Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230322e3136392e35312e302f32342d3234203d3e203137343531.roa
File: 3230322e3136392e35312e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: PO7c5nxYZa0pVuxVzVMzlA9w3j/GAEyQ83SVesrq/1M=
Subject key identifier: 0C:40:35:84:C0:24:C2:CD:8B:2B:1C:3E:CA:D2:33:5F:99:63:17:F0
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 6F9B80AF3CE63E18C119D1BD5F860E41D2F0125C
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230322e3136392e35312e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:01:09 +0000
ROA not before: Wed 29 Sep 2021 23:56:09 +0000
ROA not after: Fri 30 Sep 2022 00:01:09 +0000
asID: 17451
IP address blocks: 202.169.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:9b:80:af:3c:e6:3e:18:c1:19:d1:bd:5f:86:0e:41:d2:f0:12:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:56:09 2021 GMT
Not After : Sep 30 00:01:09 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:bc:dd:64:4a:7f:7e:3e:c4:94:65:ef:67:6d:
f5:cd:2a:0b:68:e2:19:fc:1e:6b:80:ae:54:11:58:
be:f5:9d:a1:ac:1c:2b:4e:f0:37:9e:fd:0f:f2:16:
03:b9:a3:fe:38:42:05:b1:cf:b0:21:c4:e3:82:f5:
bf:3e:6a:27:a5:5e:4b:78:f3:36:f0:b4:5c:98:72:
41:a7:a5:7f:07:f3:d6:fb:ac:6d:08:a6:dd:9a:81:
ae:97:dd:49:9f:9b:19:65:5b:22:e9:26:68:d7:92:
58:c6:50:24:f3:7a:2c:cc:9f:a7:ac:a9:2b:61:ff:
cd:fc:b3:d8:d3:5a:0e:26:d6:f5:b2:c8:ef:65:89:
67:55:e9:6a:f2:f5:fd:6e:5e:c8:6c:7a:f6:cd:73:
61:fb:51:ec:34:2d:b3:ed:d5:5e:a4:d0:5e:6b:77:
f0:f7:2c:fa:18:1d:e1:e8:d4:e5:a5:2e:5f:bb:a5:
1e:ef:06:17:fb:43:07:00:f8:f8:c4:8f:7f:87:6f:
e8:85:56:a5:06:18:2f:f7:9e:56:51:9e:61:1b:d5:
d6:78:a6:5d:c4:93:dd:38:30:a7:c6:8a:a4:b1:fc:
1a:71:64:08:a0:31:d9:f1:b6:8c:cf:8d:58:9b:7f:
c5:49:a4:48:2b:da:de:7d:3e:8e:ae:b7:27:48:27:
7f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:40:35:84:C0:24:C2:CD:8B:2B:1C:3E:CA:D2:33:5F:99:63:17:F0
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230322e3136392e35312e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.169.51.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:9f:27:e2:a5:1a:56:08:06:ac:d8:c8:58:61:93:a3:60:a9:
00:f8:df:7c:48:56:94:3a:c3:82:1d:03:3a:46:88:ba:cf:cf:
04:a3:bc:67:91:d7:45:dd:87:75:94:48:16:4a:17:42:98:6b:
4c:1a:83:0e:20:6e:a1:b1:b5:05:bd:ae:41:d6:bf:99:58:34:
f9:c2:76:cc:26:d7:b4:d3:19:87:cf:11:93:02:ef:94:c1:f2:
6d:f8:20:51:35:04:ab:c1:66:1d:29:c9:d3:22:88:d2:b6:4c:
61:e6:9d:14:ae:de:cb:6c:c2:bb:45:9e:4d:75:bc:2f:91:d0:
bf:20:17:85:e2:15:44:09:16:f9:c4:f6:3b:c1:d3:28:e0:bc:
a7:97:d7:93:68:89:d9:93:91:5f:29:3c:40:e6:59:e6:c6:00:
a1:eb:cd:d3:46:c5:88:c6:57:73:2f:db:85:aa:39:b0:c8:84:
4f:30:3b:ff:d5:ac:08:2d:cd:43:de:2f:0a:01:6f:50:93:7c:
f1:bd:84:3b:26:d0:46:2e:fa:83:71:f1:ca:65:9d:17:ce:10:
68:d7:73:21:d5:cb:99:30:20:5a:ce:5c:05:85:7a:9c:e1:21:
0a:04:ad:a9:2d:76:29:d8:1a:78:1d:47:15:7a:b5:9b:e0:48:
81:95:e4:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org