Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e36382e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e36382e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: vGv6OVsoDXbHMejZz/x+iUwy83L/I/Uh09lf8Y7Ng8U=
Subject key identifier: 28:81:AA:66:73:DF:5D:F2:69:C9:8C:6B:CB:CD:D5:55:C1:2C:C1:30
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 13A4BECFD85D3CD9A0FB84AAE1971ED4612FB59D
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e36382e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:50 +0000
ROA not before: Wed 29 Sep 2021 23:55:50 +0000
ROA not after: Fri 30 Sep 2022 00:00:50 +0000
asID: 17451
IP address blocks: 118.99.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:a4:be:cf:d8:5d:3c:d9:a0:fb:84:aa:e1:97:1e:d4:61:2f:b5:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:50 2021 GMT
Not After : Sep 30 00:00:50 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b6:41:86:00:93:27:a1:55:ce:05:5a:5e:93:
8a:2f:ce:c9:0e:26:b7:fe:84:cc:e7:ef:fb:7d:b3:
dd:8d:96:26:d6:d5:89:6a:45:e3:93:13:f9:a5:14:
eb:f6:02:f9:b6:d2:3b:f8:7b:e4:6e:4b:a2:91:8a:
ac:94:30:c7:8b:da:b3:bb:66:54:2c:ed:76:eb:84:
9e:94:cf:b0:39:ac:cf:ee:4a:24:f1:ff:84:03:3c:
3c:5a:d5:0d:3d:01:76:e6:dc:e3:74:c8:ca:e2:54:
05:0c:6f:a7:0e:32:a1:68:fb:ec:ad:05:ed:0a:ab:
fe:c5:2a:9f:2a:18:41:b7:b1:cc:b0:a6:03:81:03:
7c:ef:b7:27:99:9d:a1:3b:06:c8:bb:c8:01:1c:5d:
e8:b0:d2:cc:72:b5:6d:37:b9:06:80:07:36:c1:ca:
08:fe:a0:aa:b2:53:eb:22:37:b2:57:ba:af:8a:92:
da:dd:95:c2:1d:28:c6:ec:f9:1e:52:09:24:a2:bb:
c3:13:c9:6c:20:2a:59:6a:7b:82:2f:1a:f2:d4:30:
dd:cb:da:bb:5c:3e:39:60:ab:51:de:0a:2b:db:fd:
a5:cf:c5:a3:c2:78:20:14:79:ad:1f:a7:0e:0f:ae:
0a:ab:0a:71:e9:4b:19:9a:91:f6:97:7e:c8:58:de:
a2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:81:AA:66:73:DF:5D:F2:69:C9:8C:6B:CB:CD:D5:55:C1:2C:C1:30
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e36382e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.68.0/24
Signature Algorithm: sha256WithRSAEncryption
79:d0:67:32:80:79:21:ff:45:c8:90:40:62:2a:ec:c8:f3:25:
4b:a3:9d:57:99:62:d5:b3:67:63:d0:f8:86:d6:36:17:8e:72:
82:45:ed:78:1b:bb:e8:27:a9:32:d1:d5:34:df:98:5a:85:30:
95:79:d0:ed:34:47:5a:15:42:58:29:ce:4d:94:7e:a8:a0:f0:
6f:7e:ca:14:6e:f1:bb:6e:63:ee:61:f0:6a:23:00:0b:f4:ea:
3c:c0:1d:3c:e3:68:2f:19:fe:ee:e7:64:08:94:1b:dc:00:f4:
e4:d5:ae:aa:d1:dc:ce:c6:bf:07:a8:f8:12:ff:bb:00:e4:31:
d8:21:d9:34:bf:23:0d:7d:d3:b6:57:60:3c:6a:5c:73:32:7d:
14:e6:55:20:e5:33:60:5c:82:1b:30:9d:84:fe:99:b5:3f:c7:
68:2c:a7:42:87:b1:43:59:f8:e2:93:b6:ca:aa:a3:89:70:ec:
ed:49:b0:6e:3e:b8:fe:6a:e1:22:a0:e2:d9:63:47:cc:4f:02:
41:c3:ab:fa:53:76:53:1e:79:df:77:cd:59:21:c5:ba:db:fb:
6e:55:90:86:24:59:f1:51:77:37:8d:df:ad:b9:d2:e5:66:cb:
54:43:9b:de:cd:93:50:9d:0f:61:17:70:32:70:6f:1b:56:ab:
4f:02:79:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 2 15:50:00 2025 by rpki-client