Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230322e3136392e35372e302f32342d3234203d3e203137343531.roa
File: 3230322e3136392e35372e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: XKf6aLjvmxJAfJkyn5AXIvhUCo3jMHX6xYMKc6jWFRA=
Subject key identifier: 76:3C:25:70:F8:84:9C:FF:81:7C:2F:A5:BA:1E:6E:3E:DA:93:4C:26
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 5A93AC4AB43DAFEEB3B661A839DA1A0561217ACC
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230322e3136392e35372e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:47 +0000
ROA not before: Wed 29 Sep 2021 23:55:47 +0000
ROA not after: Fri 30 Sep 2022 00:00:47 +0000
asID: 17451
IP address blocks: 202.169.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:93:ac:4a:b4:3d:af:ee:b3:b6:61:a8:39:da:1a:05:61:21:7a:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:47 2021 GMT
Not After : Sep 30 00:00:47 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2a:5f:eb:71:a5:7c:7e:24:2c:6a:3c:8e:3c:
63:a3:7a:d7:d6:d4:3a:a4:71:cc:1b:41:56:b5:1d:
c1:a9:ea:1b:8c:16:1d:ee:d2:01:4f:91:70:b1:73:
cb:45:76:bf:3f:84:aa:db:de:76:02:68:4a:ad:9e:
4e:47:35:ef:4f:3d:c8:e4:01:44:36:29:c1:46:de:
22:40:3f:96:7d:2e:42:a0:e6:df:24:4b:e3:4f:8f:
09:db:ae:35:11:46:0d:35:a1:77:2b:d9:90:bb:ba:
57:95:43:eb:23:46:ef:53:f4:e7:04:fc:20:4e:33:
a1:41:b7:3e:44:6a:eb:ec:1d:88:ef:f8:44:81:e7:
e5:0a:a4:68:22:ab:1c:f3:b9:cb:e7:f5:97:9d:13:
f3:a4:6c:d0:6b:ec:fe:52:b9:83:54:fa:b9:bc:33:
58:fa:be:ba:d8:6e:3e:09:06:4a:ac:e3:f4:09:61:
ca:61:e7:6d:ed:e4:f5:f3:46:d9:d8:78:17:a8:7f:
88:28:b0:22:d5:1a:3b:a0:a1:6f:24:b1:b5:0f:a7:
c9:66:cf:13:a2:19:ff:a3:9c:3c:25:e2:e4:66:1b:
ac:d3:5f:09:bf:6b:cb:07:ea:71:87:f3:44:28:b0:
82:ef:e5:ad:ad:b7:2c:d3:94:e2:c6:d8:5b:36:aa:
8a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:3C:25:70:F8:84:9C:FF:81:7C:2F:A5:BA:1E:6E:3E:DA:93:4C:26
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230322e3136392e35372e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.169.57.0/24
Signature Algorithm: sha256WithRSAEncryption
27:1f:3f:de:f0:19:04:e5:f9:d5:20:9a:53:c1:f1:b3:b6:1b:
01:d5:04:a5:a6:32:47:e2:72:97:83:1a:50:f2:e8:56:8a:ee:
0a:db:61:13:90:a8:1b:7c:41:d1:c3:64:02:eb:0a:80:57:a0:
9d:23:bf:a5:3c:42:15:91:fe:38:dd:db:50:83:09:a5:0e:c3:
6d:36:8b:cb:b7:a3:42:9b:17:bc:d9:c4:13:4d:e5:70:bf:ff:
c7:5e:ba:b7:36:9d:76:72:5a:0d:c9:a2:9d:29:c9:27:03:ec:
9c:8b:8f:3d:22:c7:34:8f:d3:88:67:57:c5:0f:10:16:f0:0c:
f5:21:c6:fe:a9:74:f8:42:4e:e4:1c:25:e5:a0:d4:2d:b3:24:
22:e7:28:3a:d6:9e:e3:ba:61:55:ed:fb:41:ec:4d:cc:be:44:
fb:36:78:2d:5e:ba:22:25:9d:ea:4b:f8:1b:2b:74:a9:6f:d4:
6e:2e:f4:f6:f6:de:09:01:7f:2d:81:82:8e:b0:ce:f0:e9:10:
fd:66:87:5b:d9:4e:b9:53:97:d4:ea:4b:83:74:31:ef:4a:83:
ce:78:99:d8:24:44:38:0c:b1:69:7e:5e:7b:f8:37:7d:3d:f9:
bc:b9:be:de:b4:5a:cc:c0:98:ac:77:b8:92:1e:08:e4:90:83:
6d:fe:bd:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:01 2023 by rpki-client on console-ams.rpki-client.org