Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230332e3134322e38372e302f32342d3234203d3e203137343531.roa
File: 3230332e3134322e38372e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: tshP7vEoKSFF5Z7JVwYoVIqYIEF1dSasaFE2wWjXZB8=
Subject key identifier: D9:CA:89:23:23:62:0F:87:DB:86:40:7F:DA:87:16:2B:49:53:C7:A1
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 40162846B99016AFC6D10331D020CBDB694004D2
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230332e3134322e38372e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:03 +0000
ROA not before: Wed 29 Sep 2021 23:55:03 +0000
ROA not after: Fri 30 Sep 2022 00:00:03 +0000
asID: 17451
IP address blocks: 203.142.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:16:28:46:b9:90:16:af:c6:d1:03:31:d0:20:cb:db:69:40:04:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:03 2021 GMT
Not After : Sep 30 00:00:03 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:2d:7d:d5:d7:3f:7c:2d:84:d5:18:cd:48:16:
4f:33:80:24:4a:76:d2:c1:ad:59:37:eb:7e:d6:52:
98:68:41:94:23:bc:2b:cd:0a:8b:5f:8a:ba:db:7e:
e9:d5:14:99:5a:fb:ca:d5:e4:4c:19:22:54:22:ef:
97:3b:0c:7f:11:9a:33:af:b5:f5:87:9e:12:1f:d0:
f6:39:92:24:6e:30:0d:5c:3b:d8:4a:31:e7:7e:c4:
88:4b:79:c9:66:c7:64:9d:5b:2b:71:27:3c:f1:f0:
48:11:17:1c:93:40:1f:e7:fd:a2:25:8b:f6:fe:24:
dd:60:c1:c2:01:c2:98:93:56:36:a5:c5:17:6b:24:
28:ff:fa:52:db:ae:d5:18:db:fb:e5:44:f4:07:94:
3d:45:56:48:28:48:78:6a:54:e2:0c:3f:d2:eb:69:
0b:4d:a0:e9:81:de:b3:f7:23:b6:29:f3:f9:da:a9:
5c:80:4a:78:aa:fc:be:2b:f9:14:c3:47:31:76:1b:
bf:02:19:26:cc:9e:d1:0c:06:9c:4b:ae:2f:5e:0d:
ca:01:05:21:0a:8f:2e:09:cb:b2:66:eb:78:5e:59:
b9:35:37:d8:f8:14:a4:b7:36:c9:cd:82:a5:43:d6:
5f:9e:37:68:98:bf:34:a6:51:3f:f9:1e:1d:5e:d9:
86:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:CA:89:23:23:62:0F:87:DB:86:40:7F:DA:87:16:2B:49:53:C7:A1
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230332e3134322e38372e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.142.87.0/24
Signature Algorithm: sha256WithRSAEncryption
61:68:74:c2:b5:ee:ce:ce:f5:6b:a3:10:89:ad:92:8b:58:f2:
18:12:01:8a:f8:a3:79:49:14:49:f1:66:c3:56:5d:09:6d:70:
9b:8d:da:6e:a3:ff:8e:5a:ef:7c:f3:c0:71:46:b7:cf:32:bf:
b3:89:76:8a:5d:ed:7f:4f:2d:f8:c8:a5:10:fc:4f:7b:ce:e4:
a4:55:76:51:5a:89:ad:6c:1c:9a:d5:2e:72:e7:3e:19:4a:43:
b5:cd:33:11:65:ff:cb:a5:39:cd:46:df:33:8d:5b:38:aa:f2:
32:b9:28:ec:97:53:c7:0c:51:7a:e6:44:76:10:02:5f:10:28:
5b:18:e5:d7:e8:b8:32:b3:74:f6:1e:ac:92:e0:c4:6e:85:ac:
30:4c:92:e9:e1:63:10:6c:6f:d4:80:ae:9b:0b:32:6a:f0:bf:
ec:b3:a2:a8:72:8b:cf:f0:d1:39:23:c8:d5:ed:d1:9f:9c:79:
00:f6:3b:1c:8b:43:f9:6c:df:d8:29:b0:88:43:fa:c2:ad:da:
4d:20:b2:26:84:d5:68:96:8c:40:34:0c:d0:33:a5:22:7f:af:
2b:6b:bd:b6:ca:7b:8f:4b:a4:f0:84:51:55:9b:a0:94:08:b2:
89:5e:f6:c0:7f:d5:d7:92:75:5e:c9:25:e4:67:89:04:2a:96:
aa:7d:40:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:01 2023 by rpki-client on console-ams.rpki-client.org