Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130392e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e3130392e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: Ltsm2BPIy7T81F0nnN3ol6nReVXO9qLY45DRkbM7ebQ=
Subject key identifier: 64:17:29:E8:0E:9D:C5:C8:B3:C3:7F:7F:5A:28:1B:2D:41:09:47:E6
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 1DB67BB1F5754BD76E5458C753DEBB02255FB7AF
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130392e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 02:00:00 +0000
ROA not before: Thu 30 Sep 2021 01:55:00 +0000
ROA not after: Fri 30 Sep 2022 02:00:00 +0000
asID: 17451
IP address blocks: 118.99.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:b6:7b:b1:f5:75:4b:d7:6e:54:58:c7:53:de:bb:02:25:5f:b7:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 30 01:55:00 2021 GMT
Not After : Sep 30 02:00:00 2022 GMT
Subject: CN=3082010A0282010100A06DC84E37CE14719AA772FF4719F8A9BBC6EC6FD0F2DB408FF504F96D43AA50A6DE4B8ACA31EA8C9DC46EAEC49C6C470E0B85421E299D598C0988B967F3CA8A5900856196337DB349C19CDE633917C6CCAB5C2BE84D0EFBE8B4E8BFD6D7B737E3F4CCCE458C00EE5C4BFBAC34B39F0C52276FE11F7D41470A8E70C97A9C3904AE1474AAE1389C4CBB92D33FE43F461F92970EA882777F1EC1BF3449AB238FD4F885FC57675250D60666199FFCE4B3857580CD278800731F1DE05E8456D8D7646ABA26E2FC3FD26680F8D739F3A57BC23DA410D3D1A3796271B09AC7F7F3BD135E14ABE3B47EBED3C05FB46108BCFC11EFAA95D2BF9164AFACC2E397BF4D72F70203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:6d:c8:4e:37:ce:14:71:9a:a7:72:ff:47:19:
f8:a9:bb:c6:ec:6f:d0:f2:db:40:8f:f5:04:f9:6d:
43:aa:50:a6:de:4b:8a:ca:31:ea:8c:9d:c4:6e:ae:
c4:9c:6c:47:0e:0b:85:42:1e:29:9d:59:8c:09:88:
b9:67:f3:ca:8a:59:00:85:61:96:33:7d:b3:49:c1:
9c:de:63:39:17:c6:cc:ab:5c:2b:e8:4d:0e:fb:e8:
b4:e8:bf:d6:d7:b7:37:e3:f4:cc:ce:45:8c:00:ee:
5c:4b:fb:ac:34:b3:9f:0c:52:27:6f:e1:1f:7d:41:
47:0a:8e:70:c9:7a:9c:39:04:ae:14:74:aa:e1:38:
9c:4c:bb:92:d3:3f:e4:3f:46:1f:92:97:0e:a8:82:
77:7f:1e:c1:bf:34:49:ab:23:8f:d4:f8:85:fc:57:
67:52:50:d6:06:66:19:9f:fc:e4:b3:85:75:80:cd:
27:88:00:73:1f:1d:e0:5e:84:56:d8:d7:64:6a:ba:
26:e2:fc:3f:d2:66:80:f8:d7:39:f3:a5:7b:c2:3d:
a4:10:d3:d1:a3:79:62:71:b0:9a:c7:f7:f3:bd:13:
5e:14:ab:e3:b4:7e:be:d3:c0:5f:b4:61:08:bc:fc:
11:ef:aa:95:d2:bf:91:64:af:ac:c2:e3:97:bf:4d:
72:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:17:29:E8:0E:9D:C5:C8:B3:C3:7F:7F:5A:28:1B:2D:41:09:47:E6
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130392e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.109.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:e9:94:cb:bc:1a:70:7e:11:96:0d:56:18:8d:5e:1a:a9:12:
cf:e4:46:36:97:ee:db:b7:fa:44:69:50:3e:99:e1:b6:2a:a9:
ed:54:08:48:e5:18:87:a2:6c:61:31:ec:de:9b:14:3a:52:f5:
b9:da:78:b7:57:dc:85:bd:5b:3f:15:00:a3:a5:62:b7:2e:d2:
65:09:f8:a8:3a:b0:f6:63:c6:96:a3:5d:5e:fc:94:f9:38:4c:
bb:1e:83:a7:9a:b0:0c:e6:32:7b:2c:77:62:c3:b4:53:03:fb:
88:81:07:39:1b:70:01:ef:ee:1c:83:84:45:a5:cf:ad:59:b8:
6a:35:d6:05:4f:3c:35:2c:f3:76:03:4a:8e:ce:13:7c:ef:92:
ed:92:f2:4b:f3:5c:2f:92:35:66:b7:75:9b:5f:c2:7c:04:77:
ab:8c:44:12:b9:b2:55:2d:98:31:50:4b:a8:d8:f7:f4:c8:d1:
43:18:dc:ef:63:e9:db:b1:ec:c0:3e:8e:50:9f:b7:1e:cb:cc:
ae:94:98:cd:a5:9f:5e:c2:ae:76:3f:1e:20:f8:40:79:ba:bb:
b0:55:b8:51:77:b3:7d:d1:d6:dd:89:ba:05:81:f7:6e:83:1d:
23:f2:59:77:1d:21:59:f1:86:90:11:06:41:1e:a0:ff:e3:d7:
17:71:a6:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org