Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3131312e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e3131312e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: DT0X2F9pH0lfMt5Hb/5mubHjHMWSc/EupZYrickHwYM=
Subject key identifier: 56:08:E6:B6:5A:C2:80:58:DA:64:1D:BE:BD:E5:A9:3C:44:77:21:56
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 5F0059490C2436D180371C58F6BE837F6B228E29
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3131312e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:38 +0000
ROA not before: Wed 29 Sep 2021 23:55:38 +0000
ROA not after: Fri 30 Sep 2022 00:00:38 +0000
asID: 17451
IP address blocks: 118.99.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:00:59:49:0c:24:36:d1:80:37:1c:58:f6:be:83:7f:6b:22:8e:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:38 2021 GMT
Not After : Sep 30 00:00:38 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:37:d4:c7:44:c2:b4:bf:03:da:fd:98:a2:0b:
f8:78:7e:ee:c3:e5:4f:a8:86:53:dc:1b:53:09:d5:
b6:13:b4:5a:74:62:54:01:1e:4a:6b:b9:25:db:2c:
e7:55:a9:26:04:24:8b:cb:92:59:6c:67:93:86:8b:
28:ad:9b:82:f3:2b:6b:6a:5b:4c:53:99:df:b7:1c:
34:ac:e3:2c:c3:48:0b:97:64:1b:9c:bc:75:36:e0:
ea:f6:f1:07:d6:90:d7:47:ab:af:ce:1c:50:c4:dd:
eb:0c:f9:43:b4:43:fb:0b:ae:71:ee:e5:85:4f:21:
7c:cd:bb:b5:9b:f0:46:88:40:27:bd:8d:5a:66:70:
01:7e:b9:91:6d:ac:52:94:62:50:fe:11:f5:df:fc:
c4:44:f1:6f:b6:8c:fc:09:f6:21:58:da:d5:ae:56:
52:d8:ed:78:4b:47:ca:04:e2:12:5e:cc:26:e1:7d:
e9:54:72:a7:e4:28:35:da:24:e4:d7:f2:0a:4b:34:
db:9f:9c:c6:81:2f:5a:56:60:05:c7:ae:fc:eb:6f:
82:c7:80:42:61:cb:9e:09:c8:eb:4d:18:97:2a:f4:
b5:e3:f8:41:a7:61:1b:c7:87:00:55:1f:54:61:10:
b6:09:3c:02:5f:06:54:62:bb:32:29:37:a2:62:13:
72:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:08:E6:B6:5A:C2:80:58:DA:64:1D:BE:BD:E5:A9:3C:44:77:21:56
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3131312e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.111.0/24
Signature Algorithm: sha256WithRSAEncryption
88:67:46:a8:74:ca:33:0d:20:52:32:25:75:68:99:b8:08:d8:
a5:b1:51:b6:07:60:9a:74:b6:7a:4a:38:fc:89:98:de:e7:23:
35:52:36:5e:d0:c6:ef:6d:c9:19:8d:94:88:49:a9:80:16:f1:
dc:3c:02:f5:07:be:ee:97:d7:f7:b8:72:4e:c8:cd:31:34:12:
70:2f:7d:fc:70:55:a2:d0:37:fd:cf:7e:9b:b9:d4:2f:d1:ce:
cf:80:43:ad:51:5d:1e:84:c0:6c:ba:df:26:aa:13:09:67:5a:
67:30:22:b3:d5:f0:3a:08:55:db:2f:54:b2:5a:db:0c:54:f1:
1f:07:ab:b8:25:76:99:c0:1c:9b:1f:6c:6f:d8:e0:72:b7:01:
ce:1c:ff:fe:05:97:2b:6e:6f:70:c3:64:ac:81:b8:bf:59:ec:
f7:64:d7:33:06:00:1b:95:b1:10:82:74:20:a0:ea:c7:b8:f8:
85:4b:c9:a0:80:aa:d6:31:eb:39:f3:8e:a3:fd:51:48:c4:77:
e6:e2:05:bb:6a:f5:c9:8d:f4:30:f0:9e:a9:06:6c:1c:1f:08:
64:1c:f5:ac:5b:76:88:19:23:fe:f5:b8:05:50:84:e0:c3:ef:
e4:94:53:51:64:a4:f4:94:0f:af:39:ca:1a:6d:7b:00:b5:2a:
eb:27:18:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:44 2023 by rpki-client on console-fra.rpki-client.org