Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e31312e302f32342d3234203d3e203137343531.roa
File: 3138322e3235332e31312e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: NdT9fKhZesfwFjN+PFU0qcKPyfNcdnkGvzut/G5p8WM=
Subject key identifier: 17:AD:F7:AB:6A:03:4A:2A:EC:E6:E0:8F:87:46:8D:35:55:9B:F8:35
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 3723209BC772C4440C420AEAA7DE64389177DF6A
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e31312e302f32342d3234203d3e203137343531.roa
Signing time: Thu 30 Sep 2021 00:00:57 +0000
ROA not before: Wed 29 Sep 2021 23:55:57 +0000
ROA not after: Fri 30 Sep 2022 00:00:57 +0000
asID: 17451
IP address blocks: 182.253.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:23:20:9b:c7:72:c4:44:0c:42:0a:ea:a7:de:64:38:91:77:df:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 29 23:55:57 2021 GMT
Not After : Sep 30 00:00:57 2022 GMT
Subject: CN=3082010A0282010100C75E802595B22A24FA4BDE17837C555B34EB9FE7C6C296CD8CDCB93B0E2905315FB2327A0F8A402A3786D342F312A81780F93324AD6C54947A7F862FE2ADA0FF5442D9DD3708AD90EA82C9BC3993D7B721315D42757DF8904066317301E39AB9AF54605830CF240D5659E75050DC1C3AACE21C81057094E4D2A3054F1A71AD5C0116D3860B576CC6583263449774D7757237207A2CBF18E7FC107A11AD203572A40E5B51F0675A249BC38C63407AC7BD5997C1660273586FE04669C6F56DF9D5A488D3FB01754785A0A922B7AB21C4801728AB0C46E87447C17F26DCBB2DC80DA6BF7B0E804FE1BBCB8CC6EEB216B92A2EAD135F5EC6BCE4590DF6FBC684F5370203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5e:80:25:95:b2:2a:24:fa:4b:de:17:83:7c:
55:5b:34:eb:9f:e7:c6:c2:96:cd:8c:dc:b9:3b:0e:
29:05:31:5f:b2:32:7a:0f:8a:40:2a:37:86:d3:42:
f3:12:a8:17:80:f9:33:24:ad:6c:54:94:7a:7f:86:
2f:e2:ad:a0:ff:54:42:d9:dd:37:08:ad:90:ea:82:
c9:bc:39:93:d7:b7:21:31:5d:42:75:7d:f8:90:40:
66:31:73:01:e3:9a:b9:af:54:60:58:30:cf:24:0d:
56:59:e7:50:50:dc:1c:3a:ac:e2:1c:81:05:70:94:
e4:d2:a3:05:4f:1a:71:ad:5c:01:16:d3:86:0b:57:
6c:c6:58:32:63:44:97:74:d7:75:72:37:20:7a:2c:
bf:18:e7:fc:10:7a:11:ad:20:35:72:a4:0e:5b:51:
f0:67:5a:24:9b:c3:8c:63:40:7a:c7:bd:59:97:c1:
66:02:73:58:6f:e0:46:69:c6:f5:6d:f9:d5:a4:88:
d3:fb:01:75:47:85:a0:a9:22:b7:ab:21:c4:80:17:
28:ab:0c:46:e8:74:47:c1:7f:26:dc:bb:2d:c8:0d:
a6:bf:7b:0e:80:4f:e1:bb:cb:8c:c6:ee:b2:16:b9:
2a:2e:ad:13:5f:5e:c6:bc:e4:59:0d:f6:fb:c6:84:
f5:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:AD:F7:AB:6A:03:4A:2A:EC:E6:E0:8F:87:46:8D:35:55:9B:F8:35
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e31312e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.11.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:ca:e1:31:3b:d1:25:a9:0c:85:ef:5f:ad:ef:c8:b6:06:04:
13:c2:e1:67:7c:1b:e3:fa:43:7c:44:87:ba:41:96:3a:b5:0f:
fd:95:8d:f3:17:5a:1d:6c:3c:0a:08:54:03:37:be:94:db:da:
8b:8b:12:fc:97:17:e8:07:65:2c:2d:bf:82:5c:9b:4d:ed:3c:
f1:f4:44:33:88:02:9e:ff:cd:63:21:69:9c:67:de:75:2c:16:
de:2e:97:ef:c2:ca:4f:73:9c:24:14:de:6d:a2:26:b6:b9:24:
af:cc:a7:ae:7d:d1:61:75:06:68:94:45:71:7c:00:a4:51:a6:
6d:70:a9:34:8b:4f:1d:40:02:63:a6:dd:70:11:53:65:7a:31:
e3:54:68:0a:10:45:3b:a7:de:79:24:37:1c:ef:7d:54:a8:8e:
b4:43:00:e3:6d:0c:db:b1:6c:f0:1f:19:48:2f:c7:99:fb:31:
61:c8:63:cd:e1:3b:ab:62:11:dc:13:8c:63:15:4c:6a:10:d9:
a1:9d:28:5b:8c:1a:7e:dc:42:7d:47:43:be:ba:16:2c:73:df:
01:0c:61:bf:19:9e:e5:82:46:f0:da:1a:7b:99:72:d5:28:69:
2b:da:06:d2:bf:28:96:cf:48:35:94:65:f9:4c:4c:69:36:93:
a4:fd:c3:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org