Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e37302e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e37302e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: dQe3gDoLSNvPtYQ4AsXw83MwFmA2ZKxfhsIAouIFX6I=
Subject key identifier: A4:69:B4:BE:61:83:5C:9D:E2:DB:62:0F:26:46:79:B3:1A:6C:07:CD
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 2A963B8D71B7D19BE9D2F3F7A62578B998970B4F
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e37302e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:19 +0000
ROA not before: Wed 29 Sep 2021 23:55:19 +0000
ROA not after: Fri 30 Sep 2022 00:00:19 +0000
asID: 17451
IP address blocks: 118.99.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:96:3b:8d:71:b7:d1:9b:e9:d2:f3:f7:a6:25:78:b9:98:97:0b:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:19 2021 GMT
Not After : Sep 30 00:00:19 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:86:a2:77:95:5b:08:01:ec:02:94:ba:6f:b8:
0b:62:79:5c:eb:19:8c:f4:27:90:1e:8a:65:31:86:
ed:2f:d1:b5:e2:03:2f:f3:29:79:eb:54:a4:4c:aa:
65:3a:f0:a1:cb:2f:19:b8:cd:2b:38:be:09:b6:e1:
56:78:b6:e8:3b:9e:70:9d:e2:17:f7:30:cb:75:de:
8c:22:42:7b:38:66:f3:f1:c5:e4:4f:c3:02:7b:15:
18:5d:5f:6e:7e:32:34:2f:8c:6b:f1:f1:f9:bf:0a:
3f:a7:e9:1f:fc:d1:4b:f1:01:2c:6b:51:e3:fa:5f:
8f:9f:26:51:ae:10:88:8d:6f:10:40:e5:62:06:76:
ae:af:db:b8:aa:dd:16:b4:ec:1f:50:45:c4:32:40:
74:4b:9c:4c:c9:7b:70:a1:d2:a8:e9:15:82:37:38:
96:c5:c2:6b:04:10:18:49:94:fa:55:b3:56:6c:27:
77:f8:ae:01:a5:2a:55:ac:91:32:66:cc:14:33:af:
95:17:0c:8a:9a:aa:5d:e6:2f:02:a7:9f:ef:13:ce:
bb:f7:ac:66:b2:3b:3b:d5:21:26:f4:04:4d:22:30:
71:c3:23:bf:8d:a1:0e:0f:90:91:e1:95:48:1a:7f:
85:5b:b5:36:a5:67:ce:09:1a:97:e6:76:0c:5e:91:
7a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:69:B4:BE:61:83:5C:9D:E2:DB:62:0F:26:46:79:B3:1A:6C:07:CD
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e37302e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.70.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:d2:73:97:b9:51:f5:71:49:14:74:76:c8:4f:c2:8f:68:cb:
b8:d8:a1:36:6f:26:d0:4c:f6:79:20:f5:1a:be:1c:87:2a:a4:
9d:00:c5:a9:4c:e0:ea:4a:1b:4d:be:66:bf:d3:ba:28:b0:60:
d7:9f:26:94:0d:7e:ae:11:99:9a:0a:23:d1:d6:62:89:b4:61:
b8:07:3f:3d:6a:b9:84:31:ef:22:30:a8:2e:49:72:1a:69:40:
f3:6e:31:84:c3:9a:e0:98:dc:60:00:9a:ad:44:bc:7d:ae:3b:
7e:7a:32:99:fc:78:03:9b:13:41:47:02:26:d8:5e:81:0e:24:
11:cd:bc:06:fb:e7:af:6d:cf:fe:75:05:27:f7:10:7b:96:9e:
97:d6:f7:4a:95:73:2e:a4:18:92:6c:d0:b1:63:0b:6e:2e:e3:
49:67:9a:80:19:eb:2b:ae:ad:d0:11:77:23:c8:5a:fb:1f:65:
0f:bf:dc:aa:ed:ae:73:be:0a:7e:f9:91:8c:7c:07:fa:65:fc:
35:34:20:14:bc:22:57:54:6a:dc:87:fe:d4:94:ee:34:66:e2:
2b:33:3a:ee:6b:84:ac:b4:47:e5:11:cc:ce:e6:e4:90:f7:db:
03:d0:7d:cd:f3:48:96:ae:cb:ee:20:4e:a5:cd:8e:77:81:4c:
5c:0e:44:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org