Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130382e302f32332d3233203d3e203137343531.roa
File: 3131382e39392e3130382e302f32332d3233203d3e203137343531.roa (raw, json)
Hash identifier: 0Gode8YBp3gYLzPZU4YrOreY5gLoP+JPYAB6CNMWl0s=
Subject key identifier: 9C:64:CB:4D:B5:B5:AA:C0:83:F7:37:93:F9:28:97:DD:7C:AE:14:17
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 6DD8F487311F532F9AF131B23221C172E6C9B320
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130382e302f32332d3233203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:01:05 +0000
ROA not before: Wed 29 Sep 2021 23:56:05 +0000
ROA not after: Fri 30 Sep 2022 00:01:05 +0000
asID: 17451
IP address blocks: 118.99.108.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:d8:f4:87:31:1f:53:2f:9a:f1:31:b2:32:21:c1:72:e6:c9:b3:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:56:05 2021 GMT
Not After : Sep 30 00:01:05 2022 GMT
Subject: CN=3082010A0282010100CC0374A8CCFCE4E930AB56A3B3D88C8A4C910ED7FEBBAED35DF8E62FA68FC1EB5E89AD1089DBCCEEA2BCE79CCEFD852712131F6BDBEA0A1FD65A48A9FF022CF8940B614A9FDDCFE7455D5F19F7FA3183DE1C28ABDE6439641062A5875E6E1CFB43A633AEEA752652EED6D32570670CA5B4F0417F137A16B8E08181231FDB36B130D245F9E15C4B6E1A454EA8FB60B7ADB7818A3253FAAEEB5570756E975BD16BD7C56920CE75FEA6B7BD8DE945F04459063B9CE731162B0144E4A1B064192B2C552DB155973F604D281BCD32BBCC9EC6FC91F6FEC891D9005B46068DDD5744C192F3416E296E34A12F9C745229891B1F77FC56D63CA2C34FDE905753724CE07F0203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:03:74:a8:cc:fc:e4:e9:30:ab:56:a3:b3:d8:
8c:8a:4c:91:0e:d7:fe:bb:ae:d3:5d:f8:e6:2f:a6:
8f:c1:eb:5e:89:ad:10:89:db:cc:ee:a2:bc:e7:9c:
ce:fd:85:27:12:13:1f:6b:db:ea:0a:1f:d6:5a:48:
a9:ff:02:2c:f8:94:0b:61:4a:9f:dd:cf:e7:45:5d:
5f:19:f7:fa:31:83:de:1c:28:ab:de:64:39:64:10:
62:a5:87:5e:6e:1c:fb:43:a6:33:ae:ea:75:26:52:
ee:d6:d3:25:70:67:0c:a5:b4:f0:41:7f:13:7a:16:
b8:e0:81:81:23:1f:db:36:b1:30:d2:45:f9:e1:5c:
4b:6e:1a:45:4e:a8:fb:60:b7:ad:b7:81:8a:32:53:
fa:ae:eb:55:70:75:6e:97:5b:d1:6b:d7:c5:69:20:
ce:75:fe:a6:b7:bd:8d:e9:45:f0:44:59:06:3b:9c:
e7:31:16:2b:01:44:e4:a1:b0:64:19:2b:2c:55:2d:
b1:55:97:3f:60:4d:28:1b:cd:32:bb:cc:9e:c6:fc:
91:f6:fe:c8:91:d9:00:5b:46:06:8d:dd:57:44:c1:
92:f3:41:6e:29:6e:34:a1:2f:9c:74:52:29:89:1b:
1f:77:fc:56:d6:3c:a2:c3:4f:de:90:57:53:72:4c:
e0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:64:CB:4D:B5:B5:AA:C0:83:F7:37:93:F9:28:97:DD:7C:AE:14:17
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131382e39392e3130382e302f32332d3233203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
118.99.108.0/23
Signature Algorithm: sha256WithRSAEncryption
a3:c3:d0:a2:e2:c7:a2:16:cf:70:1b:29:05:46:c5:12:8a:2c:
eb:c0:9b:1a:92:74:63:55:b7:3a:59:4b:aa:11:28:87:a5:10:
c1:e9:77:57:80:84:90:66:0b:d9:f8:f2:44:9f:cc:13:68:0f:
9a:2c:2f:51:65:00:ef:f0:b6:79:39:39:f1:d2:4a:ea:7a:6d:
cd:fa:97:3c:e5:6f:e1:79:81:99:e1:ee:c8:28:13:b3:90:6d:
67:c3:6a:71:f1:80:30:41:b8:ba:99:d3:29:f6:f6:66:56:4d:
26:b3:4b:0c:bc:96:ca:10:d9:6f:9f:0f:bd:98:1d:3c:92:cc:
87:3c:70:f8:42:78:76:6c:ce:21:a7:a6:68:39:64:d9:ef:70:
65:34:ad:a7:06:b9:9a:6e:ea:f3:6d:7f:fe:eb:58:00:60:a3:
fd:8d:32:27:b1:75:a5:1d:b2:18:ec:13:8f:2d:ca:09:8a:9e:
04:6a:f4:e1:2e:c6:98:e0:2f:11:c7:07:6d:60:aa:ab:cf:cd:
d0:6b:da:16:93:99:6d:d6:e4:6d:8e:5c:ad:24:59:1c:bf:b5:
7c:f1:21:49:b8:33:3d:14:0d:93:90:0a:33:b3:f3:41:b1:5d:
35:22:97:c4:39:d3:db:65:c1:98:06:be:91:34:8f:61:81:1e:
29:85:ed:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org