Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e39362e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e39362e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: +hc9o5kfN1jmNDtDbtlHb3/o2QYBiOGswzzjYPk3b5c=
Subject key identifier: 09:1F:1F:D5:86:FD:7C:ED:CA:C0:12:72:4F:BB:CA:ED:FF:55:9D:E6
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 04BEF948294ABB90230253F984AECCF3BB23EC25
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e39362e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:09 +0000
ROA not before: Wed 29 Sep 2021 23:55:09 +0000
ROA not after: Fri 30 Sep 2022 00:00:09 +0000
asID: 17451
IP address blocks: 118.99.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:be:f9:48:29:4a:bb:90:23:02:53:f9:84:ae:cc:f3:bb:23:ec:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:09 2021 GMT
Not After : Sep 30 00:00:09 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:23:e2:be:62:f1:35:08:e0:58:65:0c:c1:4a:
0d:23:ec:13:3a:1a:d9:94:72:96:2f:8d:a9:68:10:
b5:ad:7f:59:b9:b6:56:c4:4e:31:29:7d:46:bf:70:
d2:02:57:93:f1:44:3a:39:bb:1d:c8:c7:22:2e:62:
56:09:be:5f:dc:47:aa:8d:73:00:3c:50:d6:29:3b:
08:32:d9:21:cd:99:22:d7:1b:22:80:9f:b1:d0:35:
39:6b:31:6e:3d:64:35:56:00:86:0a:33:b7:6e:ff:
ad:74:7b:98:e4:50:64:b8:fd:7a:3e:f7:4a:e5:a7:
42:26:a6:76:76:c6:22:d2:86:d6:71:bf:f8:8d:76:
b4:3b:73:a9:54:fe:14:a1:63:81:44:e1:e1:d8:f5:
47:b2:5e:d9:b6:7f:5c:6e:4e:e7:04:3d:67:5c:a2:
1a:28:09:7e:6f:7c:3d:23:34:dd:c2:ad:49:e5:69:
1a:2f:e8:18:19:56:e4:1e:b3:33:93:7a:4e:eb:e1:
06:1f:d3:a2:e2:63:4f:a1:8c:76:95:6b:22:e0:a0:
5f:7c:e9:f2:ca:47:9e:8d:93:1b:c8:e2:f4:3d:8d:
39:10:e3:fe:a8:cd:03:8c:7b:ae:46:65:ff:61:bf:
f8:65:32:ee:c0:29:f2:82:d1:dd:5d:fb:25:f9:a7:
d9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:1F:1F:D5:86:FD:7C:ED:CA:C0:12:72:4F:BB:CA:ED:FF:55:9D:E6
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e39362e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.96.0/24
Signature Algorithm: sha256WithRSAEncryption
63:19:72:36:02:81:d6:1d:1b:6c:1e:de:18:a4:13:fc:52:7d:
64:9b:49:2a:b6:4e:7b:25:ab:c4:92:70:78:83:87:d8:12:81:
40:98:6c:25:54:d5:17:1b:89:bf:2b:6f:21:0f:4e:43:3c:69:
c6:f5:4d:5b:2a:0f:5c:02:c9:96:7d:52:cd:6d:83:3b:00:74:
ed:0a:52:2c:d1:a4:2a:a5:a9:aa:07:af:e0:dd:fe:ee:f3:32:
e5:1b:9f:01:83:de:4d:3a:07:78:77:4a:c4:39:c7:50:f8:91:
58:4e:9f:3b:87:af:7f:c2:b7:ba:a1:71:63:36:16:83:55:ef:
74:54:58:83:c5:81:ff:95:db:ce:ae:90:0b:e3:82:34:66:b2:
f9:5b:16:71:5d:ee:1e:8f:52:2b:29:9b:d0:80:e8:2a:32:1c:
e9:0d:bd:3c:33:cd:8d:ff:aa:37:14:94:d6:d6:02:84:05:70:
df:57:58:47:4b:e4:b1:c4:26:fb:24:cb:67:9a:52:e6:ae:76:
63:45:2b:ec:52:93:60:b7:f6:3f:7f:2b:69:25:b7:f0:e4:d2:
4c:38:e4:eb:36:3e:a8:9c:d6:70:18:3f:30:a0:77:b6:40:94:
23:72:a7:4e:cb:2b:aa:e1:16:3f:57:05:9f:98:4c:c2:94:2b:
98:45:73:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:45 2023 by rpki-client on console-fra.rpki-client.org