Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130382e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e3130382e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: 8aFCDUBcRuwGqfIOLckuTm6JwDLDjZDRAcDhH3I9W4E=
Subject key identifier: AA:37:25:31:B8:85:61:CB:32:1E:8A:ED:D5:39:28:40:E6:6B:6F:E9
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 664F4701C25124D213F36DEF5516CE5A347F7769
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130382e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:01:17 +0000
ROA not before: Wed 29 Sep 2021 23:56:17 +0000
ROA not after: Fri 30 Sep 2022 00:01:17 +0000
asID: 17451
IP address blocks: 118.99.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:4f:47:01:c2:51:24:d2:13:f3:6d:ef:55:16:ce:5a:34:7f:77:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:56:17 2021 GMT
Not After : Sep 30 00:01:17 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:5f:03:ec:88:ab:91:ea:16:de:ba:d9:90:ed:
d6:fe:22:1c:d0:95:02:97:c2:3b:98:cd:51:fd:78:
f9:04:9b:15:83:06:ae:5d:a7:51:94:bf:68:d3:e7:
78:92:e7:18:d6:a4:f9:f4:50:f3:10:df:a4:5e:3d:
f1:eb:e9:9f:68:6a:58:a4:83:2e:83:55:3b:a1:1a:
6b:4a:88:40:bf:42:ac:5f:d5:2b:03:48:5d:bd:d5:
38:3c:f9:89:24:d4:97:c7:55:8e:21:b9:df:04:4b:
01:e7:2f:df:3d:d6:82:5c:34:3c:f8:9a:2c:52:b6:
b7:f0:14:cd:f4:45:88:a0:28:8a:45:d5:06:eb:92:
ff:14:bc:e5:ea:5e:2a:cb:3d:b9:86:b3:f4:58:85:
a5:1a:b3:03:bb:a4:ca:81:77:ea:82:d5:88:2a:ce:
0e:8a:95:02:ab:09:7c:81:d0:e7:78:fb:f0:83:c5:
7c:27:0a:d4:4a:9a:3e:67:a3:c5:a5:f3:93:ae:2e:
d0:f1:34:32:e7:48:b8:05:c7:83:c9:ee:75:8f:4f:
a6:0f:20:8c:4e:29:76:9b:04:7d:52:f1:91:14:9d:
33:2d:12:ea:4b:96:8b:92:12:d4:ee:d3:79:a3:56:
10:eb:49:6d:19:f1:43:01:d4:50:7f:a0:9d:cb:b5:
06:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:37:25:31:B8:85:61:CB:32:1E:8A:ED:D5:39:28:40:E6:6B:6F:E9
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130382e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.108.0/24
Signature Algorithm: sha256WithRSAEncryption
49:cf:81:05:ec:bd:da:72:10:15:de:e4:2f:5d:d4:24:ec:1b:
38:a2:10:88:95:cb:53:05:59:fc:d1:5f:6c:fe:19:ff:20:17:
7f:21:8a:7b:c7:d8:5f:4b:aa:2c:6e:67:3b:20:60:40:98:45:
bd:e9:03:56:76:5e:72:66:61:e7:02:3a:9b:33:cd:06:cf:09:
6e:ef:a2:2a:9b:11:92:52:b0:78:dc:cc:3d:14:94:e0:34:96:
b5:b8:c3:4d:5a:35:7c:d7:4e:3e:9c:d3:89:ef:7b:ae:4a:36:
ad:95:92:37:81:d2:e2:c3:6a:dd:a5:0a:0f:48:0b:79:17:c2:
18:89:90:7a:35:00:ea:8d:50:06:bb:41:f5:4c:62:2d:a6:6f:
12:00:15:88:29:4a:e7:47:a9:85:97:e0:28:c9:b1:d7:c9:74:
22:c9:87:65:02:50:1b:d7:8d:4d:2b:95:54:cb:9b:33:f2:39:
f4:c9:69:4b:39:03:6e:a1:84:f5:c5:79:28:c6:2c:aa:f7:6e:
43:7a:9d:34:93:7c:84:3f:ba:6c:f9:0d:50:d7:76:96:c8:64:
58:df:67:08:5c:71:8e:e3:30:b6:8b:c9:28:3f:5b:62:2e:79:
78:c0:f7:95:b3:62:6f:5b:17:04:72:0c:30:fd:71:52:52:0a:
2c:1f:9a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org