Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e38322e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e38322e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: 33aNfynm8qip8bq3tEWDb5I+F5bt/GsvVwBoa+/INM8=
Subject key identifier: C0:26:6D:63:C5:08:99:0C:90:09:16:11:B3:B6:9E:1E:40:D8:61:38
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 297906A550BE7413830A78EBD717C350F201C404
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e38322e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:13 +0000
ROA not before: Wed 29 Sep 2021 23:55:13 +0000
ROA not after: Fri 30 Sep 2022 00:00:13 +0000
asID: 17451
IP address blocks: 118.99.82.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:79:06:a5:50:be:74:13:83:0a:78:eb:d7:17:c3:50:f2:01:c4:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:13 2021 GMT
Not After : Sep 30 00:00:13 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:62:fb:d5:be:16:2d:f6:58:22:03:75:77:6f:
b5:ff:33:f7:8d:fd:78:90:cb:7d:f7:a8:70:e7:20:
df:72:e6:07:d6:26:eb:a4:c5:2f:9a:fd:4c:1f:f8:
46:38:65:9d:2c:43:4c:cf:90:74:7e:07:22:f0:1c:
a9:99:90:42:fa:4c:22:93:9b:d3:7e:ee:7b:d6:04:
4a:ef:d5:c0:40:cd:4d:cd:60:c8:7f:f7:5d:2c:07:
1d:08:31:15:f9:08:d2:07:ee:6f:31:46:33:f4:8f:
02:b4:b4:28:a5:08:c3:3d:18:6c:07:8c:17:d2:f3:
90:8d:42:85:d2:87:53:41:cc:fa:35:da:d1:ab:4f:
0e:4f:5b:da:35:9c:f5:89:e5:2d:6f:87:69:98:b8:
cd:03:f5:b5:10:70:6c:5b:08:b7:30:dd:38:3e:b1:
a5:9d:c2:fb:f8:c9:60:78:70:ea:f3:db:5c:f0:dc:
cd:aa:06:b1:18:23:53:cb:59:25:fe:f0:08:92:dc:
04:a4:02:e6:ab:9d:4f:81:80:7c:a5:57:7e:56:ab:
cd:93:65:3d:8f:56:c6:81:a6:3e:5d:f4:3d:77:12:
f2:1b:10:e3:2d:32:0c:30:81:7e:68:2d:99:81:5f:
f7:67:43:bb:64:7b:c4:47:38:d3:37:1e:fe:1d:82:
16:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:26:6D:63:C5:08:99:0C:90:09:16:11:B3:B6:9E:1E:40:D8:61:38
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e38322e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.82.0/24
Signature Algorithm: sha256WithRSAEncryption
36:3f:c2:06:83:83:95:4b:79:54:98:0a:40:23:d5:17:9e:2a:
95:2f:23:fe:92:55:ac:68:0f:36:2f:af:21:7e:ed:c2:58:90:
00:b5:a9:5b:fc:b1:a7:41:3c:48:db:14:b5:5d:b5:9e:ae:45:
6b:e1:27:95:10:39:27:a1:2a:cd:6a:41:7d:34:ac:22:e4:dc:
74:15:12:a1:76:a6:18:c6:f8:4a:e0:7b:ae:98:f1:fa:d6:29:
11:aa:22:7c:ff:2b:88:02:f1:1f:f8:88:61:e2:31:6b:3f:fd:
92:af:fd:7f:23:6d:fe:5f:40:4c:8c:c8:a5:9f:bb:91:0c:86:
31:28:2f:f3:c5:de:16:c5:10:6f:c7:d6:ed:61:43:9a:9a:f9:
ba:fc:13:3f:bd:25:17:6e:d1:3c:d1:43:f9:a0:77:95:91:5a:
28:e3:f2:d2:00:8e:f4:23:29:82:90:15:5f:3e:33:88:bb:3b:
14:87:a4:a9:a2:39:0b:70:9b:04:ba:30:b8:60:90:c2:53:18:
bc:1b:e1:6f:09:a0:b6:2a:ed:34:ba:7b:1c:71:b0:ec:d0:53:
1c:0d:6d:3c:53:8d:94:9f:10:72:fe:98:69:b9:72:99:34:b7:
f5:bb:4f:13:dc:4c:b8:89:a3:a4:68:61:08:58:dd:83:81:b2:
43:b9:ea:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org