Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3132322e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e3132322e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: tu+ZvtmMqOKKwCkaOlKEpkvTQg9eddwrgqPoXZAdkx4=
Subject key identifier: 42:A8:77:0B:4A:3B:95:3C:3D:65:EB:8A:DB:E2:B5:63:66:79:1B:4D
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 77B6062D29C055BE36F0706CC5E69760B3F91600
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3132322e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:56 +0000
ROA not before: Wed 29 Sep 2021 23:55:56 +0000
ROA not after: Fri 30 Sep 2022 00:00:56 +0000
asID: 17451
IP address blocks: 118.99.122.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:b6:06:2d:29:c0:55:be:36:f0:70:6c:c5:e6:97:60:b3:f9:16:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:56 2021 GMT
Not After : Sep 30 00:00:56 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:65:98:cb:1b:a3:a4:56:8f:5d:a6:8d:7b:47:
36:24:a9:e0:93:5f:ad:82:ba:d9:73:d6:65:9f:25:
1e:ab:4b:a2:46:be:78:35:bf:b5:f2:72:10:88:fe:
a7:b3:f4:55:7c:49:fd:2f:95:b3:a0:31:c4:cf:53:
ab:a6:a8:4d:ca:0b:f9:bf:c6:cb:0d:5b:b3:f5:e6:
3b:95:9b:29:4f:3d:cc:90:a4:de:df:ba:6d:e5:62:
c6:2a:e4:43:6b:3e:be:4c:9f:92:27:1e:b3:65:5a:
b6:cd:d9:77:2e:2c:4c:c5:1f:c1:f0:65:2f:4d:a7:
09:5b:d4:d9:d2:5f:07:43:2f:c4:56:5a:12:6e:5f:
dc:56:e6:7a:7e:12:8f:6f:2b:5e:5b:88:1f:26:a9:
87:b3:8c:d3:26:17:e7:f2:12:c9:d0:46:af:3f:d5:
bb:c1:16:41:1d:2f:82:51:ee:54:ff:4f:2f:cb:27:
69:f0:14:5b:1c:5e:aa:6a:fd:ce:4d:ec:72:89:b5:
e0:6b:bb:62:43:fe:e1:51:4e:87:ef:90:49:e8:95:
bc:10:c7:a1:8e:9c:5d:4b:d7:72:04:6d:f4:95:ec:
a1:83:47:29:3d:5b:6a:f9:ed:0e:7a:00:06:68:9d:
04:f4:44:67:8a:cd:7d:b0:e2:ba:8a:e9:a9:cc:4f:
61:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A8:77:0B:4A:3B:95:3C:3D:65:EB:8A:DB:E2:B5:63:66:79:1B:4D
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3132322e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.122.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:c3:ae:04:91:d0:74:67:d2:84:fc:60:18:c3:c3:3f:fc:1f:
96:0b:77:e6:3d:58:d7:a8:f4:5e:61:f9:2b:98:d7:e6:14:0d:
27:8d:b7:e5:da:a8:5d:54:db:0d:6a:8d:91:48:8c:1c:7f:d5:
65:65:81:4c:82:67:ee:c8:18:51:28:3a:25:50:0a:94:21:73:
92:fe:d3:5f:d4:c8:ad:08:b8:bd:ac:63:32:a2:a0:ba:ec:98:
47:51:4b:6f:d6:64:09:8d:49:1c:50:31:14:27:7d:ab:8a:96:
74:10:25:c4:65:f2:dc:cd:5f:88:1d:7b:e3:5a:7b:22:32:17:
80:99:48:7d:4b:e5:2a:b0:a9:84:5d:f9:ff:cc:8d:a1:78:e3:
1a:e8:ae:be:7f:b7:de:2c:63:5f:7c:b1:b7:fa:bd:d3:d0:75:
79:2a:55:da:14:d7:c9:f7:9a:71:da:fe:49:20:f5:bc:93:e9:
f4:09:5b:28:c7:2d:85:be:8b:97:b5:55:a1:af:10:eb:fb:12:
22:97:55:c1:d9:fd:42:d9:6a:0f:4d:c5:b5:be:fe:42:eb:d2:
