Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e38362e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e38362e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: fg7r7wiwKr8vHd5DaSRAvCJpyZzpv0TtAzmXegPGO84=
Subject key identifier: 87:67:02:CE:84:89:25:07:30:9C:39:C4:CB:17:F3:10:9A:C0:E6:BD
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 2EE220CC89108795C7A5E92AD8B6478AC1547856
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e38362e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:18 +0000
ROA not before: Wed 29 Sep 2021 23:55:18 +0000
ROA not after: Fri 30 Sep 2022 00:00:18 +0000
asID: 17451
IP address blocks: 118.99.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:e2:20:cc:89:10:87:95:c7:a5:e9:2a:d8:b6:47:8a:c1:54:78:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:18 2021 GMT
Not After : Sep 30 00:00:18 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:b2:af:71:c4:a9:52:47:17:70:c6:98:57:0d:
b1:67:f2:5c:71:01:9c:ac:71:05:0f:b4:1b:0b:7a:
46:03:53:7d:a0:48:16:8b:19:c2:d8:b6:69:46:6d:
50:c5:10:00:8d:40:93:38:3a:e3:62:f2:1c:4f:fd:
ee:0a:3d:e1:3c:d8:a8:94:39:b3:fb:d6:14:0a:83:
57:72:6a:43:6e:85:e8:41:d0:c3:3c:ba:bd:aa:5b:
0d:15:35:fa:c1:e6:2c:db:41:35:cb:d9:a3:42:f5:
ed:b0:23:30:71:c3:e5:9f:9b:4a:05:36:92:18:ab:
c5:98:67:9a:0e:6b:f2:16:47:bc:a9:6c:e3:36:f7:
f3:ad:96:12:b6:bb:71:71:81:b4:95:03:ca:ab:af:
8f:77:ba:1b:2d:ed:62:c4:8b:1c:46:93:db:7f:07:
98:3e:aa:90:f3:8d:b0:7d:14:4d:af:b7:48:c7:50:
91:f7:0b:c8:8c:88:1a:3e:60:d2:4b:d9:f4:57:6a:
46:78:5e:06:05:20:c2:bf:0a:cb:47:7a:0f:52:8e:
b0:ea:91:42:bb:20:62:4a:6e:b6:58:e5:cf:1a:7b:
8f:93:23:06:b7:39:4e:bb:d7:4b:ab:3d:6c:fc:d0:
ed:f7:e7:b0:fc:15:be:1a:94:4c:5d:dd:da:cc:be:
da:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:67:02:CE:84:89:25:07:30:9C:39:C4:CB:17:F3:10:9A:C0:E6:BD
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e38362e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.86.0/24
Signature Algorithm: sha256WithRSAEncryption
48:0a:73:d8:fc:1c:0c:67:1c:06:95:6c:1c:9b:db:e8:d8:0d:
44:7b:e3:5c:11:f8:5a:34:7a:25:21:52:fd:38:11:a5:d8:58:
14:4f:f7:18:30:f3:88:ca:07:13:94:3d:a8:3e:a5:32:50:9e:
06:07:05:8a:46:20:2a:de:7b:97:12:ee:2a:46:9f:42:30:24:
97:47:9a:4f:a1:eb:fe:71:d7:2d:aa:a3:50:f7:97:e8:72:f6:
d5:b0:c1:f4:6d:a4:97:e0:d7:7a:9b:6c:a5:42:78:61:b6:a4:
1b:99:91:4a:6f:87:a7:f7:d8:68:9d:77:c1:7b:dd:cb:95:36:
e7:43:bf:2c:93:80:ed:7c:d0:07:2f:37:f6:5f:39:7a:44:f4:
86:1a:55:46:53:f7:d9:03:1a:68:52:ae:bc:16:aa:16:a0:f3:
52:e4:f2:34:1c:4d:a2:a6:b1:0e:3f:73:f2:7d:7f:1e:e7:b2:
98:c3:3a:cc:36:30:8b:b7:92:48:f9:ce:63:78:2c:73:fb:33:
21:df:93:41:e9:82:49:6d:b5:2b:20:68:98:19:19:84:e7:0d:
2a:ce:65:a8:41:c5:6e:35:a4:27:5a:db:6e:73:62:83:2d:6c:
49:fb:6e:13:5b:33:13:5f:37:fe:e8:fe:38:ed:90:7d:a6:a3:
a4:69:60:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org