Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3132312e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e3132312e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: wCZpXqPrnQPXafrTxT1St9Z20YUZX6zIoIwsb4LcRL4=
Subject key identifier: 9E:DC:98:2B:70:89:5F:60:2D:FA:CF:5E:2E:40:B8:B5:AA:9A:F9:8C
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 5F3245168FB701413FC3C559752E44221842CC2A
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3132312e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:13 +0000
ROA not before: Wed 29 Sep 2021 23:55:13 +0000
ROA not after: Fri 30 Sep 2022 00:00:13 +0000
asID: 17451
IP address blocks: 118.99.121.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:32:45:16:8f:b7:01:41:3f:c3:c5:59:75:2e:44:22:18:42:cc:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:13 2021 GMT
Not After : Sep 30 00:00:13 2022 GMT
Subject: CN=3082010A0282010100E00618A70C7F7A5841434C4CD2F8841855DE8DBAD6606EC4AC5128DA49F48FD0EA31637E6A97CD97A287A07E8C4371FAA8036343045EC3CD8A03402F9C4739C1C187C9215A2E57EC97135D9ACF4EA31E1DDD76739B95A47711AB4737F20DD37CF2037A1B82E98317DB3D24F92574C7CA30EC9C1F32CBCB41A150E6CD3B3F1CB1318F0FE47683BFF643A9C52F37C0DD967BDA22207C3B1329D00C0D7AA736F6BAFB70D148A0C421F5D741CD57DE8E73BE588CCE658E717F69B8E64657ABBF62C9A5AE83C79298C8A87EBE9FD561E92DB177C8B9E04F6D11A8BC662B4D631976BD39CFEF246D740C113BF6BBC0CF539B50607862932DBEDC6B3F91609CA689DF9F0203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:06:18:a7:0c:7f:7a:58:41:43:4c:4c:d2:f8:
84:18:55:de:8d:ba:d6:60:6e:c4:ac:51:28:da:49:
f4:8f:d0:ea:31:63:7e:6a:97:cd:97:a2:87:a0:7e:
8c:43:71:fa:a8:03:63:43:04:5e:c3:cd:8a:03:40:
2f:9c:47:39:c1:c1:87:c9:21:5a:2e:57:ec:97:13:
5d:9a:cf:4e:a3:1e:1d:dd:76:73:9b:95:a4:77:11:
ab:47:37:f2:0d:d3:7c:f2:03:7a:1b:82:e9:83:17:
db:3d:24:f9:25:74:c7:ca:30:ec:9c:1f:32:cb:cb:
41:a1:50:e6:cd:3b:3f:1c:b1:31:8f:0f:e4:76:83:
bf:f6:43:a9:c5:2f:37:c0:dd:96:7b:da:22:20:7c:
3b:13:29:d0:0c:0d:7a:a7:36:f6:ba:fb:70:d1:48:
a0:c4:21:f5:d7:41:cd:57:de:8e:73:be:58:8c:ce:
65:8e:71:7f:69:b8:e6:46:57:ab:bf:62:c9:a5:ae:
83:c7:92:98:c8:a8:7e:be:9f:d5:61:e9:2d:b1:77:
c8:b9:e0:4f:6d:11:a8:bc:66:2b:4d:63:19:76:bd:
39:cf:ef:24:6d:74:0c:11:3b:f6:bb:c0:cf:53:9b:
50:60:78:62:93:2d:be:dc:6b:3f:91:60:9c:a6:89:
df:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:DC:98:2B:70:89:5F:60:2D:FA:CF:5E:2E:40:B8:B5:AA:9A:F9:8C
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3132312e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.121.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:52:f7:32:32:32:90:14:9d:f1:df:f0:92:90:1f:b4:fa:b6:
5f:e5:d7:a6:06:9b:f2:ef:64:b2:17:74:e3:8a:18:44:99:bb:
92:3a:7f:d0:2c:10:d1:32:a6:bf:14:42:8b:59:47:29:66:de:
c2:7c:cf:83:34:dd:b8:d8:be:ab:73:7a:81:a0:8e:3b:3e:0a:
7a:95:fa:55:3b:13:33:40:0a:c1:61:b2:21:57:16:31:22:74:
4e:52:d9:a3:0a:57:6b:ad:07:5f:a8:12:be:e1:0f:a5:53:08:
58:82:ef:8e:61:b7:9b:ab:ac:29:6f:b7:e1:a5:5f:6e:85:d7:
