Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e31312e302f32342d3234203d3e203338343832.roa
File: 3138322e3235332e31312e302f32342d3234203d3e203338343832.roa (raw, json)
Hash identifier: Mvaq2oLc0M/K4rI2BbDesVJxTnQDVmdjzaAmEBBkcYY=
Subject key identifier: E9:4F:4D:38:C8:14:E4:D9:88:DA:67:C9:A2:EC:A6:C8:DA:A0:65:D1
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 3310896374ACA6743253952512FFF28C9CEDB539
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e31312e302f32342d3234203d3e203338343832.roa
Signing time: Mon 24 Jan 2022 10:18:32 +0000
ROA not before: Mon 24 Jan 2022 10:13:32 +0000
ROA not after: Tue 24 Jan 2023 10:18:32 +0000
asID: 38482
IP address blocks: 182.253.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:10:89:63:74:ac:a6:74:32:53:95:25:12:ff:f2:8c:9c:ed:b5:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Jan 24 10:13:32 2022 GMT
Not After : Jan 24 10:18:32 2023 GMT
Subject: CN=3082010A0282010100C58F95B9DE7ECC422D2E09BC6A42DC2BF4951A848F5ECF460572395EFE6A5B26666336DAFFAFA0BE3F3B523C9ED1DD5F64FACA4EA869669173B373DA2B258D71E818AE198AB4F598461DD5DAAEB4C64BBE81778FC3B5D487B39D4B584EDE5B756C096135A36E42494224546D51D12BF895F03989030EA513B90E999D7621DFD37C4E9705DF6872996899E7DAB5BF3F2A571E92CD77EAFF9586FCBD48488E60B00E53293A231DF554CBDF0486C1EBD1A8D5BED43DAD2F94A469BACF06F60ACC1324AE53DF6AF872DA7C1B948523D2862406C5548D408C63111879872200A93918582522D5119E115C8CBD8781C0ECAD60C52126CE73E2142A2CD3E48FD64641730203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8f:95:b9:de:7e:cc:42:2d:2e:09:bc:6a:42:
dc:2b:f4:95:1a:84:8f:5e:cf:46:05:72:39:5e:fe:
6a:5b:26:66:63:36:da:ff:af:a0:be:3f:3b:52:3c:
9e:d1:dd:5f:64:fa:ca:4e:a8:69:66:91:73:b3:73:
da:2b:25:8d:71:e8:18:ae:19:8a:b4:f5:98:46:1d:
d5:da:ae:b4:c6:4b:be:81:77:8f:c3:b5:d4:87:b3:
9d:4b:58:4e:de:5b:75:6c:09:61:35:a3:6e:42:49:
42:24:54:6d:51:d1:2b:f8:95:f0:39:89:03:0e:a5:
13:b9:0e:99:9d:76:21:df:d3:7c:4e:97:05:df:68:
72:99:68:99:e7:da:b5:bf:3f:2a:57:1e:92:cd:77:
ea:ff:95:86:fc:bd:48:48:8e:60:b0:0e:53:29:3a:
23:1d:f5:54:cb:df:04:86:c1:eb:d1:a8:d5:be:d4:
3d:ad:2f:94:a4:69:ba:cf:06:f6:0a:cc:13:24:ae:
53:df:6a:f8:72:da:7c:1b:94:85:23:d2:86:24:06:
c5:54:8d:40:8c:63:11:18:79:87:22:00:a9:39:18:
58:25:22:d5:11:9e:11:5c:8c:bd:87:81:c0:ec:ad:
60:c5:21:26:ce:73:e2:14:2a:2c:d3:e4:8f:d6:46:
41:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:4F:4D:38:C8:14:E4:D9:88:DA:67:C9:A2:EC:A6:C8:DA:A0:65:D1
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e31312e302f32342d3234203d3e203338343832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.11.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:90:b1:2a:5f:84:d2:a2:75:b4:66:97:ec:b8:a2:bf:a7:55:
8e:7f:87:43:2b:93:80:68:1d:19:8b:db:38:a6:4a:49:c3:c2:
b2:51:5d:f2:62:51:e3:f2:82:24:fe:d7:11:14:31:40:e1:cd:
fc:db:65:90:37:f0:20:5d:bc:04:45:b7:9d:21:25:ed:2e:49:
5f:00:2d:7c:bf:1d:ce:03:b2:91:a6:1f:69:da:a0:d4:c7:fc:
a3:ac:00:06:16:8c:8e:8a:6c:6c:23:03:dc:ed:5d:d7:16:4d:
1c:03:19:96:1d:0a:f5:12:a5:0f:74:8d:bf:90:d6:13:ee:66:
9b:3f:05:d3:02:4d:73:66:11:93:80:42:1b:7f:81:0a:8c:98:
63:d3:eb:32:29:9e:9c:af:20:81:1f:4d:5b:9c:7b:fe:e9:ef:
2e:27:e8:0e:c0:99:e5:9f:38:d3:e3:f5:4f:9e:f1:bf:0a:0d:
4e:40:a7:b0:92:9e:da:25:07:4f:50:b1:8d:4c:ac:13:8d:c4:
41:19:e8:08:73:13:03:7c:87:74:ec:d0:d9:ae:9d:69:b2:65:
67:4c:63:3c:94:00:55:d4:61:3e:3e:f4:8b:9e:82:ef:93:6d:
03:f2:4d:37:5c:5c:09:52:8e:85:24:f5:9d:dc:1f:42:6e:7f:
e8:3f:d8:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org