Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e39312e302f32342d3234203d3e203137343531.roa
File: 3138322e3235332e39312e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: NIuotOghKrEGfIc08k9JlMT8j7WPFRVDjpghGNakE2U=
Subject key identifier: 50:3F:43:0D:60:F6:68:77:FC:7F:F8:BC:10:01:95:32:91:F4:5F:FA
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 6B60AA3530401F3403E13621ACAEE7B7E1D2D88C
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e39312e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:21 +0000
ROA not before: Wed 29 Sep 2021 23:55:21 +0000
ROA not after: Fri 30 Sep 2022 00:00:21 +0000
asID: 17451
IP address blocks: 182.253.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:60:aa:35:30:40:1f:34:03:e1:36:21:ac:ae:e7:b7:e1:d2:d8:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:21 2021 GMT
Not After : Sep 30 00:00:21 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0b:9d:7e:3f:e9:ec:2b:94:dd:ba:8b:a7:b1:
cd:72:db:56:5d:51:93:da:10:f5:83:b9:36:27:3e:
73:ab:6b:fb:40:aa:19:3d:3e:dd:86:66:ba:b8:23:
78:c9:d8:45:e5:5c:d1:dd:db:f6:ae:4a:68:da:24:
22:de:da:4b:06:22:29:4d:d2:5b:ef:7a:47:47:ec:
85:70:ac:ca:83:4f:a3:0c:3a:34:e1:7e:44:3a:58:
ec:ad:9e:c3:ba:9d:d4:78:a3:d8:98:8b:56:56:9f:
8f:af:00:85:b0:82:88:22:ea:f5:44:40:b3:93:40:
a5:f9:da:19:eb:5d:70:34:ed:7b:23:fd:87:10:d0:
e3:1c:4d:b7:1d:60:83:3f:37:87:ba:e8:e1:37:ed:
e7:87:61:d3:b9:c1:e8:57:16:48:c7:8a:47:e0:ad:
25:fd:4f:8f:7c:2b:bd:17:a6:55:81:9c:77:f3:04:
2e:1c:de:93:f8:56:ef:e8:eb:1b:fe:a7:b8:c9:2f:
fa:f3:12:f4:eb:6d:d4:c1:43:1f:62:16:da:27:fd:
1b:c1:79:90:bd:15:75:ce:9c:85:6e:59:33:95:28:
5b:f6:7e:ab:90:30:63:2e:be:d5:bf:74:8a:35:28:
06:ff:ef:06:e2:74:3b:c2:55:db:4f:ce:dd:bb:d2:
c1:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:3F:43:0D:60:F6:68:77:FC:7F:F8:BC:10:01:95:32:91:F4:5F:FA
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e39312e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.91.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:7a:d9:02:26:63:68:bd:bf:78:5f:3f:62:99:b7:dc:db:2d:
c0:1a:e5:bf:5b:fa:39:67:7d:6e:b8:d0:4b:a8:c5:8b:31:82:
14:c0:d5:d1:25:59:da:33:4f:7a:bd:37:f6:07:e0:27:0b:53:
15:3f:7f:36:68:5a:67:8d:28:85:0a:ad:ab:07:1b:f8:aa:f0:
62:84:a0:33:f2:a8:7b:bd:be:96:c1:e4:84:89:f8:6f:e9:b5:
e6:5b:6a:ef:77:ae:0c:f8:5f:d4:d0:3a:0a:b0:05:c7:b5:0a:
66:1a:bc:fa:af:2c:ce:1d:76:26:de:c1:9e:b2:c1:b0:41:f4:
1b:de:dc:5a:5d:48:59:16:7f:29:66:77:bb:c2:e5:5d:d0:4e:
d2:63:57:ae:88:5d:09:65:e1:de:28:e3:69:c2:25:4b:1f:f6:
41:28:5c:3b:55:ca:8c:65:22:9f:dd:fa:19:51:54:57:42:7c:
a2:56:5e:f9:b1:79:0b:86:90:4a:8f:fa:17:ce:1d:db:92:52:
d8:f4:fa:3b:3c:87:ca:5c:1a:b6:4e:2f:66:47:84:4d:58:91:
bc:13:37:0b:06:4e:74:3f:45:bd:0c:98:91:ad:bc:4c:fa:8c:
82:2d:35:f0:3a:f8:c5:be:49:92:14:d6:3d:36:ac:09:1a:1e:
ce:82:e7:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:45 2023 by rpki-client on console-fra.rpki-client.org