Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e39362e302f32342d3234203d3e203137343531.roa
File: 3138322e3235332e39362e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: 9UASnTSibdVb6EG4yAK06lxOnyyMqxnT+q2bS820f1s=
Subject key identifier: 49:9E:07:33:ED:97:80:1F:03:69:D2:F3:EE:36:DA:7A:4E:EF:C9:F5
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 2B3A24011350BCE6FCC5654388ED830A53B21FB5
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e39362e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:01:09 +0000
ROA not before: Wed 29 Sep 2021 23:56:09 +0000
ROA not after: Fri 30 Sep 2022 00:01:09 +0000
asID: 17451
IP address blocks: 182.253.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:3a:24:01:13:50:bc:e6:fc:c5:65:43:88:ed:83:0a:53:b2:1f:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:56:09 2021 GMT
Not After : Sep 30 00:01:09 2022 GMT
Subject: CN=3082010A0282010100D1EAB5339F1D9E19827B9035F20C2589370C0DBC96BFCB49D8FA8B4EA4C4F454A9FEB6592C2814CD7B65E2BA9103A67320ECD134BAE71EF97DC96016C26323A9E3F35021A42B7B2CC85225028558A3925BF4821CAD308FB9A67D72811F19533A918A713E2AD411E4107FCFE38894F3A9320E859026B7F84EC6641D544887748E81C6C42F135D587AF6B3AF3D542F27BF1D05C9645013864FD5E160037D07F2DB64D9FA0373B6135B9F7EA116FC7C8662E42A0A24C74D894E19205ADC30D54481F6AD4851C1E01A4BD4F79253741CD95C5B7F24A097B5EC85C797887DF1C02C6FD6F51785443DA9467B025107F78FB6CF415AA0BF757697CFD54DE2F784D0E0B10203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ea:b5:33:9f:1d:9e:19:82:7b:90:35:f2:0c:
25:89:37:0c:0d:bc:96:bf:cb:49:d8:fa:8b:4e:a4:
c4:f4:54:a9:fe:b6:59:2c:28:14:cd:7b:65:e2:ba:
91:03:a6:73:20:ec:d1:34:ba:e7:1e:f9:7d:c9:60:
16:c2:63:23:a9:e3:f3:50:21:a4:2b:7b:2c:c8:52:
25:02:85:58:a3:92:5b:f4:82:1c:ad:30:8f:b9:a6:
7d:72:81:1f:19:53:3a:91:8a:71:3e:2a:d4:11:e4:
10:7f:cf:e3:88:94:f3:a9:32:0e:85:90:26:b7:f8:
4e:c6:64:1d:54:48:87:74:8e:81:c6:c4:2f:13:5d:
58:7a:f6:b3:af:3d:54:2f:27:bf:1d:05:c9:64:50:
13:86:4f:d5:e1:60:03:7d:07:f2:db:64:d9:fa:03:
73:b6:13:5b:9f:7e:a1:16:fc:7c:86:62:e4:2a:0a:
24:c7:4d:89:4e:19:20:5a:dc:30:d5:44:81:f6:ad:
48:51:c1:e0:1a:4b:d4:f7:92:53:74:1c:d9:5c:5b:
7f:24:a0:97:b5:ec:85:c7:97:88:7d:f1:c0:2c:6f:
d6:f5:17:85:44:3d:a9:46:7b:02:51:07:f7:8f:b6:
cf:41:5a:a0:bf:75:76:97:cf:d5:4d:e2:f7:84:d0:
e0:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:9E:07:33:ED:97:80:1F:03:69:D2:F3:EE:36:DA:7A:4E:EF:C9:F5
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e39362e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.96.0/24
Signature Algorithm: sha256WithRSAEncryption
21:e3:af:f0:f9:cc:72:76:ee:1e:63:44:7a:cb:45:6b:d0:54:
e5:c8:95:26:de:dd:17:c2:55:b9:19:de:55:de:33:ee:46:37:
2d:7b:35:c9:fe:0d:d4:e1:8a:15:2f:7f:c0:20:50:f0:5f:e6:
f1:3d:61:c7:e8:5e:88:43:64:88:67:3e:40:39:63:40:be:d5:
6a:ce:59:a7:91:73:1f:0c:63:d5:26:a2:7b:3e:52:2d:d9:62:
f7:3d:8a:29:5b:3b:a4:16:c1:15:bb:9b:87:45:1a:87:3d:ec:
65:05:39:f6:5f:f2:2c:f1:9f:fb:0f:d4:98:c3:13:b5:e5:0e:
11:b3:98:86:4f:4a:97:e4:4e:82:13:17:db:ef:62:f4:99:ab:
98:0e:4d:ee:83:9a:de:a4:b8:ce:7b:78:81:81:09:75:32:52:
e8:c7:03:20:9c:7b:0e:8a:db:44:f2:27:04:16:54:63:69:a4:
45:81:fd:da:1d:96:e2:68:ff:f4:67:6f:c2:17:48:db:3d:18:
31:bb:f7:a5:4c:75:05:9f:d2:85:46:cf:32:46:d0:5e:30:6a:
99:27:77:6b:67:d0:a6:19:20:97:7d:79:1e:c7:ad:55:1e:08:
6f:42:72:16:ae:d8:11:43:c9:8d:19:52:25:53:68:04:a5:96:
c7:0f:a7:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:45 2023 by rpki-client on console-fra.rpki-client.org