f:7e:a9:2d:71:7e:70:05:bd:ad:2b:d5:4b:
f8:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:41:B3:04:51:77:30:02:4F:65:70:AB:00:F7:76:67:2C:CA:9C:20
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130372e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.107.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:cf:8e:71:bf:e8:77:d4:9a:48:99:dc:68:fa:cd:40:80:d9:
5a:f8:c0:f2:58:46:20:c1:87:07:eb:19:17:c4:f7:d6:02:3d:
7e:3b:7a:53:37:25:43:6e:e7:5d:7d:8b:a7:10:4c:58:8d:3d:
bc:37:8e:de:a5:ce:8a:fa:44:4a:ca:d8:20:81:d1:e2:c8:7b:
3f:78:1a:9d:d6:11:1b:1b:e3:10:09:38:1a:af:df:fd:69:8a:
aa:f4:1a:51:c5:07:d6:e6:1f:2b:7d:6f:1a:57:0e:f4:af:f1:
6b:aa:69:ba:75:bb:c8:f3:73:c6:a5:fe:02:64:92:7d:23:e6:
1d:d3:30:7e:d3:96:ac:db:47:24:a9:48:e6:79:27:f3:7a:73:
62:79:a0:1d:92:d7:cd:f6:38:98:e5:ca:ea:ff:1e:9d:2a:b3:
56:b0:4f:29:56:0d:cf:11:06:9a:1d:c6:60:78:1d:df:9a:30:
e0:56:15:e0:d9:67:55:a0:4c:0d:79:ac:f1:6d:3c:79:a5:7d:
ae:7d:10:c4:80:05:a7:62:10:24:a9:0c:b6:6e:49:93:32:78:
ad:cf:c2:5e:4e:85:56:be:4c:27:4b:ac:a9:d3:40:4f:18:fc:
9b:e4:cc:05:68:69:22:7d:f3:12:dc:5f:37:47:55:f0:c9:66:
4a:f2:1f:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org