Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e37352e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e37352e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: uyeSlLKc6CoiMQTQkGPYBezMgU4FzGIoViaW9GSQdzM=
Subject key identifier: 5B:88:75:D9:1B:87:04:26:35:C2:0F:19:AC:F4:D0:42:FE:3B:46:17
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 3DF6535FEE45B6B6484F387BB171696B4F3EA0B6
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e37352e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:32 +0000
ROA not before: Wed 29 Sep 2021 23:55:32 +0000
ROA not after: Fri 30 Sep 2022 00:00:32 +0000
asID: 17451
IP address blocks: 118.99.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:f6:53:5f:ee:45:b6:b6:48:4f:38:7b:b1:71:69:6b:4f:3e:a0:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:32 2021 GMT
Not After : Sep 30 00:00:32 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:17:1b:3c:5f:b7:51:17:d8:c3:90:d7:43:ef:
47:8a:d3:66:4c:d9:7f:4f:b0:39:84:d3:de:b4:bf:
fc:6f:0d:03:37:1c:20:5c:14:33:33:ee:53:c9:bf:
f6:dc:e0:3a:3d:de:2e:94:ca:0a:a6:93:ee:b9:1b:
6a:7e:6a:2e:a7:3f:1d:f9:18:b2:d1:b0:2c:3c:99:
aa:d0:3f:8d:f1:50:db:3a:b7:16:5a:d9:4b:2f:22:
8b:bb:b5:33:bb:f2:6d:e3:8d:00:71:2b:0d:b8:cd:
05:67:c6:cd:28:90:25:c1:95:b6:ea:df:49:05:4d:
16:f3:5f:6d:9b:76:55:d3:da:f5:40:bc:1a:5f:10:
82:8d:71:25:b6:f1:29:99:51:d2:52:84:c9:62:58:
0b:3b:00:98:06:4e:07:54:8d:98:d1:ec:e5:ae:ba:
e6:f4:3c:e0:0d:78:cd:e5:97:80:ee:e7:61:12:64:
a6:d7:56:cc:e6:e4:62:7a:92:e9:da:e6:20:fe:dc:
57:65:fa:58:72:17:02:d8:02:35:f9:4c:aa:68:d8:
69:74:c5:3a:09:39:56:92:6c:a7:23:62:a3:38:74:
a2:56:af:09:d1:2d:4c:9c:02:1e:4d:4b:df:71:bd:
f8:32:cc:60:ce:b3:2d:e5:1c:b1:4c:31:6c:78:87:
89:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:88:75:D9:1B:87:04:26:35:C2:0F:19:AC:F4:D0:42:FE:3B:46:17
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e37352e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.75.0/24
Signature Algorithm: sha256WithRSAEncryption
83:0b:9a:28:ba:bb:13:ea:67:8b:5e:7a:4a:9a:e6:18:da:e0:
59:8d:a5:1a:fb:e1:c5:81:b2:a2:b7:e5:5c:f5:12:09:72:e4:
01:5d:4c:14:f4:b0:37:15:12:79:c9:3f:22:2d:37:5a:3d:f6:
41:b6:7c:75:62:2c:20:1a:62:05:f6:dc:4f:d5:dd:b0:8a:d6:
90:1d:58:76:cd:31:d0:da:e6:1f:fa:f3:2f:32:1f:27:03:a3:
20:f5:ab:67:c5:65:f3:a7:a3:c6:7a:65:87:5b:b8:5f:fd:69:
c8:dd:d0:4d:cd:a3:49:1a:55:f5:4a:59:55:40:4d:c1:ae:bc:
04:4c:c5:a9:54:5c:fe:64:03:99:ad:cc:fb:a9:39:7d:15:69:
64:10:33:e7:36:4f:ef:10:31:c4:2a:29:76:d9:bd:70:c2:68:
aa:0d:7c:c0:c7:20:5d:04:1c:2b:89:3a:f9:bb:a6:ae:38:87:
f6:85:3a:e6:9f:f0:41:30:19:67:d7:b7:dc:4d:b1:0a:6f:e5:
af:9d:ba:0d:44:8d:f8:71:27:57:8c:ee:49:b2:59:3e:52:5b:
5c:0c:e5:16:ec:ca:2a:57:98:9e:2c:ca:47:6f:31:30:2e:09:
