Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e32302e302f32342d3234203d3e203137343531.roa
File: 3138322e3235332e32302e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: wVHUQgbUJLmH9EJ/KF0JjA9UQIbEbf9YMZhZwxL8h14=
Subject key identifier: F6:DC:51:C3:9F:01:19:90:C7:E0:29:A3:76:50:97:9A:E3:FC:66:42
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 42841C11D892D2B33B4B2C72F3FFB3CEA9682DB7
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e32302e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:01:02 +0000
ROA not before: Wed 29 Sep 2021 23:56:02 +0000
ROA not after: Fri 30 Sep 2022 00:01:02 +0000
asID: 17451
IP address blocks: 182.253.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:84:1c:11:d8:92:d2:b3:3b:4b:2c:72:f3:ff:b3:ce:a9:68:2d:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:56:02 2021 GMT
Not After : Sep 30 00:01:02 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:05:56:58:e4:8c:4f:0c:d2:03:95:72:96:37:
af:cc:0e:68:b1:48:70:09:4f:69:46:cf:b2:a7:78:
70:be:a5:53:01:3c:20:df:e4:e4:ae:9d:27:b1:20:
2b:98:f3:90:4f:c6:46:f9:51:f4:db:1d:1e:49:b6:
69:cf:cf:9a:4f:08:60:6e:65:dc:4e:3b:bd:66:d4:
5e:d6:c1:a7:39:6c:2a:84:15:fc:87:b3:16:83:03:
fb:2d:79:28:62:ab:44:12:33:e7:d3:21:b9:d5:e4:
6b:ab:37:59:80:13:18:bf:ad:f7:6b:f2:04:94:7b:
55:d2:21:82:76:53:e8:6a:26:c0:fb:ca:59:2d:5a:
9b:d8:f7:d6:e5:b2:5c:89:13:bc:6c:3f:b8:3a:cb:
50:a9:c3:9c:99:b4:c4:2d:10:f5:ce:4c:46:fb:af:
ad:26:5d:62:5b:cb:26:0b:fe:aa:e8:14:4f:c0:e1:
a1:68:78:40:dd:1d:84:5c:7d:8f:46:d5:0b:29:49:
59:3d:59:26:d5:a6:b6:7d:a2:84:3d:d6:d2:4e:4a:
61:c6:33:d0:29:4e:df:32:12:42:c8:3d:85:2d:27:
82:35:69:79:2d:fc:a0:9d:97:a4:17:07:5b:3a:39:
aa:61:5e:23:6c:15:c5:af:78:67:14:70:0a:9e:d9:
36:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:DC:51:C3:9F:01:19:90:C7:E0:29:A3:76:50:97:9A:E3:FC:66:42
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e32302e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.20.0/24
Signature Algorithm: sha256WithRSAEncryption
65:ea:ba:49:5b:c6:5f:22:bc:5d:37:ff:60:c2:eb:84:b6:6a:
8f:63:29:cd:da:1b:ef:dd:75:3e:98:f5:b7:4f:f3:40:b9:3f:
8c:1b:bf:c5:98:93:89:6c:24:15:e5:3f:11:67:33:5d:09:34:
f5:50:90:4b:f8:56:1e:f8:11:57:bb:da:4c:8a:ec:d5:2a:8d:
fb:32:70:bd:e3:35:6c:9f:45:10:d4:ed:6d:95:a3:35:a2:3d:
dd:8f:2e:a8:3b:08:93:4f:58:d3:fa:8b:c9:17:a9:81:90:32:
59:5e:7d:3b:65:9f:79:50:dc:3b:23:1f:bc:62:15:87:9a:19:
e5:80:20:e4:86:19:f7:59:93:be:63:3d:62:d7:3f:de:99:08:
da:e6:75:8e:19:65:ae:9e:db:20:57:c5:a5:56:e8:4c:31:f6:
aa:55:a8:95:bc:00:43:be:38:4c:c2:3b:d2:f5:21:7f:a9:2f:
f8:90:2f:bd:df:a2:c4:37:7b:1b:16:b4:06:20:4e:45:86:c2:
aa:c9:e4:0e:41:d7:21:9e:0e:45:c4:49:69:47:2b:5a:d5:38:
6c:65:09:f8:1e:81:2c:91:bf:31:ab:9b:6f:fa:49:52:cb:ce:
4f:3d:e0:21:36:ab:c0:d3:c1:90:fb:36:e4:ec:7e:73:ff:9b:
09:d7:06:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org