Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e36302e302f32342d3234203d3e203137343531.roa
File: 3138322e3235332e36302e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: U+3xWsAFO9c2DUcb6Sss+PZlEA4VwYRS4v4ck5US7lQ=
Subject key identifier: 7B:46:01:C1:F6:0C:72:69:AC:4E:92:6D:C1:C1:49:4C:D8:CF:55:9A
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 1545215240FABA547CC97424F9CA866B0394B9A6
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e36302e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:01:15 +0000
ROA not before: Wed 29 Sep 2021 23:56:15 +0000
ROA not after: Fri 30 Sep 2022 00:01:15 +0000
asID: 17451
IP address blocks: 182.253.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:45:21:52:40:fa:ba:54:7c:c9:74:24:f9:ca:86:6b:03:94:b9:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:56:15 2021 GMT
Not After : Sep 30 00:01:15 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d7:8e:fb:35:f5:93:a8:f7:e9:60:87:67:a7:
b0:a7:b9:f1:4d:91:15:dc:eb:84:6e:52:dd:25:9a:
1d:57:0c:1e:cc:66:2c:26:d3:bd:9b:68:f5:32:47:
03:17:51:db:a7:38:91:73:30:ef:55:58:fa:61:7d:
79:99:c8:2f:ad:8b:a0:a6:d4:9a:4f:8c:80:77:95:
bb:a5:1c:ab:15:79:16:23:b5:d4:41:d4:06:1b:ce:
c2:bd:a8:a6:22:58:c9:2a:4a:71:0d:38:09:06:48:
2b:39:18:40:67:db:aa:f6:44:f6:c9:95:e4:e7:bb:
42:00:ca:7a:a6:ff:73:2f:bf:7a:02:2a:34:d3:69:
76:66:01:d4:84:bc:9b:d3:b6:d9:cd:91:06:f4:96:
d0:e4:e5:f6:33:58:2e:87:bb:ac:76:13:54:6e:d2:
4f:ad:50:68:90:e7:c7:9f:ef:a3:e8:c0:35:af:74:
c8:07:55:69:40:65:14:93:c1:15:86:e0:7f:95:93:
e5:50:b0:9a:6e:fa:ec:e5:63:98:62:9d:32:78:40:
dc:df:51:60:75:d8:5c:64:77:81:0b:05:3e:e1:2f:
42:49:af:b3:5a:3d:05:89:af:1a:61:53:0b:17:bb:
4f:8c:00:b1:36:ef:24:61:09:77:bf:3f:92:17:d8:
0d:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:46:01:C1:F6:0C:72:69:AC:4E:92:6D:C1:C1:49:4C:D8:CF:55:9A
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e36302e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.60.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:7f:00:db:8b:e4:de:7e:8b:f0:df:55:5d:1d:59:01:a6:04:
3a:8d:f7:8c:d3:29:2b:ad:50:ce:3f:15:92:ea:54:52:0a:3a:
bd:e6:03:eb:de:bb:69:07:43:ed:a4:ca:2e:e9:14:c8:2a:51:
b2:5c:e3:b3:05:78:94:a6:4e:d4:85:40:da:91:81:a9:e5:a9:
b8:08:04:70:ad:ba:8d:03:80:58:a9:45:1f:a4:dc:1e:9e:d2:
5e:95:51:71:fa:38:2f:11:6d:02:03:0f:eb:c4:5f:fd:1f:d1:
06:84:74:05:70:2f:b0:10:62:f7:5c:dc:06:08:f1:b6:4c:84:
c2:5a:16:91:0a:48:79:c7:7e:bc:b7:8e:a5:06:ee:c9:d6:20:
87:bf:e7:d9:ef:cc:1a:ba:9a:a9:1e:a4:37:8c:66:a7:95:81:
cb:ff:51:64:ee:3b:cd:f4:a7:33:ef:fa:f1:b2:c1:63:64:e1:
a9:c9:44:f2:25:32:eb:eb:df:2c:ba:87:0e:71:d2:a6:54:de:
68:7d:37:10:1d:dc:a4:ec:30:93:b4:44:b9:21:66:b7:c4:b2:
6a:ee:79:a1:5b:ad:65:a7:0f:a4:58:d5:f7:62:79:ee:98:b7:
e0:4c:bd:d8:24:f0:a1:d2:9f:70:2b:c4:87:64:32:98:c6:b3:
b6:21:c8:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:45 2023 by rpki-client on console-fra.rpki-client.org