Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e36342e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e36342e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: urrTtgjf50zR6E9ovrS3z2FPbnwziaoSOvPFyaU65FU=
Subject key identifier: 0C:81:5F:73:B7:46:8B:C6:68:A1:70:B4:50:DF:8A:B6:A6:C5:DB:32
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 5D1A8740F2CC348D926A4090EEF55B55D1709712
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e36342e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:11 +0000
ROA not before: Wed 29 Sep 2021 23:55:11 +0000
ROA not after: Fri 30 Sep 2022 00:00:11 +0000
asID: 17451
IP address blocks: 118.99.64.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:1a:87:40:f2:cc:34:8d:92:6a:40:90:ee:f5:5b:55:d1:70:97:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:11 2021 GMT
Not After : Sep 30 00:00:11 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6a:2a:bd:6e:1a:07:71:3a:6e:29:a0:a5:37:
23:cb:ce:9a:43:c8:50:df:39:fd:9b:72:0e:c4:89:
62:c6:6e:24:cc:aa:48:aa:7f:62:c3:66:99:e6:d6:
1c:11:fe:d5:72:86:88:6b:6f:9b:f3:37:fc:94:50:
78:f2:4d:31:46:92:65:79:e6:31:cc:29:73:eb:fb:
cc:e0:94:d1:93:d7:81:56:33:6e:7d:32:f5:4c:15:
c6:fe:31:eb:2a:2a:4b:19:82:5b:39:d0:8f:78:14:
46:20:38:79:14:6c:a3:77:b2:9c:7d:7e:af:cc:09:
c1:59:bf:c9:b1:50:61:a7:a1:41:0d:05:ea:f2:d7:
04:58:d7:fb:bc:d6:33:1d:6c:a3:05:77:24:d5:2c:
fa:75:12:63:73:16:12:84:9d:9f:5c:9e:15:df:77:
24:b6:9c:35:1a:07:34:d9:c8:fa:79:e1:c0:6a:fd:
2a:7c:2a:5c:a9:c6:8a:0e:66:4b:d5:94:eb:5e:36:
0d:6b:77:80:01:93:6c:8a:65:bc:04:6a:bb:b5:28:
2c:2c:b6:51:ee:89:8e:5d:42:23:9c:db:7e:7a:15:
d5:c1:97:ed:55:5a:c5:4f:d2:63:47:4d:e2:2b:37:
d2:09:57:20:91:fd:aa:6a:27:84:d4:7d:7c:43:ab:
b5:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:81:5F:73:B7:46:8B:C6:68:A1:70:B4:50:DF:8A:B6:A6:C5:DB:32
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e36342e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.64.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:a5:b6:d1:00:a2:a6:68:6f:61:e2:2c:24:a1:cd:80:61:35:
95:76:28:79:45:4a:ab:47:b3:4c:a9:0e:b3:05:64:69:e2:5d:
68:fb:d5:0c:10:10:b6:17:7c:27:dc:89:92:15:cb:c5:1e:83:
50:fd:60:30:65:7c:89:1e:dd:9c:a0:d1:a6:a7:8e:e4:e8:c9:
47:7e:aa:a4:6f:93:52:68:aa:8a:e7:73:e4:46:89:e0:24:88:
e5:59:00:23:2a:8a:d7:27:ae:be:bb:4f:31:26:1d:ca:ed:3d:
19:61:6e:59:81:31:90:be:b9:1c:a1:fa:2d:c8:07:6e:63:90:
df:2e:ba:c8:76:bd:4a:89:40:c8:bd:8a:8c:a4:51:1e:f6:18:
95:71:94:58:bd:7f:d5:96:ea:d2:4d:1e:b5:59:a6:e7:b4:80:
c5:db:f7:56:77:94:88:df:2c:9e:82:e7:92:44:d1:24:48:6f:
95:91:99:28:b0:79:71:07:eb:3c:0c:c7:87:4b:f1:bc:a5:80:
1c:20:8d:51:91:f2:a2:5e:69:a2:72:9e:8c:48:20:62:fa:ad:
09:e2:9c:eb:15:5a:0f:54:7a:61:e5:d9:7b:e3:7e:32:d7:72:
2d:39:97:67:ae:a2:65:56:0b:ad:c8:07:22:db:34:70:60:04:
80:76:1e:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:45 2023 by rpki-client on console-fra.rpki-client.org