Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e31362e302f32342d3234203d3e203137343531.roa
File: 3138322e3235332e31362e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: f70wyXlJDLZxriJf6xgVfc+YWm3Q2kTWuqoTe+Ld3h0=
Subject key identifier: D1:F4:30:FA:DB:9B:70:56:22:07:B9:B2:C4:16:FC:2B:78:DE:4B:2C
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 217DD853C171CDED3DB7A7645300690210B8F124
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e31362e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:45 +0000
ROA not before: Wed 29 Sep 2021 23:55:45 +0000
ROA not after: Fri 30 Sep 2022 00:00:45 +0000
asID: 17451
IP address blocks: 182.253.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:7d:d8:53:c1:71:cd:ed:3d:b7:a7:64:53:00:69:02:10:b8:f1:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:45 2021 GMT
Not After : Sep 30 00:00:45 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:21:10:fb:14:8b:65:f3:88:92:00:a1:40:d9:
7e:76:ec:8c:ed:e3:f9:66:68:b6:56:05:2b:fe:07:
30:46:39:02:95:42:fb:5e:03:24:d9:65:de:83:6d:
85:e8:3f:b7:64:bf:c4:cf:5c:93:a1:89:43:0c:d4:
d8:ef:d7:8c:f2:e0:a9:c2:2d:fd:c5:90:0c:35:cd:
51:02:35:cc:57:31:84:4d:3d:bb:85:97:1d:25:99:
0d:e2:d7:cd:d2:16:be:79:23:82:29:6a:19:24:27:
c6:d8:a2:31:f9:ef:c7:e8:dd:0f:9a:4e:92:1a:ae:
98:ab:e8:04:a0:d0:88:c5:54:b2:60:48:56:72:86:
c7:f7:5f:63:c6:ec:17:1b:73:11:3e:d0:20:64:9a:
7a:12:72:94:cb:72:ab:59:7a:0b:e2:e3:b1:3d:f9:
db:8f:c1:37:80:74:55:7d:0a:f8:25:f6:e9:3c:d0:
d4:4d:97:d0:f6:67:b9:1f:2c:41:82:b4:b4:bb:42:
57:5b:e5:43:b5:aa:49:76:40:29:6f:fb:5f:f2:9a:
5d:fa:80:6e:fb:7e:95:f7:88:0d:0a:37:d1:13:ad:
75:38:dc:0f:37:2c:d5:bd:e9:4d:1c:c3:61:71:2e:
a2:e6:04:5b:d4:24:64:3b:d9:97:1c:ff:17:79:af:
eb:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:F4:30:FA:DB:9B:70:56:22:07:B9:B2:C4:16:FC:2B:78:DE:4B:2C
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e31362e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.16.0/24
Signature Algorithm: sha256WithRSAEncryption
19:aa:5b:0a:fb:4f:dc:51:99:63:46:56:db:6a:ee:b1:d6:33:
ee:e4:f3:09:41:4d:e5:0f:9f:64:d5:42:eb:4c:d2:76:1f:74:
7d:02:29:6a:07:3b:2e:5d:3f:11:be:67:74:5f:40:2a:e6:9a:
4b:68:a9:68:d6:18:a0:ca:b2:4d:03:0d:74:89:af:89:85:bd:
47:bb:77:5c:45:90:66:43:7f:94:42:04:8a:f1:c2:96:97:1e:
6b:93:a9:0e:70:d4:3c:78:67:f1:55:f4:1b:93:ae:3c:d4:cb:
b3:63:0d:0f:f2:0c:14:df:d8:db:9f:65:ac:b2:38:d1:4b:66:
62:28:9d:66:d4:9c:10:20:0f:a2:74:fb:a1:b3:bb:63:c3:03:
5c:53:32:2b:10:c9:0d:73:9b:71:9c:f4:fe:a5:ca:4b:a1:c6:
ab:02:42:4b:ab:36:3d:b9:f6:dd:d8:29:32:66:a6:45:99:a6:
11:ea:43:53:f3:63:9d:2f:df:db:68:7e:5f:5c:0c:c7:a4:d1:
3b:40:ff:15:64:b9:75:0c:34:4d:2c:ba:02:b3:dc:a3:16:ad:
50:75:d6:6d:ab:a4:9b:5c:81:03:f7:c9:e4:88:82:15:5d:21:
