Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131322e37382e3138362e302f32342d3234203d3e203338343832.roa
File: 3131322e37382e3138362e302f32342d3234203d3e203338343832.roa (raw, json)
Hash identifier: MPkLyH+kZJy/rJCrlhXDefe8fUXl1eO4b4nZWW1H5xw=
Subject key identifier: 8E:61:AD:CE:84:83:57:E6:88:66:CA:B7:42:B8:3F:27:9B:86:9E:10
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 2CA4F08F87B849B8E80B9878DCAFC3B08D0CC63C
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131322e37382e3138362e302f32342d3234203d3e203338343832.roa
Signing time: Thu 24 Feb 2022 10:20:02 +0000
ROA not before: Thu 24 Feb 2022 10:15:02 +0000
ROA not after: Fri 24 Feb 2023 10:20:02 +0000
asID: 38482
IP address blocks: 112.78.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:a4:f0:8f:87:b8:49:b8:e8:0b:98:78:dc:af:c3:b0:8d:0c:c6:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Feb 24 10:15:02 2022 GMT
Not After : Feb 24 10:20:02 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d6:84:92:fe:33:38:4e:a1:e8:72:83:ad:92:
be:a7:e0:f7:3f:11:82:aa:88:a1:62:81:fb:62:4b:
92:5a:69:5c:ff:06:10:a7:f0:87:5e:6e:c2:98:62:
9c:4f:08:d6:f6:d5:89:62:02:cb:33:a4:84:ce:b4:
c8:37:7b:1e:6f:ca:c6:17:36:fd:10:9c:cb:c3:2b:
c7:fc:82:4c:68:08:79:56:78:db:0f:db:d8:bd:14:
46:c2:9b:9c:7d:d8:e5:e0:b3:9b:bc:f9:ec:de:5e:
bb:04:22:d6:34:64:6a:12:3e:d3:80:f2:42:91:b1:
18:3a:81:11:af:55:b1:e0:f4:3a:a7:3d:bd:02:38:
a3:e4:9f:d8:51:49:3d:d5:db:ba:88:4a:56:db:b5:
f9:7b:b1:14:03:13:e7:05:06:40:b5:4a:37:85:e9:
94:e0:5f:3e:14:2b:ff:d6:3b:bc:e8:b2:b6:a0:20:
16:15:17:40:40:d9:df:38:55:8c:d2:43:89:e3:d1:
ef:9f:38:28:aa:19:f6:ba:4c:72:7d:db:3e:a9:c1:
94:f2:0c:81:a1:60:d5:99:e9:19:08:87:cc:24:92:
b6:22:d9:9d:74:db:83:df:8a:87:32:6a:82:45:7c:
e1:db:6b:80:27:0a:a4:be:bd:28:fd:c9:9e:d5:ef:
58:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:61:AD:CE:84:83:57:E6:88:66:CA:B7:42:B8:3F:27:9B:86:9E:10
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3131322e37382e3138362e302f32342d3234203d3e203338343832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.78.186.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:34:28:f8:98:00:d3:0e:f6:ac:ab:2a:50:51:4d:a3:15:8c:
13:10:08:0c:f7:ed:d1:44:6f:ee:a4:38:d9:a6:13:94:44:e5:
b2:c0:b9:29:aa:e0:87:5c:ce:86:a9:15:e2:bb:86:4d:53:de:
74:22:45:5c:87:de:fd:94:ad:12:b5:3b:5a:d7:9c:75:11:dc:
8e:5f:59:37:87:d5:6b:50:ef:8a:91:bd:50:ed:69:d0:67:9f:
36:1c:ee:cb:e8:85:d7:a2:3d:1c:04:60:c5:ba:47:b6:f3:e6:
23:0e:61:c8:dd:48:00:9a:99:c7:d2:d9:d1:46:14:23:54:3a:
24:82:e1:09:33:08:72:88:e9:a1:45:16:ad:a9:cc:76:e9:4b:
b8:02:7c:6d:60:d8:b5:53:9b:d5:ef:ed:b3:4f:20:30:8d:50:
53:0a:c1:58:ea:dc:4e:84:9d:20:47:23:bb:d9:7f:50:3d:34:
bc:55:74:35:04:f1:fd:52:db:4e:3f:00:fa:48:a9:ce:05:8b:
06:cc:8d:f9:de:26:8e:d9:3e:d1:40:73:c4:45:da:9f:92:ba:
82:2b:10:15:1c:6a:83:3a:7f:eb:22:4d:28:8f:17:c5:ce:63:
c4:ca:1b:d0:58:58:6f:84:24:05:1e:df:a3:3c:30:e8:cf:e0:
66:43:20:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:59 2023 by rpki-client on console-ams.rpki-client.org