b8:4c:30:7e:00:60:78:df:71:7d:14:07:e5:67:88:17:ca:9f:
ed:0c:8c:9a:c5:aa:bd:f9:f0:7f:8d:a0:ab:f7:33:4c:ff:1c:
8d:9b:cd:36
-----BEGIN CERTIFICATE-----
MIIHJDCCBgygAwIBAgIUd7YGLSnAVb428HBsxeaXYLP5FgAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJBNDE3
RjcyOERCRjAeFw0yMTA5MjkyMzU1NTZaFw0yMjA5MzAwMDAwNTZaMIICLTGCAikw
ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwREQ2NTk4Q0IxQkEzQTQ1NjhG
NURBNjhEN0I0NzM2MjRBOUUwOTM1RkFEODJCQUQ5NzNENjY1OUYyNTFFQUI0QkEy
NDZCRTc4MzVCRkI1RjI3MjEwODhGRUE3QjNGNDU1N0M0OUZEMkY5NUIzQTAzMUM0
Q0Y1M0FCQTZBODREQ0EwQkY5QkZDNkNCMEQ1QkIzRjVFNjNCOTU5QjI5NEYzREND
OTBBNERFREZCQTZERTU2MkM2MkFFNDQzNkIzRUJFNEM5RjkyMjcxRUIzNjU1QUI2
Q0REOTc3MkUyQzRDQzUxRkMxRjA2NTJGNERBNzA5NUJENEQ5RDI1RjA3NDMyRkM0
NTY1QTEyNkU1RkRDNTZFNjdBN0UxMjhGNkYyQjVFNUI4ODFGMjZBOTg3QjM4Q0Qz
MjYxN0U3RjIxMkM5RDA0NkFGM0ZENUJCQzExNjQxMUQyRjgyNTFFRTU0RkY0RjJG
Q0IyNzY5RjAxNDVCMUM1RUFBNkFGRENFNERFQzcyODlCNUUwNkJCQjYyNDNGRUUx
NTE0RTg3RUY5MDQ5RTg5NUJDMTBDN0ExOEU5QzVENEJENzcyMDQ2REY0OTVFQ0Ex
ODM0NzI5M0Q1QjZBRjlFRDBFN0EwMDA2Njg5RDA0RjQ0NDY3OEFDRDdEQjBFMkJB
OEFFOUE5Q0M0RjYxRkYwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
MIIBCgKCAQEA3WWYyxujpFaPXaaNe0c2JKngk1+tgrrZc9ZlnyUeq0uiRr54Nb+1
8nIQiP6ns/RVfEn9L5WzoDHEz1OrpqhNygv5v8bLDVuz9eY7lZspTz3MkKTe37pt
5WLGKuRDaz6+TJ+SJx6zZVq2zdl3LixMxR/B8GUvTacJW9TZ0l8HQy/EVloSbl/c
VuZ6fhKPbyteW4gfJqmHs4zTJhfn8hLJ0EavP9W7wRZBHS+CUe5U/08vyydp8BRb
HF6qav3OTexyibXga7tiQ/7hUU6H75BJ6JW8EMehjpxdS9dyBG30leyhg0cpPVtq
+e0OegAGaJ0E9ERnis19sOK6iumpzE9h/wIDAQABo4ICMjCCAi4wHQYDVR0OBBYE
FEKodwtKO5U8PWXritvitWNmeRtNMB8GA1UdIwQYMBaAFKxVVEe6YsORB/Fr9XL4
KkF/co2/MA4GA1UdDwEB/wQEAwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzk5M2YzNTAtYjc1Ni00OTE2LThk
ODQtNDg0ZjAyNWRmZmNjLzAvQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJB
NDE3RjcyOERCRi5jcmwwdAYIKwYBBQUHAQEEaDBmMGQGCCsGAQUFBzAChlhyc3lu
YzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8yL0FDNTU1NDQ3
QkE2MkMzOTEwN0YxNkJGNTcyRjgyQTQxN0Y3MjhEQkYuY2VyMIGiBggrBgEFBQcB
CwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby8zOTkzZjM1MC1iNzU2LTQ5MTYtOGQ4NC00ODRmMDI1ZGZmY2MvMC8z
MTMxMzgyZTM5MzkyZTMxMzIzMjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzcz
NDM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcB
Af8EEDAOMAwEAgABMAYDBAB2Y3owDQYJKoZIhvcNAQELBQADggEBAJzDrgSR0HRn
0oT8YBjDwz/8H5YLd+Y9WNeo9F5h+SuY1+YUDSeNt+XaqF1U2w1qjZFIjBx/1WVl
gUyCZ+7IGFEoOiVQCpQhc5L+01/UyK0IuL2sYzKioLrsmEdRS2/WZAmNSRxQMRQn
fauKlnQQJcRl8tzNX4gde+NaeyIyF4CZSH1L5SqwqYRd+f/MjaF44xrorr5/t94s
Y198sbf6vdPQdXkqVdoU18n3mnHa/kkg9byT6fQJWyjHLYW+i5e1VaGvEOv7EiKX
VcHZ/ULZag9NxbW+/kLr0rhMMH4AYHjfcX0UB+VniBfKn+0MjJrFqr358H+NoKv3
M0z/HI2bzTY=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org