Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e302e302f32342d3234203d3e203137343531.roa
File: 3138322e3235332e302e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: kOyMBC0MLZ6A8tWEzamUYRVK3cjvElPRRxYr8cBUmsI=
Subject key identifier: A2:FD:AC:99:00:89:F1:DB:29:7F:D3:D5:A0:FE:59:9A:12:17:C2:F4
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 7188839C3DB60D1A83EC309C7A4A176277FB0670
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e302e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:08 +0000
ROA not before: Wed 29 Sep 2021 23:55:08 +0000
ROA not after: Fri 30 Sep 2022 00:00:08 +0000
asID: 17451
IP address blocks: 182.253.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:88:83:9c:3d:b6:0d:1a:83:ec:30:9c:7a:4a:17:62:77:fb:06:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:08 2021 GMT
Not After : Sep 30 00:00:08 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c2:c4:9b:02:43:90:0b:d5:65:66:bc:a6:14:
db:a3:2e:4f:a5:e8:f4:be:9f:bf:5b:4d:e1:d0:9f:
24:2f:47:b2:df:29:f3:17:ea:a0:ec:78:1f:d1:d8:
3b:ff:f6:6d:0d:b6:0a:84:c1:a2:00:91:a8:1c:5d:
6d:ce:28:07:42:a8:4a:bd:90:a3:da:89:27:24:8b:
25:a3:97:c4:a8:ea:12:9a:3e:d5:cc:53:d1:d4:81:
0f:57:37:dc:9e:c7:c4:c1:64:df:3f:c8:28:6d:09:
33:7c:ef:ea:5c:b1:52:78:f6:99:00:94:4c:14:fd:
1f:c4:0e:23:08:76:f9:ad:54:b0:52:6c:53:1e:0e:
7f:78:a8:f2:5c:2d:5d:40:31:6b:3c:4a:11:15:38:
70:3f:0e:b8:b0:bd:29:70:3a:b2:a5:14:64:d5:67:
78:51:d5:60:f4:1e:06:1e:03:06:47:c9:db:0b:70:
24:d0:68:bf:41:ee:fa:84:84:e7:9e:ee:7b:f6:17:
93:fe:bd:f8:6f:32:b9:a1:98:39:e3:f6:6c:d4:93:
73:c9:10:99:cb:cd:fb:32:48:fc:65:68:56:f5:0a:
74:43:b2:28:dc:b9:43:86:37:96:1b:69:6c:64:18:
64:32:ce:ce:67:e3:f5:d8:d3:dc:07:86:56:ac:29:
12:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:FD:AC:99:00:89:F1:DB:29:7F:D3:D5:A0:FE:59:9A:12:17:C2:F4
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e302e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.0.0/24
Signature Algorithm: sha256WithRSAEncryption
94:82:96:64:fa:de:8a:85:8a:56:da:73:92:3b:b2:3a:c5:d7:
0d:cc:1f:bf:aa:1c:cf:74:ec:ac:fd:9d:b3:55:04:37:46:d9:
a7:38:3c:18:6a:57:a4:76:80:b1:60:40:68:91:8c:21:87:c8:
44:6a:70:cd:57:e4:c8:47:cf:4c:92:1c:2e:36:ca:7e:26:78:
20:4c:a9:f9:3a:3e:56:bb:61:89:46:68:5d:db:7c:ae:2d:af:
7a:ac:0f:c6:5d:00:a5:15:cc:a8:1c:6e:9b:10:72:76:3b:1f:
3c:f0:f6:66:bf:bc:ab:04:80:d7:ef:a3:c8:f7:bb:04:23:c4:
84:44:d2:12:2c:6d:9f:dc:ee:8e:d7:98:49:57:f5:c7:c1:7f:
fe:e2:7d:92:9d:98:f0:1f:86:0c:91:3a:01:08:d0:71:85:6a:
4d:bc:e0:b5:c2:86:97:e3:4c:40:55:e7:c4:8e:1d:2d:df:af:
b0:04:8e:3f:ef:d0:d8:2c:84:b5:12:37:b0:7f:c9:20:5f:28:
dd:00:1d:e3:ee:f8:1f:11:ce:a6:fc:61:6f:16:83:32:74:b1:
41:6e:00:e5:88:0d:9c:66:a0:82:32:bd:18:fc:df:44:c9:77:
c2:d0:fa:7d:10:ef:35:de:bb:f0:1c:78:63:6b:f8:11:02:d1:
c0:2a:38:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org