65:e9:91:c7:f7:0e:5c:06:cf:8f:99:ea:66:1d:05:28:b0:e2:
b1:8e:ec:50
-----BEGIN CERTIFICATE-----
MIIHIjCCBgqgAwIBAgIUPfZTX+5FtrZITzh7sXFpa08+oLYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJBNDE3
RjcyOERCRjAeFw0yMTA5MjkyMzU1MzJaFw0yMjA5MzAwMDAwMzJaMIICLTGCAikw
ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwREIxNzFCM0M1RkI3NTExN0Q4
QzM5MEQ3NDNFRjQ3OEFEMzY2NENEOTdGNEZCMDM5ODREM0RFQjRCRkZDNkYwRDAz
MzcxQzIwNUMxNDMzMzNFRTUzQzlCRkY2RENFMDNBM0RERTJFOTRDQTBBQTY5M0VF
QjkxQjZBN0U2QTJFQTczRjFERjkxOEIyRDFCMDJDM0M5OUFBRDAzRjhERjE1MERC
M0FCNzE2NUFEOTRCMkYyMjhCQkJCNTMzQkJGMjZERTM4RDAwNzEyQjBEQjhDRDA1
NjdDNkNEMjg5MDI1QzE5NUI2RUFERjQ5MDU0RDE2RjM1RjZEOUI3NjU1RDNEQUY1
NDBCQzFBNUYxMDgyOEQ3MTI1QjZGMTI5OTk1MUQyNTI4NEM5NjI1ODBCM0IwMDk4
MDY0RTA3NTQ4RDk4RDFFQ0U1QUVCQUU2RjQzQ0UwMEQ3OENERTU5NzgwRUVFNzYx
MTI2NEE2RDc1NkNDRTZFNDYyN0E5MkU5REFFNjIwRkVEQzU3NjVGQTU4NzIxNzAy
RDgwMjM1Rjk0Q0FBNjhEODY5NzRDNTNBMDkzOTU2OTI2Q0E3MjM2MkEzMzg3NEEy
NTZBRjA5RDEyRDRDOUMwMjFFNEQ0QkRGNzFCREY4MzJDQzYwQ0VCMzJERTUxQ0Ix
NEMzMTZDNzg4Nzg5RjEwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
MIIBCgKCAQEA2xcbPF+3URfYw5DXQ+9HitNmTNl/T7A5hNPetL/8bw0DNxwgXBQz
M+5Tyb/23OA6Pd4ulMoKppPuuRtqfmoupz8d+Riy0bAsPJmq0D+N8VDbOrcWWtlL
LyKLu7Uzu/Jt440AcSsNuM0FZ8bNKJAlwZW26t9JBU0W819tm3ZV09r1QLwaXxCC
jXEltvEpmVHSUoTJYlgLOwCYBk4HVI2Y0ezlrrrm9DzgDXjN5ZeA7udhEmSm11bM
5uRiepLp2uYg/txXZfpYchcC2AI1+UyqaNhpdMU6CTlWkmynI2KjOHSiVq8J0S1M
nAIeTUvfcb34MsxgzrMt5RyxTDFseIeJ8QIDAQABo4ICMDCCAiwwHQYDVR0OBBYE
FFuIddkbhwQmNcIPGaz00EL+O0YXMB8GA1UdIwQYMBaAFKxVVEe6YsORB/Fr9XL4
KkF/co2/MA4GA1UdDwEB/wQEAwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzk5M2YzNTAtYjc1Ni00OTE2LThk
ODQtNDg0ZjAyNWRmZmNjLzAvQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJB
NDE3RjcyOERCRi5jcmwwdAYIKwYBBQUHAQEEaDBmMGQGCCsGAQUFBzAChlhyc3lu
YzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8yL0FDNTU1NDQ3
QkE2MkMzOTEwN0YxNkJGNTcyRjgyQTQxN0Y3MjhEQkYuY2VyMIGgBggrBgEFBQcB
CwSBkzCBkDCBjQYIKwYBBQUHMAuGgYByc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby8zOTkzZjM1MC1iNzU2LTQ5MTYtOGQ4NC00ODRmMDI1ZGZmY2MvMC8z
MTMxMzgyZTM5MzkyZTM3MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTM3MzQz
NTMxLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/
BBAwDjAMBAIAATAGAwQAdmNLMA0GCSqGSIb3DQEBCwUAA4IBAQCDC5ooursT6meL
XnpKmuYY2uBZjaUa++HFgbKit+Vc9RIJcuQBXUwU9LA3FRJ5yT8iLTdaPfZBtnx1
YiwgGmIF9txP1d2witaQHVh2zTHQ2uYf+vMvMh8nA6Mg9atnxWXzp6PGemWHW7hf
/WnI3dBNzaNJGlX1SllVQE3BrrwETMWpVFz+ZAOZrcz7qTl9FWlkEDPnNk/vEDHE
Kil22b1wwmiqDXzAxyBdBBwriTr5u6auOIf2hTrmn/BBMBln17fcTbEKb+WvnboN
RI34cSdXjO5Jslk+UltcDOUW7MoqV5ieLMpHbzEwLgll6ZHH9w5cBs+PmepmHQUo
sOKxjuxQ
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:45 2023 by rpki-client on console-fra.rpki-client.org