Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3132372e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e3132372e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: eZjqhTeXi2zUAijlfOoNIZ23Pr0olVDs+ja3r4ZAkjU=
Subject key identifier: E1:3A:9F:33:B2:44:EE:9B:05:40:6D:11:F2:E8:6F:4A:53:C6:EA:92
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 1B8D85119F5DD908E584AE9E0DD2DA86ED8315B6
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3132372e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:59 +0000
ROA not before: Wed 29 Sep 2021 23:55:59 +0000
ROA not after: Fri 30 Sep 2022 00:00:59 +0000
asID: 17451
IP address blocks: 118.99.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:8d:85:11:9f:5d:d9:08:e5:84:ae:9e:0d:d2:da:86:ed:83:15:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:59 2021 GMT
Not After : Sep 30 00:00:59 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:e6:bc:c0:e0:3b:d7:d1:23:51:7b:7d:57:d1:
cd:a2:42:f6:02:5e:56:d7:88:be:37:87:36:5d:11:
dd:bf:4a:bd:70:73:f7:54:73:77:e4:e4:55:7b:d9:
59:16:b7:15:57:95:90:e1:7c:78:af:44:37:f9:23:
7e:46:67:ee:a2:7b:8b:29:6d:17:86:ab:c7:16:7c:
2d:1a:8f:34:e3:88:96:2d:e0:46:17:20:56:59:a4:
99:02:88:5e:b3:2f:a7:00:5d:8a:13:62:e0:6d:a9:
43:a7:11:d9:78:e1:20:98:8b:4b:a4:88:a8:3f:24:
c3:e8:8e:1f:b3:17:85:80:de:cf:3e:77:7f:a1:bf:
23:9c:a1:14:c9:dd:84:ba:ef:95:e8:e2:65:38:6c:
9a:65:ac:e5:fc:4e:e8:95:c3:5e:39:92:d6:85:ab:
a4:1f:b1:58:22:bd:ee:03:85:3d:69:c7:bc:b7:e7:
ae:a1:b6:15:fe:ad:70:42:18:3d:af:15:a9:11:34:
cf:b1:ba:a5:7a:4b:55:7e:8e:10:63:ae:f4:3d:92:
34:16:01:1f:8a:9c:ea:55:82:f9:01:f7:5d:bb:c7:
2a:fa:f0:6c:15:ae:94:b6:74:d7:fa:54:c5:67:db:
f5:22:a8:24:14:fa:e0:15:1d:96:17:54:59:a3:3c:
31:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:3A:9F:33:B2:44:EE:9B:05:40:6D:11:F2:E8:6F:4A:53:C6:EA:92
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3132372e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.127.0/24
Signature Algorithm: sha256WithRSAEncryption
10:ba:19:51:be:76:3d:9d:9c:c8:ec:58:79:94:94:e5:d0:38:
78:1b:f2:c5:9e:16:6b:ca:0a:cb:76:95:1b:7c:ad:90:70:32:
25:78:fc:11:e0:72:9d:6d:2e:08:0e:10:fa:4a:bc:0b:e1:d8:
58:3c:b5:79:35:f3:f3:bf:e4:30:6f:4e:f6:34:43:09:95:cf:
72:52:4e:f6:95:48:ff:4d:c4:b3:43:75:37:08:45:22:c5:44:
0b:f0:b7:f0:44:9c:6e:e0:66:c1:d7:b3:32:a2:88:8c:5f:12:
92:6c:5b:37:45:8d:bb:b1:55:cf:3f:f6:cb:53:19:49:9c:1e:
38:98:c9:e3:f3:f0:33:56:a9:6b:ac:9d:53:64:29:fc:c1:06:
1a:95:cc:87:b8:96:1c:03:4a:1e:eb:31:26:83:de:5f:71:4f:
aa:a0:11:df:45:d4:da:5f:e6:ae:fe:37:03:56:e8:ee:73:0b:
7b:7d:2a:c3:9c:6a:8a:37:6a:30:e5:26:ed:b3:2a:27:95:49:
a2:0a:76:c0:30:7d:34:40:98:aa:17:5a:69:14:63:4a:2a:12:
da:c9:5a:80:73:00:88:3f:04:46:fc:58:a0:07:27:f7:d6:4a:
f8:73:f1:69:79:09:7f:ca:53:cb:1b:00:3c:84:94:fd:54:7c:
7b:d2:61:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org