Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3132342e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e3132342e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: FNAGMTHUBuju7H7XZv+tJEa4PEMxWnDJMBnIFHhxj6Q=
Subject key identifier: AA:ED:AB:BD:59:78:F6:0E:1B:9C:D9:2F:70:66:3A:14:78:42:CA:01
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 0B7A6F99AAA45C448C4314B3DDF6015FFDC194A8
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3132342e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:01:02 +0000
ROA not before: Wed 29 Sep 2021 23:56:02 +0000
ROA not after: Fri 30 Sep 2022 00:01:02 +0000
asID: 17451
IP address blocks: 118.99.124.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:7a:6f:99:aa:a4:5c:44:8c:43:14:b3:dd:f6:01:5f:fd:c1:94:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:56:02 2021 GMT
Not After : Sep 30 00:01:02 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:a7:4a:25:27:ba:05:62:5f:d4:50:d0:e1:06:
4a:bc:e5:1c:91:ec:ad:5a:0a:a0:81:ce:9a:f3:95:
1e:a0:9f:51:d6:ca:61:0f:45:a8:6d:02:f1:82:7b:
39:62:3f:3d:d3:a7:53:a6:b8:5e:9e:bb:10:9d:eb:
78:e3:d7:09:27:64:e4:cc:64:83:7f:3d:21:ea:96:
b5:5e:d5:4a:16:d8:35:a1:dd:e8:3d:ce:72:54:1c:
12:35:37:77:00:83:81:f7:35:a1:d8:d6:0e:8b:c9:
d5:c2:4a:06:ea:29:0f:93:2f:ca:09:da:ce:ae:90:
31:5d:fb:08:d4:e4:55:99:d4:b2:78:47:e8:07:5f:
fd:0c:28:78:0c:25:f3:a0:e1:6e:37:15:12:80:d9:
c5:94:59:d7:e4:ed:81:7a:cc:13:92:f0:b9:c4:a6:
fd:61:12:4c:8a:ea:f2:ee:ad:6a:a1:4a:5f:50:2e:
df:2f:0a:67:8a:64:5b:2b:f7:95:9c:dd:da:1d:c7:
4c:1f:8f:f8:64:33:45:12:4a:8e:8e:61:8c:65:18:
20:6d:5f:9e:46:5a:dd:61:9f:5a:ce:d8:8a:79:62:
74:b9:d1:a7:98:81:f1:e3:80:0c:92:e3:5f:0b:12:
a7:13:34:19:b6:b4:57:3b:3f:28:a3:9c:9d:c6:96:
53:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:ED:AB:BD:59:78:F6:0E:1B:9C:D9:2F:70:66:3A:14:78:42:CA:01
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3132342e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.124.0/24
Signature Algorithm: sha256WithRSAEncryption
30:24:85:05:f9:22:b4:73:88:2b:ec:10:b7:bb:81:6c:ba:aa:
28:87:4a:26:d4:05:5d:9e:65:6d:5f:41:b8:44:86:1d:2c:a5:
2a:fe:67:c9:2c:5c:b8:1d:ab:1d:cf:5f:e4:68:7e:37:a4:99:
ac:6c:c6:a3:84:eb:7b:b8:bf:69:d5:b2:62:0b:07:03:e7:90:
f9:d9:d0:66:62:a7:3e:1a:cc:aa:66:4e:04:0c:87:56:a0:fb:
2f:8d:da:c4:f6:33:d5:b3:01:03:0f:ec:aa:d6:d3:28:4c:75:
5c:93:03:db:b2:8c:ef:32:88:2f:a1:1f:a4:48:46:01:01:8d:
f6:ca:ff:df:71:b2:81:e0:25:32:7d:38:bf:f3:11:6b:55:92:
59:66:33:e6:0c:f8:56:44:fd:45:77:13:d9:48:8f:9b:35:9e:
79:f3:9d:02:8e:48:79:55:72:2c:86:47:9c:36:bb:fe:c0:76:
34:1b:72:ed:76:52:5d:31:14:7a:3d:63:27:7d:24:14:9b:ce:
32:31:fc:51:a7:b6:2b:58:33:22:c2:02:b0:35:1b:1c:08:38:
f4:12:26:0e:54:77:33:04:9d:51:2a:83:13:ac:84:00:1c:63:
c9:7e:66:e4:da:77:f3:54:46:8a:36:0e:55:0e:ed:3d:9a:a7:
93:13:9a:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:45 2023 by rpki-client on console-fra.rpki-client.org