Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e38382e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e38382e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: tA440KVFIVYib4rxgjaX4aUMbpMK8M3XhWtAETn0dEg=
Subject key identifier: 68:60:22:64:C0:31:79:20:F8:0D:38:81:83:07:69:8B:5B:54:14:4F
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 59AB909E0FDC7BB795595076799175421DE9AB2E
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e38382e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:26 +0000
ROA not before: Wed 29 Sep 2021 23:55:26 +0000
ROA not after: Fri 30 Sep 2022 00:00:26 +0000
asID: 17451
IP address blocks: 118.99.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:ab:90:9e:0f:dc:7b:b7:95:59:50:76:79:91:75:42:1d:e9:ab:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:26 2021 GMT
Not After : Sep 30 00:00:26 2022 GMT
Subject: CN=3082010A0282010100BF2899F361A0C55F2C11CA840694DB07F09D73F74E5375001C04F166EFC4C8E86728F266EE6E618C332A7478806D22B621E04B8A924E734966F276616C01A74F00902FDCF5309E676CF9AB0AD46F37EDF1E974F725F61E5D22119C0E95A904D1F1311BDD8701D4FDC3B30E529E979C5C8E0EDD87ADC155AEF2FE3C4E18BF17CA10D5DADABC74B70110BC0EF0D5A90E4A91B8254282C50AA116F2B42EBA2D2F2961834FDC9553FEC9499375A6DA7A240A26DB31C0499A7E74B98FD7C50FF1589DB8873736F8A0283F55E238882F3F738CD4A54F0908ADE563B6B491EFDF91AED16771A630AF977F7C21E628493CD1C328831B1195BC9D1AA53F6CA8C5152BE3B70203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:28:99:f3:61:a0:c5:5f:2c:11:ca:84:06:94:
db:07:f0:9d:73:f7:4e:53:75:00:1c:04:f1:66:ef:
c4:c8:e8:67:28:f2:66:ee:6e:61:8c:33:2a:74:78:
80:6d:22:b6:21:e0:4b:8a:92:4e:73:49:66:f2:76:
61:6c:01:a7:4f:00:90:2f:dc:f5:30:9e:67:6c:f9:
ab:0a:d4:6f:37:ed:f1:e9:74:f7:25:f6:1e:5d:22:
11:9c:0e:95:a9:04:d1:f1:31:1b:dd:87:01:d4:fd:
c3:b3:0e:52:9e:97:9c:5c:8e:0e:dd:87:ad:c1:55:
ae:f2:fe:3c:4e:18:bf:17:ca:10:d5:da:da:bc:74:
b7:01:10:bc:0e:f0:d5:a9:0e:4a:91:b8:25:42:82:
c5:0a:a1:16:f2:b4:2e:ba:2d:2f:29:61:83:4f:dc:
95:53:fe:c9:49:93:75:a6:da:7a:24:0a:26:db:31:
c0:49:9a:7e:74:b9:8f:d7:c5:0f:f1:58:9d:b8:87:
37:36:f8:a0:28:3f:55:e2:38:88:2f:3f:73:8c:d4:
a5:4f:09:08:ad:e5:63:b6:b4:91:ef:df:91:ae:d1:
67:71:a6:30:af:97:7f:7c:21:e6:28:49:3c:d1:c3:
28:83:1b:11:95:bc:9d:1a:a5:3f:6c:a8:c5:15:2b:
e3:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:60:22:64:C0:31:79:20:F8:0D:38:81:83:07:69:8B:5B:54:14:4F
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e38382e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.88.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:ec:20:b4:2f:e4:2d:22:b0:d8:ac:98:63:bb:32:de:66:79:
b3:c3:83:2b:f3:1b:e2:36:5b:fd:9d:f6:d1:08:ad:32:a9:7f:
f5:ba:5e:54:94:e5:ec:3b:1a:55:5d:ec:1f:02:df:69:1a:48:
73:09:f5:ba:17:6a:de:5f:04:30:85:5a:a0:8e:5e:82:9b:32:
a5:29:97:3c:2c:bb:39:04:f4:f9:1c:e0:96:ad:cd:1d:46:4f:
ed:5b:37:a0:34:84:23:df:be:36:31:10:d5:d9:f6:4b:a7:f8:
4c:22:a8:61:29:87:7b:c5:90:63:72:e5:c1:cc:58:5f:aa:24:
47:db:2d:ea:77:4c:ba:80:ac:20:36:d8:c8:f9:e8:7d:a6:e9:
16:fb:cf:c3:0d:0f:ca:68:c3:3b:f2:bf:94:af:db:9f:0e:13:
88:32:81:71:f1:ee:7d:48:28:97:f0:96:4a:f6:df:d7:e5:c7:
8d:ca:46:6d:70:4b:ab:77:7c:c3:5c:94:c1:b2:33:27:2b:8e:
59:e4:af:f4:52:74:93:90:0e:5c:ea:7e:54:02:33:5a:cb:0f:
74:92:2a:8b:29:cc:c1:e9:6b:7b:e4:55:60:eb:a5:d9:e3:27:
0a:d8:8b:fa:32:d3:c0:a7:ae:e9:93:6e:b7:9c:ea:0c:57:a7:
e3:60:3a:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:45 2023 by rpki-client on console-fra.rpki-client.org