Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e39372e302f32342d3234203d3e203137343531.roa
File: 3131382e39392e39372e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: faAWNIz05NjXAdfS7E711mM0SjarCVMkWyI8CgWio5w=
Subject key identifier: A4:C0:5E:DF:DF:DF:98:2F:18:F9:E3:5D:66:7C:04:02:CD:15:EE:A0
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 672977C5E337E8321EFA3DBD9D9F719D76CCF3BA
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e39372e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:01:00 +0000
ROA not before: Wed 29 Sep 2021 23:56:00 +0000
ROA not after: Fri 30 Sep 2022 00:01:00 +0000
asID: 17451
IP address blocks: 118.99.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:29:77:c5:e3:37:e8:32:1e:fa:3d:bd:9d:9f:71:9d:76:cc:f3:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:56:00 2021 GMT
Not After : Sep 30 00:01:00 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c2:c7:bd:58:15:fd:d5:b2:99:3f:5d:54:92:
c4:06:26:02:7a:07:86:46:82:0e:16:88:fa:19:3f:
7e:92:7d:b5:96:2b:34:1d:ea:c3:db:36:26:24:7e:
67:ad:17:67:3c:5e:3f:e1:fe:b9:6c:e0:61:04:4f:
4c:04:d4:3b:ba:28:ff:e9:ec:2e:b5:ce:1e:af:5a:
a5:2f:26:9a:02:62:40:47:b9:51:2a:6d:31:6c:d4:
c8:04:47:a8:06:41:99:a1:17:50:98:4f:98:d5:c0:
d0:c2:c3:ce:af:e5:95:68:98:fb:4e:d9:eb:b8:07:
85:8d:55:86:db:6a:f9:70:16:91:5a:de:4d:d1:f1:
32:45:ef:52:0e:ae:94:d2:86:84:e3:f0:c7:30:b8:
70:3b:d3:9f:13:80:71:3b:c3:db:08:51:8d:bc:02:
45:1a:5a:cb:9a:ae:f8:87:34:75:d8:27:78:28:c6:
1d:ea:d0:3e:3a:33:dd:73:77:ea:75:8d:98:7e:e7:
fa:9d:f4:aa:72:2e:a0:4b:2b:eb:07:f9:8f:c6:7e:
e9:ac:a8:ba:b2:a6:ab:f1:5c:cd:b1:be:3f:6b:e1:
42:df:27:3b:6e:70:9a:56:e1:8a:91:d6:d3:cf:28:
7e:3a:69:1a:92:48:ff:c9:28:cc:57:21:60:71:15:
20:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:C0:5E:DF:DF:DF:98:2F:18:F9:E3:5D:66:7C:04:02:CD:15:EE:A0
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e39372e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.97.0/24
Signature Algorithm: sha256WithRSAEncryption
97:8d:75:fc:82:da:b6:c0:69:80:c9:d7:30:80:44:5c:19:83:
27:9f:85:74:1b:66:10:97:5a:ef:28:31:29:25:a7:c6:82:f1:
93:d2:db:49:46:14:43:91:9c:c2:c2:82:6f:3c:ed:19:53:1c:
df:da:4f:f4:68:5f:c7:b1:d1:33:35:9e:fe:08:be:35:6b:3e:
ec:8a:4e:d9:53:4f:65:67:0e:5f:df:ac:c5:97:01:69:f4:49:
f8:f5:4d:4f:ca:0e:46:44:ea:13:12:f6:50:86:e6:88:53:f6:
0f:b0:84:c6:c2:1c:7e:35:ae:69:8b:c8:b1:cc:2c:fc:c6:7f:
2d:7e:ca:cb:c6:f0:e9:95:b9:37:62:1c:f2:8c:09:e7:91:41:
ed:da:56:b8:c4:06:2f:b0:f4:6d:86:8b:e4:a7:c0:e5:82:16:
f4:24:4e:a5:82:ca:10:78:64:6a:de:16:5b:dd:0b:be:cc:eb:
57:0e:11:7d:c5:34:9f:7f:9f:1f:bd:fc:2b:d1:59:af:ac:48:
35:ba:5b:c3:d5:75:76:c5:fc:10:5c:a3:a0:85:90:19:c1:c1:
fd:c6:7e:59:14:93:fb:db:3a:eb:15:8a:84:93:88:8a:d2:65:
30:23:bd:71:de:15:71:f6:c0:45:6d:e2:88:26:5f:bc:12:a7:
17:f1:ed:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:45 2023 by rpki-client on console-fra.rpki-client.org