Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230322e3136392e34322e302f32342d3234203d3e203137343531.roa
File: 3230322e3136392e34322e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: kMpuQNfXsy7uTnJfR6E44ljGsBqSZSCsXHLmbdPrIcw=
Subject key identifier: B4:6F:6D:91:C5:A3:D8:5D:9A:48:6E:BB:60:65:9A:09:A4:36:51:4A
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 56597AFAB7C41912A9FA1D3E2D592D43782DCBEF
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230322e3136392e34322e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:15 +0000
ROA not before: Wed 29 Sep 2021 23:55:15 +0000
ROA not after: Fri 30 Sep 2022 00:00:15 +0000
asID: 17451
IP address blocks: 202.169.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:59:7a:fa:b7:c4:19:12:a9:fa:1d:3e:2d:59:2d:43:78:2d:cb:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:15 2021 GMT
Not After : Sep 30 00:00:15 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:52:39:59:d6:0e:ad:ae:6d:6d:54:1c:56:f9:
80:40:79:8a:37:75:ee:ea:db:6f:8a:88:fa:bb:01:
64:40:77:da:14:f4:50:2d:95:e3:42:36:6f:79:8a:
40:ac:db:ba:55:d5:e5:71:cb:25:d9:c9:41:fa:a6:
02:0b:44:04:d6:f1:f5:38:24:91:dd:f6:17:46:ed:
1e:19:04:43:65:f7:ba:89:37:09:15:0b:d9:78:33:
27:df:6f:9a:43:76:91:d9:9b:78:31:1c:6d:d3:69:
01:9a:0a:6d:64:7f:78:55:92:c6:5a:be:74:63:fc:
84:9d:9c:d6:1c:3e:dc:47:14:b1:c5:92:e4:29:27:
c1:34:a4:3d:c8:0a:99:2c:fb:80:a8:ee:8a:32:b9:
2a:bc:40:d1:99:1e:ea:8c:af:71:5b:6b:c3:da:7f:
5a:33:0d:18:b6:4a:71:67:59:fa:b6:3b:be:84:c4:
6d:72:49:90:65:94:45:63:2b:b4:8e:bb:5d:e8:1a:
25:0d:95:85:92:aa:c5:95:cd:d4:7a:0e:64:39:6b:
b8:af:a1:15:be:9c:5c:e6:48:5b:02:05:bc:1a:15:
37:38:2d:81:48:22:c1:ee:44:d7:04:94:8e:14:96:
d9:15:e4:d5:2f:58:a0:9d:93:92:cc:85:6e:43:ef:
2b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:6F:6D:91:C5:A3:D8:5D:9A:48:6E:BB:60:65:9A:09:A4:36:51:4A
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3230322e3136392e34322e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.169.42.0/24
Signature Algorithm: sha256WithRSAEncryption
70:cd:37:02:76:b0:83:d0:16:5a:44:2e:86:ec:df:59:a4:49:
d8:2b:46:7f:8f:28:ed:09:fb:14:a0:7b:75:8f:41:07:2b:03:
b8:26:c2:e8:23:c2:41:48:7b:65:4d:ac:c2:b2:50:e5:8b:3b:
67:0f:e2:f3:7c:07:8e:50:69:ac:0a:00:a9:e9:b8:75:28:d1:
f5:5c:3d:b9:3f:38:a6:d5:de:21:5d:07:03:d2:24:8f:85:8a:
9a:f6:fb:6e:71:a1:db:4d:03:7f:5d:31:9f:3b:5e:d5:c2:14:
27:9c:6b:a4:07:c5:04:14:c0:cf:10:20:6a:25:88:54:89:d2:
5b:83:3c:17:d7:14:ae:9f:cc:0d:fc:aa:77:7b:ba:c2:3c:cb:
0b:e8:85:8b:7a:fa:f1:00:58:3c:47:a9:7d:35:3b:6e:80:23:
fe:9f:b0:1b:19:4b:dd:b4:98:06:d8:bc:80:e3:80:4e:78:30:
21:07:f5:e3:d7:7e:12:95:2c:ee:29:03:f1:b0:f6:6c:4f:f1:
13:4a:e7:b7:c4:7b:07:e4:00:57:6d:13:2d:fc:1f:45:6b:e5:
8a:f1:48:32:5d:21:ef:47:2d:3a:0a:13:55:ce:f2:00:4b:36:
38:1d:24:dd:e6:c4:33:55:b1:b3:88:8c:05:78:98:84:2e:08:
57:08:4c:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:03 2024 by rpki-client on console-fra.rpki-client.org