Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e312e302f32342d3234203d3e203137343531.roa
File: 3138322e3235332e312e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: 8j9Rg6QyTn03iuaWBpKmWM2yTaLZcY/EZRcNNo49lBA=
Subject key identifier: EA:47:2F:F2:B0:B0:39:54:C8:CB:69:53:E4:BD:C7:E1:30:A9:80:E6
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 589FE314C17852DCBE692CAC05FDF8E6B8BC6A9A
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e312e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:49 +0000
ROA not before: Wed 29 Sep 2021 23:55:49 +0000
ROA not after: Fri 30 Sep 2022 00:00:49 +0000
asID: 17451
IP address blocks: 182.253.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:9f:e3:14:c1:78:52:dc:be:69:2c:ac:05:fd:f8:e6:b8:bc:6a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:49 2021 GMT
Not After : Sep 30 00:00:49 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a4:d8:45:6d:4b:29:1b:e4:d1:00:28:08:83:
88:75:86:ac:2c:33:1e:91:05:f1:c5:ec:7c:6f:46:
06:b1:bd:32:60:69:cd:15:04:c5:52:d5:51:88:f9:
86:0e:5d:3e:c3:61:d7:e4:40:bb:b9:35:29:7d:0b:
66:3a:8d:96:5f:34:49:31:ab:4a:7f:28:75:3f:14:
34:86:aa:a4:90:a9:2f:23:88:38:b7:c2:4f:eb:5e:
57:f6:36:d3:e1:27:c4:ca:dc:a4:1c:0a:a1:a3:0f:
e5:4a:cc:c3:2a:7f:25:ce:f5:57:a8:c4:d6:0e:0e:
36:cd:e6:42:d5:00:a3:6a:f1:31:12:0f:95:e7:40:
32:b0:21:24:24:f1:cd:c5:f3:a7:91:45:2f:1f:c8:
13:98:59:95:2a:38:31:8d:42:5e:cd:9e:83:78:c3:
b3:c7:af:cc:a5:85:20:c4:8c:a4:9c:6c:0e:ce:a6:
33:f4:9b:c6:65:6d:b7:de:32:76:4e:62:df:6d:47:
cf:ea:fa:34:b6:c7:27:48:2e:56:a4:14:fe:ac:5a:
a0:0a:dd:45:00:df:36:41:ad:0d:e6:26:f0:ed:ba:
01:a0:b4:be:52:4d:5e:54:81:42:d2:d5:24:88:c5:
75:54:76:8e:8a:47:37:f2:4d:11:a2:f6:6a:36:67:
fa:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:47:2F:F2:B0:B0:39:54:C8:CB:69:53:E4:BD:C7:E1:30:A9:80:E6
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e312e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.1.0/24
Signature Algorithm: sha256WithRSAEncryption
68:a6:8d:5b:2e:72:8b:ca:04:f2:7e:93:b4:dd:af:46:d1:97:
96:f5:73:a7:9d:a2:35:58:82:b0:7b:7c:28:96:34:83:eb:92:
7d:bb:da:d3:4f:63:d8:0a:5c:6b:b7:b3:52:d2:01:56:66:66:
ea:f0:0d:4b:89:4a:39:01:bd:ec:d3:75:67:c9:dd:7e:00:71:
47:91:95:1e:06:8a:73:01:df:ab:3d:f0:68:fc:cc:0f:46:25:
f2:5e:7b:36:56:6e:ec:57:1d:cb:87:a6:23:4c:f9:e3:9c:6b:
5b:08:aa:a6:bd:85:c2:06:e2:4b:b6:d4:1f:aa:ec:69:a1:b3:
5a:fe:4a:65:94:71:f0:d2:58:4d:15:b6:a9:21:d1:22:20:1b:
f1:7d:9b:27:e7:5f:c6:c5:aa:00:d0:3b:17:90:88:09:4c:ed:
18:38:02:5b:a7:48:2d:41:17:26:a9:d7:78:9c:d8:5a:9a:23:
d7:25:5f:51:16:35:4e:fa:fb:60:e4:0a:8c:b5:9e:2b:ec:b1:
0c:0e:95:58:76:a8:d2:98:d8:18:7d:f0:b5:09:1f:9d:14:00:
a4:ad:5c:83:ff:a0:51:e9:c3:be:f2:24:75:ff:41:1a:cf:2c:
38:56:34:3c:5f:1b:d1:9a:53:09:04:c3:70:75:b0:7f:f9:f5:
82:d7:18:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org