Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e3231302e302f32342d3234203d3e203338343832.roa
File: 3138322e3235332e3231302e302f32342d3234203d3e203338343832.roa (raw, json)
Hash identifier: LvAmS1LySXiAJqzj6KeaQ13tMEsvt4JiMeek+OKM4mE=
Subject key identifier: 4D:3A:A8:46:02:AE:06:A6:19:E6:B0:00:C8:C3:20:22:F7:5E:EF:93
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 64B7283827D0E7385EC2CBD840355534D868DC82
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e3231302e302f32342d3234203d3e203338343832.roa
Signing time: Fri 04 Mar 2022 09:04:36 +0000
ROA not before: Fri 04 Mar 2022 08:59:36 +0000
ROA not after: Sat 04 Mar 2023 09:04:36 +0000
asID: 38482
IP address blocks: 182.253.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:b7:28:38:27:d0:e7:38:5e:c2:cb:d8:40:35:55:34:d8:68:dc:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Mar 4 08:59:36 2022 GMT
Not After : Mar 4 09:04:36 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:95:86:cd:e4:b2:10:a7:53:f4:db:1e:1f:b4:
37:61:45:92:12:1f:55:d5:ef:d1:41:a2:8c:52:58:
45:c5:32:0c:75:42:a4:19:8c:d2:4f:2d:e2:1c:bd:
ad:88:b7:9b:0e:2e:62:cc:bb:57:6d:df:21:4d:10:
5f:38:83:bf:9f:6a:49:f0:af:e9:e8:b2:90:77:43:
a1:e4:c9:4b:3d:70:cb:3e:a1:62:90:f4:9e:df:5e:
6a:85:a3:41:0f:2b:0f:61:b2:c5:53:73:18:33:a1:
95:f6:56:9e:bb:52:46:44:9d:e0:e4:8d:08:91:85:
cd:51:49:75:1f:51:fd:c5:2f:d0:7e:a1:ba:03:b4:
1c:a1:fe:8d:d7:18:a8:6f:f4:e0:11:ae:60:bf:ee:
d0:5c:64:c3:86:26:39:44:38:b5:96:83:d1:35:ad:
55:5d:f7:dc:d0:a0:5b:6f:e0:71:9b:b8:d2:b4:2e:
de:2a:28:ca:55:66:60:82:86:83:21:91:ec:2b:8b:
e6:7e:1b:4b:07:48:95:7c:1e:03:47:b6:c7:f1:bb:
10:fb:f7:79:79:6f:c2:e8:eb:66:5e:54:19:ad:7c:
21:79:27:60:6a:dc:54:22:38:34:35:59:b8:6b:ae:
2b:22:6d:88:27:20:18:a2:f3:ef:b5:2c:aa:4a:ec:
84:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:3A:A8:46:02:AE:06:A6:19:E6:B0:00:C8:C3:20:22:F7:5E:EF:93
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e3231302e302f32342d3234203d3e203338343832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.210.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:e4:b7:28:6e:55:1e:41:d6:e3:a8:18:f8:b6:ea:2d:b4:a7:
b8:e2:ee:ea:9b:18:41:e9:00:e0:de:b5:97:cf:ec:1a:ae:5c:
73:c6:99:8e:a0:1d:07:c2:74:97:fb:ed:16:05:a6:30:24:68:
24:73:95:3a:d9:e7:ba:fc:5d:d8:52:67:8c:a3:0d:c2:9f:10:
cc:0d:fd:b5:6d:c4:01:46:3b:e9:ce:2c:cb:78:ad:d6:57:10:
a6:a5:f7:a6:66:8f:08:bc:42:a4:98:a2:db:41:6f:92:fe:db:
d8:e3:0c:a4:45:b9:0e:ab:73:52:10:40:e1:58:7b:0e:87:47:
e5:9f:bd:bd:db:f4:46:4b:50:3c:0f:73:38:31:cb:ff:6e:18:
db:a2:82:fd:28:33:bd:08:3c:5b:f0:70:b7:3c:f4:b9:3d:57:
30:0f:43:c2:3a:56:25:5e:c7:7f:bc:35:3e:a6:b6:8f:e2:3c:
ee:c1:b6:a6:f7:8f:af:4e:19:59:e2:44:3a:ce:c9:ca:de:67:
f2:46:0e:c6:fb:53:f8:72:27:3c:ed:89:c8:0e:91:88:ce:af:
2d:ae:a7:3a:0a:10:a8:de:aa:be:39:b4:68:da:07:18:0b:01:
98:6b:cb:94:a6:02:37:d1:a2:6f:a7:c5:a3:c6:6d:9e:d7:49:
ee:d5:7f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org