Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230322e3136392e34392e302f32342d3234203d3e203137343531.roa
File: 3230322e3136392e34392e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: H5L96riCq12mOSZSWG/LwI6IthauKW/aJ1h57kznI88=
Subject key identifier: 85:80:19:1C:88:04:E9:6F:B2:D7:A6:9F:BE:FA:0B:33:A0:54:DF:DC
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 4C55942607B8338B26266679A9DA5FFF79495B9F
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230322e3136392e34392e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:43 +0000
ROA not before: Wed 29 Sep 2021 23:55:43 +0000
ROA not after: Fri 30 Sep 2022 00:00:43 +0000
asID: 17451
IP address blocks: 202.169.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:55:94:26:07:b8:33:8b:26:26:66:79:a9:da:5f:ff:79:49:5b:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:43 2021 GMT
Not After : Sep 30 00:00:43 2022 GMT
Subject: CN=3082010A0282010100D63D37F5B7674457BE5FD6339DEF434A507D85DC122BCBFFF7F06CE77E4CA07BF363C426C717BFB32684D9AE63769895E15D05FA2A6443825E86FA7520F063526A6ECA1F000C148AF1E206FE2FCDFC909051E7F4FEC1335D2B15F86729F3349B0CAE8DFFA5D55314509ADA6AF1B3C512088B52F81B5A7392AF3BBF3A7061A49666C345CF41DCEF44E4A53E20D802113DE12E28EEF2C72C446807E857CDEFB80F2CAFB0DE4C1184DB6FFFBC11715C8BC3F2E4DDC63792363118C6F784168BAA8D51EE56A1C24D7AEC3A43CFA043CD88C1875D35F77426B56C4F24156895DF44DC5A7B2DE14884C8D88F97F2878CE52B45344756635F32358565A5B6EA91CCDA5D0203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3d:37:f5:b7:67:44:57:be:5f:d6:33:9d:ef:
43:4a:50:7d:85:dc:12:2b:cb:ff:f7:f0:6c:e7:7e:
4c:a0:7b:f3:63:c4:26:c7:17:bf:b3:26:84:d9:ae:
63:76:98:95:e1:5d:05:fa:2a:64:43:82:5e:86:fa:
75:20:f0:63:52:6a:6e:ca:1f:00:0c:14:8a:f1:e2:
06:fe:2f:cd:fc:90:90:51:e7:f4:fe:c1:33:5d:2b:
15:f8:67:29:f3:34:9b:0c:ae:8d:ff:a5:d5:53:14:
50:9a:da:6a:f1:b3:c5:12:08:8b:52:f8:1b:5a:73:
92:af:3b:bf:3a:70:61:a4:96:66:c3:45:cf:41:dc:
ef:44:e4:a5:3e:20:d8:02:11:3d:e1:2e:28:ee:f2:
c7:2c:44:68:07:e8:57:cd:ef:b8:0f:2c:af:b0:de:
4c:11:84:db:6f:ff:bc:11:71:5c:8b:c3:f2:e4:dd:
c6:37:92:36:31:18:c6:f7:84:16:8b:aa:8d:51:ee:
56:a1:c2:4d:7a:ec:3a:43:cf:a0:43:cd:88:c1:87:
5d:35:f7:74:26:b5:6c:4f:24:15:68:95:df:44:dc:
5a:7b:2d:e1:48:84:c8:d8:8f:97:f2:87:8c:e5:2b:
45:34:47:56:63:5f:32:35:85:65:a5:b6:ea:91:cc:
da:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:80:19:1C:88:04:E9:6F:B2:D7:A6:9F:BE:FA:0B:33:A0:54:DF:DC
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230322e3136392e34392e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.169.49.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:bf:63:4c:eb:6f:34:15:9b:a0:ae:07:58:04:87:48:1a:e9:
94:44:58:6f:60:9a:73:6a:35:61:fc:f7:28:8c:71:93:39:6e:
1d:5c:95:91:17:7a:10:8c:bf:51:8f:33:89:a7:d7:7b:27:a8:
52:fa:06:88:c9:43:ba:09:ce:b8:26:71:23:4c:31:c6:80:54:
86:9c:69:5a:81:43:e7:30:bb:61:3f:74:1c:7a:3f:d8:62:81:
d2:0a:e7:39:9e:e2:c4:1a:90:fd:db:ba:6f:63:4f:38:44:33:
94:3a:fc:b0:0e:44:d9:f5:ca:36:67:88:35:40:95:18:39:ae:
f2:18:a6:a1:de:04:ca:3c:a4:6d:e6:46:e7:d5:d0:c1:d5:85:
af:96:36:82:41:ca:8c:0f:0b:84:21:47:ac:19:98:a9:92:1b:
6e:ac:e0:ba:15:22:58:93:ab:40:58:b9:fd:1e:90:ff:b6:3c:
8f:c2:dc:3a:bf:ea:47:b4:7a:3f:df:60:9e:8e:01:df:07:6f:
68:d5:13:f5:0c:01:ee:55:f7:5d:65:bf:eb:11:64:c1:3d:58:
8c:9f:97:e6:09:db:0b:e9:a1:b6:89:4a:d3:46:32:e6:f0:4d:
ef:b9:4b:dc:5c:fc:61:15:0e:de:7e:c9:2b:6d:3e:14:15:ba:
a3:42:3d:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org