Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3132302e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e3132302e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: czSl0bmnouO0B4aafITnNqIBAA+jkC4SH/tyt4gvgrc=
Subject key identifier: BB:09:BA:A0:B3:5F:6E:D7:A4:DC:E2:54:AF:64:84:A8:51:59:33:64
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 39F13467A3E33EF28ED87D01C966BF4B2088DB13
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3132302e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:01:15 +0000
ROA not before: Wed 29 Sep 2021 23:56:15 +0000
ROA not after: Fri 30 Sep 2022 00:01:15 +0000
asID: 17451
IP address blocks: 118.99.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:f1:34:67:a3:e3:3e:f2:8e:d8:7d:01:c9:66:bf:4b:20:88:db:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:56:15 2021 GMT
Not After : Sep 30 00:01:15 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:a2:be:9d:cb:63:d1:0c:86:2e:0e:76:d7:03:
37:e1:2e:86:c7:13:1c:6c:d2:e9:c4:b4:e8:3c:95:
05:55:a7:75:32:d5:d7:21:ab:e1:45:f3:04:a8:77:
84:4f:1c:93:15:97:67:9c:66:fa:33:37:14:68:64:
7e:ca:c2:8d:c8:4b:03:a6:96:4f:0c:e3:c2:8e:d0:
39:6c:ec:fb:ee:14:32:fd:16:8d:a5:46:ad:ec:33:
e6:23:88:5b:b6:5e:ef:8c:91:1f:cb:1d:47:86:a5:
ee:1b:7e:66:65:e1:9c:d5:7f:af:44:ea:64:eb:82:
9a:49:a0:84:5f:af:f0:9b:64:46:c2:e6:b3:af:08:
9a:96:8e:4a:fc:c7:d4:bf:6a:92:a2:96:42:47:4b:
ac:ed:36:2c:ee:17:ad:45:30:07:25:10:2b:ff:11:
59:6f:a4:7a:4f:4d:59:af:bb:fc:a7:35:58:8a:e9:
bd:c8:38:b3:29:d8:72:fc:6d:fe:d9:c0:97:34:61:
95:e7:e4:c6:b3:1d:9c:f7:c4:c5:06:4d:17:7c:12:
c2:3a:a5:7a:82:df:3e:78:a0:f5:e7:8e:75:d4:b6:
20:b5:59:74:a0:13:dd:ec:2e:10:c0:ab:79:cb:7e:
96:4e:83:d6:04:c7:ad:60:25:62:fb:f4:36:dd:e6:
ba:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:09:BA:A0:B3:5F:6E:D7:A4:DC:E2:54:AF:64:84:A8:51:59:33:64
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3132302e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.120.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:b8:ad:4d:d6:49:4c:6e:5f:29:c4:a3:ba:94:e3:71:a2:fc:
7a:c4:df:0a:90:27:96:0c:13:03:1b:75:14:ec:2a:d7:73:7a:
2f:04:33:8c:30:fc:57:26:26:51:4d:dc:8d:fb:95:6d:69:e7:
7f:bd:35:60:d9:37:e8:3e:37:4d:9a:f6:53:99:0f:bd:85:1d:
74:6c:47:56:cb:bf:14:bf:58:42:3c:cf:65:2a:13:92:b4:b7:
7c:b1:7a:26:1c:d7:37:8b:b3:08:e7:8e:ca:4b:ba:78:aa:cf:
ce:e3:dd:16:c8:21:7a:02:52:79:cd:98:58:0e:d9:8d:05:f3:
94:78:24:cb:5b:55:70:cf:8a:d6:5a:7b:6c:44:ab:f0:40:20:
83:d1:9e:8f:c9:e1:39:84:68:37:3c:b2:00:17:e8:48:31:6d:
e3:cd:6d:9a:6a:7e:ac:d5:ff:db:6b:41:0a:1b:c0:7f:e6:1c:
d3:c4:7e:21:69:89:2a:7f:a4:1a:c6:03:5e:02:4c:9a:72:34:
54:6e:42:2d:e8:22:77:01:64:6a:bf:1f:4f:bf:7d:2c:64:c1:
c3:e3:71:0b:4b:f8:f2:eb:a8:66:6b:9a:c4:9e:6d:c7:ca:86:
d3:a1:84:b8:64:b2:ee:db:f6:5c:9d:2c:d2:0d:36:ba:20:02:
04:9b:4d:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org