Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e38312e302f32342d3234203d3e203137343531.roa
File: 3138322e3235332e38312e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: xZewjy1VKKFN1i11VsAaUhkTp+ij8R11/jRhZiZ+N64=
Subject key identifier: 11:B6:22:1C:23:80:91:8B:0E:27:14:E7:46:6E:ED:5B:DF:85:7A:BD
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 2A8188FD970F441475AC548853E5517FDD667674
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e38312e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:04 +0000
ROA not before: Wed 29 Sep 2021 23:55:04 +0000
ROA not after: Fri 30 Sep 2022 00:00:04 +0000
asID: 17451
IP address blocks: 182.253.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:81:88:fd:97:0f:44:14:75:ac:54:88:53:e5:51:7f:dd:66:76:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:04 2021 GMT
Not After : Sep 30 00:00:04 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:af:df:85:02:dc:da:6f:22:8c:34:93:11:22:
7f:66:92:10:94:5a:0f:b8:42:eb:22:13:f0:2e:e7:
70:8f:f9:79:c5:bc:6a:fe:d0:67:b2:98:10:4e:9b:
7c:56:51:cf:15:7e:d6:75:02:38:79:4d:89:a8:2d:
65:dd:8a:94:64:92:d5:d1:0d:40:f7:ff:70:ba:de:
28:0c:1c:3b:a1:f2:15:fc:a7:19:66:49:23:11:a2:
5f:f9:be:6d:f1:a9:20:e1:4b:30:ee:cb:9f:dc:eb:
94:71:43:65:27:80:bf:86:0c:20:13:89:2b:b2:9d:
85:36:d6:21:f0:cf:3e:59:e5:61:7b:2b:ff:68:c6:
fb:e0:1b:b2:21:f7:eb:e5:a6:f4:8f:05:e1:e9:a8:
83:85:d1:f6:29:14:b6:1e:b8:d8:ab:a2:7b:f5:2a:
66:da:9a:43:0a:2f:e1:83:1d:66:d4:f7:3d:ce:10:
cc:72:d7:37:18:c4:2c:56:01:02:0e:49:69:d8:1a:
ac:58:cb:f5:1d:01:84:12:70:8a:0b:28:8d:5b:a7:
1f:77:ea:19:07:b5:6c:e1:4f:de:e4:6d:69:35:72:
fd:4f:de:05:b4:a6:8f:2a:a1:8a:f9:8c:18:c8:a3:
92:76:d1:f1:e3:c4:62:7d:48:2e:aa:b0:02:00:9d:
0a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B6:22:1C:23:80:91:8B:0E:27:14:E7:46:6E:ED:5B:DF:85:7A:BD
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e38312e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.81.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:95:dc:39:6f:50:29:1a:36:43:e3:13:65:a5:e1:4e:87:ba:
79:54:c5:25:5f:c7:ee:92:29:35:ab:dd:8d:ea:a6:b0:92:90:
6a:7c:c7:fc:80:fe:95:89:d4:15:93:36:a3:33:68:dc:55:6c:
84:7c:5f:99:72:d1:36:2a:1c:fc:b4:4b:c1:90:97:c1:5f:01:
d3:94:fc:2a:59:77:ba:06:03:9a:14:a2:27:1b:4c:06:1f:e8:
55:00:d8:dd:28:11:0d:d6:c2:8d:8d:69:49:89:78:76:7b:d5:
94:79:50:47:4e:e7:62:19:d4:14:97:55:0c:59:d0:f8:fe:2d:
55:d1:e1:0a:d0:27:33:a3:b6:74:5a:30:07:9e:ca:e1:02:8a:
86:a3:af:48:12:ce:fc:24:89:b6:0c:2e:15:49:da:df:0b:70:
1c:8e:8a:4e:e4:db:9b:30:88:6f:0e:54:64:eb:47:57:ee:f0:
f0:6f:06:a1:71:7b:a5:3a:a5:dc:ce:9f:f5:98:a2:c4:b2:75:
36:b5:33:93:36:c4:5f:53:28:af:33:39:40:f3:9b:29:c9:fa:
4b:7e:06:09:65:0f:3e:b1:37:1c:b6:e6:14:f0:82:be:39:d0:
