Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131372e3130322e37332e302f32342d3234203d3e203338343832.roa
File: 3131372e3130322e37332e302f32342d3234203d3e203338343832.roa (raw, json)
Hash identifier: ta98hek3zxtjGlFvMygpwaMhNoul4T9EWoHi1rpYRQY=
Subject key identifier: 31:7C:E8:92:1E:CB:A0:63:7D:C4:1C:27:32:F7:24:56:92:20:FA:44
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 1E23392A62EA378A7723958311CD6F5845B971BB
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131372e3130322e37332e302f32342d3234203d3e203338343832.roa
Signing time: Mon 31 Jan 2022 07:29:07 +0000
ROA not before: Mon 31 Jan 2022 07:24:07 +0000
ROA not after: Tue 31 Jan 2023 07:29:07 +0000
asID: 38482
IP address blocks: 117.102.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:23:39:2a:62:ea:37:8a:77:23:95:83:11:cd:6f:58:45:b9:71:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Jan 31 07:24:07 2022 GMT
Not After : Jan 31 07:29:07 2023 GMT
Subject: CN=3082010A0282010100F50088C9B1197D5C890A6BBDB625C8DA17BCE448A4F59385011B7343E8A93BAC40845C90EEFCF3233156DFF1BBD99D2E8D2BAF13FF8DAB4D9863773CE0D9B3FAF18F6B40C9AF5A6A822BF1E9B81DC0BC8F37C6CF62DD176966E970C24EFFDABFBA2AD61CA49106B005614EFA2836C4545F4954A48D76DBD436589D72803F286BCE73FFAB95920E380301D79B5B81433725EA1202CF61D3D8C1EDDC2BD3BDF2FEF7632CFC10B9F23A925F7DC592822191271BCA569FD40E1C9AD47AD6C2C70A1049FB210EE314AB3BE6BF0D114C982C600C9D79DF4117B21ABD4379C7EFFC94BA66B2AD412709522699357D897602086E4A08E66D9ACD5373A5A514F56875129B0203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:00:88:c9:b1:19:7d:5c:89:0a:6b:bd:b6:25:
c8:da:17:bc:e4:48:a4:f5:93:85:01:1b:73:43:e8:
a9:3b:ac:40:84:5c:90:ee:fc:f3:23:31:56:df:f1:
bb:d9:9d:2e:8d:2b:af:13:ff:8d:ab:4d:98:63:77:
3c:e0:d9:b3:fa:f1:8f:6b:40:c9:af:5a:6a:82:2b:
f1:e9:b8:1d:c0:bc:8f:37:c6:cf:62:dd:17:69:66:
e9:70:c2:4e:ff:da:bf:ba:2a:d6:1c:a4:91:06:b0:
05:61:4e:fa:28:36:c4:54:5f:49:54:a4:8d:76:db:
d4:36:58:9d:72:80:3f:28:6b:ce:73:ff:ab:95:92:
0e:38:03:01:d7:9b:5b:81:43:37:25:ea:12:02:cf:
61:d3:d8:c1:ed:dc:2b:d3:bd:f2:fe:f7:63:2c:fc:
10:b9:f2:3a:92:5f:7d:c5:92:82:21:91:27:1b:ca:
56:9f:d4:0e:1c:9a:d4:7a:d6:c2:c7:0a:10:49:fb:
21:0e:e3:14:ab:3b:e6:bf:0d:11:4c:98:2c:60:0c:
9d:79:df:41:17:b2:1a:bd:43:79:c7:ef:fc:94:ba:
66:b2:ad:41:27:09:52:26:99:35:7d:89:76:02:08:
6e:4a:08:e6:6d:9a:cd:53:73:a5:a5:14:f5:68:75:
12:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:7C:E8:92:1E:CB:A0:63:7D:C4:1C:27:32:F7:24:56:92:20:FA:44
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131372e3130322e37332e302f32342d3234203d3e203338343832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
117.102.73.0/24
Signature Algorithm: sha256WithRSAEncryption
05:32:4e:8d:7e:5e:b1:d8:fe:cf:93:cd:77:e8:df:40:72:0d:
81:e2:ca:e0:2b:4d:38:89:ba:df:77:89:f7:05:08:60:5f:bd:
d9:b6:0d:21:70:a8:6e:3b:c7:81:d1:68:83:ee:64:5e:7c:a6:
60:8e:be:0c:f6:54:30:c4:35:69:9e:9c:79:07:46:01:e0:d8:
d3:b3:e7:76:2e:52:b8:bf:ef:4e:62:5b:ff:21:bf:df:b5:bc:
f8:ba:d5:26:ed:cd:13:c0:10:ba:bc:cb:03:84:26:bb:22:24:
