Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e392e302f32342d3234203d3e203137343531.roa
File: 3138322e3235332e392e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: ihtpm7qON8MXN4J73Bztu41HicB5MN7wcD86bPX0E5I=
Subject key identifier: D0:4E:4B:AF:47:7D:89:13:4C:BD:A6:6B:4C:99:04:18:8B:A4:F6:6D
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 7AF9D3C193F6D34C64AB1E3D0E9592002EA64D29
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e392e302f32342d3234203d3e203137343531.roa
Signing time: Fri 17 Sep 2021 03:32:08 +0000
ROA not before: Fri 17 Sep 2021 03:27:08 +0000
ROA not after: Sat 17 Sep 2022 03:32:08 +0000
asID: 17451
IP address blocks: 182.253.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:f9:d3:c1:93:f6:d3:4c:64:ab:1e:3d:0e:95:92:00:2e:a6:4d:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 17 03:27:08 2021 GMT
Not After : Sep 17 03:32:08 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:83:8c:bc:43:45:d1:c1:05:5f:d7:e5:0d:67:
78:1f:08:3c:5a:56:d3:38:6a:e6:17:62:32:e0:d1:
74:d6:f2:8c:e4:fd:31:01:18:12:ed:61:3f:01:ae:
c4:02:d0:a8:16:d5:bd:b9:c6:35:b0:0f:2a:af:57:
9e:4d:c2:e5:4c:e1:35:74:94:c8:4e:4a:c0:34:5c:
18:33:7f:f5:30:c6:97:d0:e3:47:c6:23:3e:b0:80:
40:5b:62:a1:e0:2f:18:a3:84:fb:8a:d9:c7:09:50:
e0:b7:87:52:58:25:5a:0b:aa:b8:47:73:b7:14:51:
05:53:2d:d0:f9:38:81:02:4d:97:3d:b0:d8:d2:aa:
2e:eb:50:ec:58:38:45:d9:3d:8d:b1:3a:0b:74:6b:
f9:b3:d6:8c:7b:2a:c5:60:35:4d:63:31:a4:34:2f:
84:cf:60:4e:54:38:7c:60:4f:ae:4b:1e:fa:96:e4:
41:34:df:30:17:fc:29:f9:e9:6d:4e:10:29:27:13:
45:1c:51:70:fa:b6:6f:7b:11:54:b3:75:d0:e1:a3:
ba:5c:86:62:45:ee:e4:8c:20:93:2c:1a:16:50:bd:
0b:50:f7:79:e8:ac:42:2f:e3:52:01:ac:64:bb:6c:
97:51:14:36:3c:db:40:5b:6c:44:9b:8f:01:ae:66:
18:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:4E:4B:AF:47:7D:89:13:4C:BD:A6:6B:4C:99:04:18:8B:A4:F6:6D
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e392e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.9.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:5e:e4:a3:d6:23:e2:92:3d:84:48:14:54:d2:56:0d:35:b6:
8d:cc:82:fd:3a:c1:e3:db:f2:ce:d5:47:d0:00:0f:b4:6d:d5:
0a:3e:4f:b1:e6:eb:4a:69:11:31:5a:e4:a4:cd:8f:ce:37:21:
64:a4:22:1e:60:8b:6c:0a:77:f6:7e:e4:c5:c5:7d:75:7f:80:
c6:7a:9d:2f:aa:eb:6a:fa:cb:46:64:30:96:2d:c8:3f:3f:a6:
25:b5:ec:03:ae:1b:88:39:1e:19:5a:fe:bb:73:09:6a:55:60:
46:e7:14:34:a2:00:69:a7:b8:a5:e2:ee:81:82:8d:fe:18:f1:
3b:29:a9:96:31:76:ab:d8:5b:ed:ab:71:b2:fc:12:76:af:bd:
5c:2c:d0:03:53:c7:6d:1b:85:2a:55:ea:61:1f:d3:e9:9d:58:
38:55:29:e6:a3:bf:dc:c6:85:c6:20:3a:cb:9f:b1:49:46:bc:
86:b9:b8:9c:40:51:c2:52:a1:a0:8d:93:62:15:b8:f1:61:2d:
cb:a1:c1:8f:4c:e0:fe:ea:af:c7:03:23:ab:9b:3c:dc:f3:40:
a2:0b:37:b4:0c:92:da:1d:9a:6c:36:05:c7:c0:ac:33:b3:af:
47:f5:0b:bd:48:7b:4a:09:e3:54:20:7d:b3:03:f5:73:24:20:
1a:68:d4:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org