99:ed:4e:6e:39:df:b5:af:3b:43:a3:b6:c8:e8:21:fb:ca:a4:
6a:30:81:2f:5c:f1:42:12:91:71:64:96:dc:d2:e6:b5:aa:f3:
ee:c7:5f:45:ca:d4:0f:68:4d:92:3e:40:0b:4a:17:d3:21:11:
de:53:bb:e7:a6:c8:b7:4a:24:fb:d7:ae:bd:c1:4e:f8:93:8f:
64:4a:17:d3:0a:5f:0c:92:b8:e3:3e:1a:af:1d:3e:75:c6:a1:
9a:a6:61:30:fa:1a:e9:cc:17:f9:34:35:09:a7:f5:3c:ee:de:
7d:67:0d:09:b3:24:a2:64:6f:7b:b9:b1:b7:c7:d1:d5:48:1f:
b0:ae:1e:5c
-----BEGIN CERTIFICATE-----
MIIHJDCCBgygAwIBAgIUXzJFFo+3AUE/w8VZdS5EIhhCzCowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJBNDE3
RjcyOERCRjAeFw0yMTA5MjkyMzU1MTNaFw0yMjA5MzAwMDAwMTNaMIICLTGCAikw
ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwRTAwNjE4QTcwQzdGN0E1ODQx
NDM0QzRDRDJGODg0MTg1NURFOERCQUQ2NjA2RUM0QUM1MTI4REE0OUY0OEZEMEVB
MzE2MzdFNkE5N0NEOTdBMjg3QTA3RThDNDM3MUZBQTgwMzYzNDMwNDVFQzNDRDhB
MDM0MDJGOUM0NzM5QzFDMTg3QzkyMTVBMkU1N0VDOTcxMzVEOUFDRjRFQTMxRTFE
REQ3NjczOUI5NUE0NzcxMUFCNDczN0YyMEREMzdDRjIwMzdBMUI4MkU5ODMxN0RC
M0QyNEY5MjU3NEM3Q0EzMEVDOUMxRjMyQ0JDQjQxQTE1MEU2Q0QzQjNGMUNCMTMx
OEYwRkU0NzY4M0JGRjY0M0E5QzUyRjM3QzBERDk2N0JEQTIyMjA3QzNCMTMyOUQw
MEMwRDdBQTczNkY2QkFGQjcwRDE0OEEwQzQyMUY1RDc0MUNENTdERThFNzNCRTU4
OENDRTY1OEU3MTdGNjlCOEU2NDY1N0FCQkY2MkM5QTVBRTgzQzc5Mjk4QzhBODdF
QkU5RkQ1NjFFOTJEQjE3N0M4QjlFMDRGNkQxMUE4QkM2NjJCNEQ2MzE5NzZCRDM5
Q0ZFRjI0NkQ3NDBDMTEzQkY2QkJDMENGNTM5QjUwNjA3ODYyOTMyREJFREM2QjNG
OTE2MDlDQTY4OURGOUYwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
MIIBCgKCAQEA4AYYpwx/elhBQ0xM0viEGFXejbrWYG7ErFEo2kn0j9DqMWN+apfN
l6KHoH6MQ3H6qANjQwRew82KA0AvnEc5wcGHySFaLlfslxNdms9Oox4d3XZzm5Wk
dxGrRzfyDdN88gN6G4LpgxfbPST5JXTHyjDsnB8yy8tBoVDmzTs/HLExjw/kdoO/
9kOpxS83wN2We9oiIHw7EynQDA16pzb2uvtw0UigxCH110HNV96Oc75YjM5ljnF/
abjmRlerv2LJpa6Dx5KYyKh+vp/VYektsXfIueBPbRGovGYrTWMZdr05z+8kbXQM
ETv2u8DPU5tQYHhiky2+3Gs/kWCcponfnwIDAQABo4ICMjCCAi4wHQYDVR0OBBYE
FJ7cmCtwiV9gLfrPXi5AuLWqmvmMMB8GA1UdIwQYMBaAFKxVVEe6YsORB/Fr9XL4
KkF/co2/MA4GA1UdDwEB/wQEAwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzk5M2YzNTAtYjc1Ni00OTE2LThk
ODQtNDg0ZjAyNWRmZmNjLzAvQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJB
NDE3RjcyOERCRi5jcmwwdAYIKwYBBQUHAQEEaDBmMGQGCCsGAQUFBzAChlhyc3lu
YzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8yL0FDNTU1NDQ3
QkE2MkMzOTEwN0YxNkJGNTcyRjgyQTQxN0Y3MjhEQkYuY2VyMIGiBggrBgEFBQcB
CwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby8zOTkzZjM1MC1iNzU2LTQ5MTYtOGQ4NC00ODRmMDI1ZGZmY2MvMC8z
MTMxMzgyZTM5MzkyZTMxMzIzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzcz
NDM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcB
Af8EEDAOMAwEAgABMAYDBAB2Y3kwDQYJKoZIhvcNAQELBQADggEBAF9S9zIyMpAU
nfHf8JKQH7T6tl/l16YGm/LvZLIXdOOKGESZu5I6f9AsENEypr8UQotZRylm3sJ8
z4M03bjYvqtzeoGgjjs+CnqV+lU7EzNACsFhsiFXFjEidE5S2aMKV2utB1+oEr7h
D6VTCFiC745ht5urrClvt+GlX26F15ntTm4537WvO0OjtsjoIfvKpGowgS9c8UIS
kXFkltzS5rWq8+7HX0XK1A9oTZI+QAtKF9MhEd5Tu+emyLdKJPvXrr3BTviTj2RK
F9MKXwySuOM+Gq8dPnXGoZqmYTD6GunMF/k0NQmn9Tzu3n1nDQmzJKJkb3u5sbfH
0dVIH7CuHlw=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org