a3:f4:5f:4a:84:16:75:2f:7e:dd:24:6f:1e:aa:b8:19:cc:9a:
8f:f8:99:50:e4:02:ea:97:52:9d:d8:0e:d7:9f:f8:99:9f:34:
d2:7b:7e:02:3e:87:c9:52:d9:1b:98:96:7f:e5:ed:80:a5:b4:
f3:75:9e:f0:e0:ac:8c:b9:98:a1:68:27:50:f4:88:22:71:16:
30:58:99:b6:f0:95:34:1b:11:63:01:ed:b1:2f:5b:0d:74:65:
30:fa:13:e4:9a:18:ac:9f:dd:0e:6d:99:7f:f0:dc:bf:dc:93:
1d:6e:3d:b6:0e:6a:94:76:bb:d1:87:7a:72:24:d6:1e:62:08:
30:52:db:88:9a:6a:eb:28:75:7f:2d:1e:69:a6:85:44:d7:23:
55:a8:a1:09
-----BEGIN CERTIFICATE-----
MIIHJDCCBgygAwIBAgIUHiM5KmLqN4p3I5WDEc1vWEW5cbswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJBNDE3
RjcyOERCRjAeFw0yMjAxMzEwNzI0MDdaFw0yMzAxMzEwNzI5MDdaMIICLTGCAikw
ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwRjUwMDg4QzlCMTE5N0Q1Qzg5
MEE2QkJEQjYyNUM4REExN0JDRTQ0OEE0RjU5Mzg1MDExQjczNDNFOEE5M0JBQzQw
ODQ1QzkwRUVGQ0YzMjMzMTU2REZGMUJCRDk5RDJFOEQyQkFGMTNGRjhEQUI0RDk4
NjM3NzNDRTBEOUIzRkFGMThGNkI0MEM5QUY1QTZBODIyQkYxRTlCODFEQzBCQzhG
MzdDNkNGNjJERDE3Njk2NkU5NzBDMjRFRkZEQUJGQkEyQUQ2MUNBNDkxMDZCMDA1
NjE0RUZBMjgzNkM0NTQ1RjQ5NTRBNDhENzZEQkQ0MzY1ODlENzI4MDNGMjg2QkNF
NzNGRkFCOTU5MjBFMzgwMzAxRDc5QjVCODE0MzM3MjVFQTEyMDJDRjYxRDNEOEMx
RUREQzJCRDNCREYyRkVGNzYzMkNGQzEwQjlGMjNBOTI1RjdEQzU5MjgyMjE5MTI3
MUJDQTU2OUZENDBFMUM5QUQ0N0FENkMyQzcwQTEwNDlGQjIxMEVFMzE0QUIzQkU2
QkYwRDExNEM5ODJDNjAwQzlENzlERjQxMTdCMjFBQkQ0Mzc5QzdFRkZDOTRCQTY2
QjJBRDQxMjcwOTUyMjY5OTM1N0Q4OTc2MDIwODZFNEEwOEU2NkQ5QUNENTM3M0E1
QTUxNEY1Njg3NTEyOUIwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
MIIBCgKCAQEA9QCIybEZfVyJCmu9tiXI2he85Eik9ZOFARtzQ+ipO6xAhFyQ7vzz
IzFW3/G72Z0ujSuvE/+Nq02YY3c84Nmz+vGPa0DJr1pqgivx6bgdwLyPN8bPYt0X
aWbpcMJO/9q/uirWHKSRBrAFYU76KDbEVF9JVKSNdtvUNlidcoA/KGvOc/+rlZIO
OAMB15tbgUM3JeoSAs9h09jB7dwr073y/vdjLPwQufI6kl99xZKCIZEnG8pWn9QO
HJrUetbCxwoQSfshDuMUqzvmvw0RTJgsYAyded9BF7IavUN5x+/8lLpmsq1BJwlS
Jpk1fYl2AghuSgjmbZrNU3OlpRT1aHUSmwIDAQABo4ICMjCCAi4wHQYDVR0OBBYE
FDF86JIey6BjfcQcJzL3JFaSIPpEMB8GA1UdIwQYMBaAFKxVVEe6YsORB/Fr9XL4
KkF/co2/MA4GA1UdDwEB/wQEAwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzk5M2YzNTAtYjc1Ni00OTE2LThk
ODQtNDg0ZjAyNWRmZmNjLzAvQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJB
NDE3RjcyOERCRi5jcmwwdAYIKwYBBQUHAQEEaDBmMGQGCCsGAQUFBzAChlhyc3lu
YzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8yL0FDNTU1NDQ3
QkE2MkMzOTEwN0YxNkJGNTcyRjgyQTQxN0Y3MjhEQkYuY2VyMIGiBggrBgEFBQcB
CwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby8zOTkzZjM1MC1iNzU2LTQ5MTYtOGQ4NC00ODRmMDI1ZGZmY2MvMC8z
MTMxMzcyZTMxMzAzMjJlMzczMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMzMzgz
NDM4MzIucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcB
Af8EEDAOMAwEAgABMAYDBAB1ZkkwDQYJKoZIhvcNAQELBQADggEBAAUyTo1+XrHY
/s+TzXfo30ByDYHiyuArTTiJut93ifcFCGBfvdm2DSFwqG47x4HRaIPuZF58pmCO
vgz2VDDENWmenHkHRgHg2NOz53YuUri/705iW/8hv9+1vPi61SbtzRPAELq8ywOE
JrsiJKP0X0qEFnUvft0kbx6quBnMmo/4mVDkAuqXUp3YDtef+JmfNNJ7fgI+h8lS
2RuYln/l7YCltPN1nvDgrIy5mKFoJ1D0iCJxFjBYmbbwlTQbEWMB7bEvWw10ZTD6
E+SaGKyf3Q5tmX/w3L/ckx1uPbYOapR2u9GHenIk1h5iCDBS24iaausodX8tHmmm
hUTXI1WooQk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org