Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230332e3134322e37312e302f32342d3234203d3e203137343531.roa
File: 3230332e3134322e37312e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: U0gf3p24VYVVZAZwvv7D+qMGaE1O6zZDWTJrjvpmRGc=
Subject key identifier: 37:94:45:E1:20:63:D5:8B:05:95:F0:F0:23:3E:55:2D:63:74:16:39
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 202BA8E1FB37EE3D2699AC5DA361DD53AEE2AB5F
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230332e3134322e37312e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:01:08 +0000
ROA not before: Wed 29 Sep 2021 23:56:08 +0000
ROA not after: Fri 30 Sep 2022 00:01:08 +0000
asID: 17451
IP address blocks: 203.142.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:2b:a8:e1:fb:37:ee:3d:26:99:ac:5d:a3:61:dd:53:ae:e2:ab:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:56:08 2021 GMT
Not After : Sep 30 00:01:08 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:5a:be:ec:71:ac:6c:ed:ea:4a:98:a5:ea:99:
ab:f0:0d:d7:60:f2:0e:00:61:ec:0f:8e:6e:a2:ae:
7c:d5:82:4d:3f:2d:38:5a:37:25:9c:b5:84:ca:10:
3e:5f:b4:d5:ac:64:03:34:0f:cb:da:ec:66:f2:0d:
43:e9:bc:51:fa:67:6a:8c:10:14:a5:ab:2a:62:7b:
56:df:70:12:e5:5f:b5:c4:e0:82:cb:18:93:37:77:
b1:c9:24:3d:84:8c:a5:e6:5b:fe:91:6c:d6:f2:a1:
f6:1e:3a:5c:3a:e9:cb:fb:e1:99:83:44:79:2d:77:
a8:fb:8f:22:fd:20:ad:4f:ce:15:9b:34:44:7b:02:
cd:f7:e7:62:50:e9:4c:5a:aa:5f:0f:ae:94:37:58:
50:91:34:f1:dd:94:ee:d3:9b:e5:13:d4:9d:c1:ea:
94:ca:91:f8:88:25:78:15:f3:f3:1e:0c:ea:ca:2a:
d6:c0:4a:91:7a:d2:93:dd:c9:86:0a:e6:29:11:ee:
d5:e8:cd:b6:82:31:b5:2d:71:75:85:de:d4:dd:f3:
a2:cf:8c:95:3d:36:4f:09:d9:05:96:47:d1:3d:56:
fc:b6:90:26:d3:90:d1:96:b2:af:6f:3c:7f:9f:cf:
1d:7d:93:2b:73:91:0f:37:2f:6b:99:16:1d:24:dc:
ce:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:94:45:E1:20:63:D5:8B:05:95:F0:F0:23:3E:55:2D:63:74:16:39
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230332e3134322e37312e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.142.71.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:b8:cc:17:fc:ec:34:2a:9c:f1:14:f2:b0:90:e3:9f:c9:84:
67:c4:5f:e9:4a:4d:3d:e3:6c:86:9e:72:c4:33:b9:6c:37:70:
76:64:1c:0b:8d:a5:24:0f:15:1d:e5:ce:64:92:84:61:4f:49:
97:62:02:00:22:78:cb:24:cb:44:c6:19:97:3f:aa:b2:0b:97:
4b:45:f6:61:ef:eb:b4:6c:86:be:c2:4a:f0:34:70:cf:d4:2f:
52:c4:65:2a:ef:56:d3:93:f1:b7:c7:20:fb:fc:9f:89:4e:13:
99:d0:42:86:68:2f:42:e2:59:b0:fc:a5:1e:61:40:68:8f:5f:
a0:1d:ce:73:7c:61:ec:a5:61:d3:af:10:86:72:f3:18:46:00:
bb:1d:95:f3:b3:86:aa:5e:29:67:f3:4b:77:87:fa:96:f5:d2:
3e:79:dc:09:a1:8f:e8:a4:68:7e:d0:a8:c3:75:21:c4:ad:b6:
52:ee:ce:3e:af:ea:6f:d6:65:15:16:2b:1d:e5:17:c8:43:5d:
d8:7e:98:2b:17:b2:6e:43:b2:3b:1f:43:da:31:c6:4c:1e:96:
f2:6b:f8:0c:31:39:b0:ee:4a:00:54:c5:fb:0a:66:25:be:23:
34:49:b2:f8:89:cd:3f:7e:b5:0e:84:1a:cb:e4:80:b0:b3:2c:
c6:cc:fc:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:01 2023 by rpki-client on console-ams.rpki-client.org