41:6c:5e:4c:5b:a3:82:cb:e6:de:74:bc:74:a5:f3:e7:ab:f4:
b2:b7:25:67
-----BEGIN CERTIFICATE-----
MIIHJDCCBgygAwIBAgIUIX3YU8Fxze09t6dkUwBpAhC48SQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJBNDE3
RjcyOERCRjAeFw0yMTA5MjkyMzU1NDVaFw0yMjA5MzAwMDAwNDVaMIICLTGCAikw
ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwQTcyMTEwRkIxNDhCNjVGMzg4
OTIwMEExNDBEOTdFNzZFQzhDRURFM0Y5NjY2OEI2NTYwNTJCRkUwNzMwNDYzOTAy
OTU0MkZCNUUwMzI0RDk2NURFODM2RDg1RTgzRkI3NjRCRkM0Q0Y1QzkzQTE4OTQz
MENENEQ4RUZENzhDRjJFMEE5QzIyREZEQzU5MDBDMzVDRDUxMDIzNUNDNTczMTg0
NEQzREJCODU5NzFEMjU5OTBERTJEN0NERDIxNkJFNzkyMzgyMjk2QTE5MjQyN0M2
RDhBMjMxRjlFRkM3RThERDBGOUE0RTkyMUFBRTk4QUJFODA0QTBEMDg4QzU1NEIy
NjA0ODU2NzI4NkM3Rjc1RjYzQzZFQzE3MUI3MzExM0VEMDIwNjQ5QTdBMTI3Mjk0
Q0I3MkFCNTk3QTBCRTJFM0IxM0RGOURCOEZDMTM3ODA3NDU1N0QwQUY4MjVGNkU5
M0NEMEQ0NEQ5N0QwRjY2N0I5MUYyQzQxODJCNEI0QkI0MjU3NUJFNTQzQjVBQTQ5
NzY0MDI5NkZGQjVGRjI5QTVERkE4MDZFRkI3RTk1Rjc4ODBEMEEzN0QxMTNBRDc1
MzhEQzBGMzcyQ0Q1QkRFOTREMUNDMzYxNzEyRUEyRTYwNDVCRDQyNDY0M0JEOTk3
MUNGRjE3NzlBRkVCRTkwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
MIIBCgKCAQEApyEQ+xSLZfOIkgChQNl+duyM7eP5Zmi2VgUr/gcwRjkClUL7XgMk
2WXeg22F6D+3ZL/Ez1yToYlDDNTY79eM8uCpwi39xZAMNc1RAjXMVzGETT27hZcd
JZkN4tfN0ha+eSOCKWoZJCfG2KIx+e/H6N0Pmk6SGq6Yq+gEoNCIxVSyYEhWcobH
919jxuwXG3MRPtAgZJp6EnKUy3KrWXoL4uOxPfnbj8E3gHRVfQr4JfbpPNDUTZfQ
9me5HyxBgrS0u0JXW+VDtapJdkApb/tf8ppd+oBu+36V94gNCjfRE611ONwPNyzV
velNHMNhcS6i5gRb1CRkO9mXHP8Xea/r6QIDAQABo4ICMjCCAi4wHQYDVR0OBBYE
FNH0MPrbm3BWIge5ssQW/Ct43kssMB8GA1UdIwQYMBaAFKxVVEe6YsORB/Fr9XL4
KkF/co2/MA4GA1UdDwEB/wQEAwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzk5M2YzNTAtYjc1Ni00OTE2LThk
ODQtNDg0ZjAyNWRmZmNjLzAvQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJB
NDE3RjcyOERCRi5jcmwwdAYIKwYBBQUHAQEEaDBmMGQGCCsGAQUFBzAChlhyc3lu
YzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8yL0FDNTU1NDQ3
QkE2MkMzOTEwN0YxNkJGNTcyRjgyQTQxN0Y3MjhEQkYuY2VyMIGiBggrBgEFBQcB
CwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby8zOTkzZjM1MC1iNzU2LTQ5MTYtOGQ4NC00ODRmMDI1ZGZmY2MvMC8z
MTM4MzIyZTMyMzUzMzJlMzEzNjJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzcz
NDM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcB
Af8EEDAOMAwEAgABMAYDBAC2/RAwDQYJKoZIhvcNAQELBQADggEBABmqWwr7T9xR
mWNGVttq7rHWM+7k8wlBTeUPn2TVQutM0nYfdH0CKWoHOy5dPxG+Z3RfQCrmmkto
qWjWGKDKsk0DDXSJr4mFvUe7d1xFkGZDf5RCBIrxwpaXHmuTqQ5w1Dx4Z/FV9BuT
rjzUy7NjDQ/yDBTf2NufZayyONFLZmIonWbUnBAgD6J0+6Gzu2PDA1xTMisQyQ1z
m3Gc9P6lykuhxqsCQkurNj259t3YKTJmpkWZphHqQ1PzY50v39tofl9cDMek0TtA
/xVkuXUMNE0sugKz3KMWrVB11m2rpJtcgQP3yeSIghVdIUFsXkxbo4LL5t50vHSl
8+er9LK3JWc=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:45 2023 by rpki-client on console-fra.rpki-client.org