fb:3c:65:e9:86:f3:0a:01:e1:7d:9a:71:f1:a7:19:f9:bb:1a:
1c:0f:c2:60
-----BEGIN CERTIFICATE-----
MIIHJDCCBgygAwIBAgIUKoGI/ZcPRBR1rFSIU+VRf91mdnQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJBNDE3
RjcyOERCRjAeFw0yMTA5MjkyMzU1MDRaFw0yMjA5MzAwMDAwMDRaMIICLTGCAikw
ggIlBgNVBAMTggIcMzA4MjAxMEEwMjgyMDEwMTAwRDBBRkRGODUwMkRDREE2RjIy
OEMzNDkzMTEyMjdGNjY5MjEwOTQ1QTBGQjg0MkVCMjIxM0YwMkVFNzcwOEZGOTc5
QzVCQzZBRkVEMDY3QjI5ODEwNEU5QjdDNTY1MUNGMTU3RUQ2NzUwMjM4Nzk0RDg5
QTgyRDY1REQ4QTk0NjQ5MkQ1RDEwRDQwRjdGRjcwQkFERTI4MEMxQzNCQTFGMjE1
RkNBNzE5NjY0OTIzMTFBMjVGRjlCRTZERjFBOTIwRTE0QjMwRUVDQjlGRENFQjk0
NzE0MzY1Mjc4MEJGODYwQzIwMTM4OTJCQjI5RDg1MzZENjIxRjBDRjNFNTlFNTYx
N0IyQkZGNjhDNkZCRTAxQkIyMjFGN0VCRTVBNkY0OEYwNUUxRTlBODgzODVEMUY2
MjkxNEI2MUVCOEQ4QUJBMjdCRjUyQTY2REE5QTQzMEEyRkUxODMxRDY2RDRGNzNE
Q0UxMENDNzJENzM3MThDNDJDNTYwMTAyMEU0OTY5RDgxQUFDNThDQkY1MUQwMTg0
MTI3MDhBMEIyODhENUJBNzFGNzdFQTE5MDdCNTZDRTE0RkRFRTQ2RDY5MzU3MkZE
NEZERTA1QjRBNjhGMkFBMThBRjk4QzE4QzhBMzkyNzZEMUYxRTNDNDYyN0Q0ODJF
QUFCMDAyMDA5RDBBNEYwMjAzMDEwMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
MIIBCgKCAQEA0K/fhQLc2m8ijDSTESJ/ZpIQlFoPuELrIhPwLudwj/l5xbxq/tBn
spgQTpt8VlHPFX7WdQI4eU2JqC1l3YqUZJLV0Q1A9/9wut4oDBw7ofIV/KcZZkkj
EaJf+b5t8akg4Usw7suf3OuUcUNlJ4C/hgwgE4krsp2FNtYh8M8+WeVheyv/aMb7
4BuyIffr5ab0jwXh6aiDhdH2KRS2HrjYq6J79Spm2ppDCi/hgx1m1Pc9zhDMctc3
GMQsVgECDklp2BqsWMv1HQGEEnCKCyiNW6cfd+oZB7Vs4U/e5G1pNXL9T94FtKaP
KqGK+YwYyKOSdtHx48RifUguqrACAJ0KTwIDAQABo4ICMjCCAi4wHQYDVR0OBBYE
FBG2IhwjgJGLDicU50Zu7VvfhXq9MB8GA1UdIwQYMBaAFKxVVEe6YsORB/Fr9XL4
KkF/co2/MA4GA1UdDwEB/wQEAwIHgDCBhQYDVR0fBH4wfDB6oHigdoZ0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzk5M2YzNTAtYjc1Ni00OTE2LThk
ODQtNDg0ZjAyNWRmZmNjLzAvQUM1NTU0NDdCQTYyQzM5MTA3RjE2QkY1NzJGODJB
NDE3RjcyOERCRi5jcmwwdAYIKwYBBQUHAQEEaDBmMGQGCCsGAQUFBzAChlhyc3lu
YzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8yL0FDNTU1NDQ3
QkE2MkMzOTEwN0YxNkJGNTcyRjgyQTQxN0Y3MjhEQkYuY2VyMIGiBggrBgEFBQcB
CwSBlTCBkjCBjwYIKwYBBQUHMAuGgYJyc3luYzovL3JlcG8tcnBraS5pZG5pYy5u
ZXQvcmVwby8zOTkzZjM1MC1iNzU2LTQ5MTYtOGQ4NC00ODRmMDI1ZGZmY2MvMC8z
MTM4MzIyZTMyMzUzMzJlMzgzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzcz
NDM1MzEucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcB
Af8EEDAOMAwEAgABMAYDBAC2/VEwDQYJKoZIhvcNAQELBQADggEBAF6V3DlvUCka
NkPjE2Wl4U6HunlUxSVfx+6SKTWr3Y3qprCSkGp8x/yA/pWJ1BWTNqMzaNxVbIR8
X5ly0TYqHPy0S8GQl8FfAdOU/CpZd7oGA5oUoicbTAYf6FUA2N0oEQ3Wwo2NaUmJ
eHZ71ZR5UEdO52IZ1BSXVQxZ0Pj+LVXR4QrQJzOjtnRaMAeeyuECioajr0gSzvwk
ibYMLhVJ2t8LcByOik7k25swiG8OVGTrR1fu8PBvBqFxe6U6pdzOn/WYosSydTa1
M5M2xF9TKK8zOUDzmynJ+kt+BgllDz6xNxy25hTwgr450Ps8ZemG8woB4X2acfGn
Gfm7GhwPwmA=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org