Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131372e3130322e39352e302f32342d3234203d3e203338343832.roa
File: 3131372e3130322e39352e302f32342d3234203d3e203338343832.roa (raw, json)
Hash identifier: pMMZQYlRg03yKNaHGWnHz5tT/Pv4biG+dOdCdH+gFss=
Subject key identifier: 0A:20:CC:EB:73:74:EA:B2:81:D1:D1:37:A8:0A:BB:CF:D8:66:F8:3C
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 6B9EE90B686B29C0DF2EEA8FBCF8807558701640
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131372e3130322e39352e302f32342d3234203d3e203338343832.roa
Signing time: Thu 20 Jan 2022 05:22:57 +0000
ROA not before: Thu 20 Jan 2022 05:17:57 +0000
ROA not after: Fri 20 Jan 2023 05:22:57 +0000
asID: 38482
IP address blocks: 117.102.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:9e:e9:0b:68:6b:29:c0:df:2e:ea:8f:bc:f8:80:75:58:70:16:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Jan 20 05:17:57 2022 GMT
Not After : Jan 20 05:22:57 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:d6:50:73:3d:f9:f6:08:ec:e5:0a:42:e6:67:
ac:7d:39:bf:24:bf:95:e6:42:68:69:71:46:cb:1c:
9b:ab:a5:99:bd:0f:da:2d:a8:71:56:84:fe:f3:ca:
37:c4:27:ca:66:c7:47:99:01:b0:38:96:18:5e:4b:
b2:bb:f5:11:e0:78:a2:a7:72:53:44:62:ab:a2:8c:
17:a7:2b:4f:08:96:71:4e:37:d1:46:48:41:d9:66:
41:3e:38:6a:3b:59:d8:88:e7:d8:03:ee:8a:60:d1:
02:25:3a:69:61:70:da:78:d6:8a:72:bb:2f:90:29:
51:02:c7:18:73:69:af:27:c4:6b:93:34:2f:68:fc:
ee:b6:32:61:24:35:6f:77:71:78:89:f8:7d:a8:ca:
06:51:fb:52:9a:5e:fc:6f:89:a8:53:9b:64:0b:f9:
80:67:d6:05:fd:a0:af:a9:d5:6f:0b:4b:53:ce:9e:
95:33:49:38:35:d7:c0:5d:6c:25:48:9a:0b:c4:59:
3f:02:bc:cb:e2:66:44:59:54:c6:6d:29:51:0e:ed:
f2:78:39:b7:be:85:d5:ae:40:b3:95:ab:7c:55:2e:
c0:f7:09:04:bb:cd:c7:31:76:61:5a:a1:b8:66:36:
16:0f:2b:7a:b7:7f:1a:c6:cc:19:6d:05:ec:a8:28:
d1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:20:CC:EB:73:74:EA:B2:81:D1:D1:37:A8:0A:BB:CF:D8:66:F8:3C
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131372e3130322e39352e302f32342d3234203d3e203338343832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
117.102.95.0/24
Signature Algorithm: sha256WithRSAEncryption
46:0d:d9:73:68:f9:95:cc:25:6d:be:c9:77:fd:74:9c:60:92:
ec:e8:19:09:01:b8:98:91:84:01:25:b8:0a:47:1f:54:e2:84:
89:cd:8a:44:25:ef:66:1b:28:e3:17:b0:42:77:1a:61:e8:5f:
35:05:1b:54:61:ab:52:34:ac:b2:b9:f2:6a:25:3d:58:1b:68:
62:3c:80:48:af:0c:ae:0b:3b:5f:5f:d4:26:8e:46:43:3c:fa:
e4:d1:09:b9:f3:23:bf:a1:8c:56:0a:ca:56:f0:c6:e6:a9:02:
f5:55:2b:2c:44:d4:09:51:22:1d:3e:e8:07:23:ca:22:1d:df:
af:3b:64:d2:14:31:17:0f:f3:88:4e:c4:f3:4d:08:69:ef:a2:
05:44:4a:93:47:3c:a4:bd:a8:59:6e:b6:8e:bc:11:4e:67:01:
11:cd:61:60:86:38:da:0b:45:75:10:95:fc:a8:a4:77:71:77:
f1:0a:f4:ce:82:63:69:0e:24:25:34:42:a3:fc:14:21:0b:d8:
99:9c:e7:6a:e9:87:0c:91:78:09:65:3e:78:28:d1:5c:55:09:
d1:38:3a:d1:d3:27:97:f7:f4:44:6a:e7:38:65:80:5d:24:52:
3b:5f:de:89:55:c4:68:bf:ee:28:aa:39:1f:26:f3:d9:43:1a:
ef:6a:d5:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org