Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e3232312e302f32342d3234203d3e203338343832.roa
File: 3138322e3235332e3232312e302f32342d3234203d3e203338343832.roa (raw, json)
Hash identifier: MQe3Tnu7kEB7QOPnPx4qU4hu3lJt5y0vvk+OSIMuD8w=
Subject key identifier: 38:CF:79:B6:17:8E:B4:AB:1C:4D:BA:24:C8:44:7B:A1:90:4E:F0:5D
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 5B3368C9C3713C974EE4AF545B0313A13CB59372
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e3232312e302f32342d3234203d3e203338343832.roa
Signing time: Mon 27 Dec 2021 10:02:52 +0000
ROA not before: Mon 27 Dec 2021 09:57:52 +0000
ROA not after: Tue 27 Dec 2022 10:02:52 +0000
asID: 38482
IP address blocks: 182.253.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:33:68:c9:c3:71:3c:97:4e:e4:af:54:5b:03:13:a1:3c:b5:93:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Dec 27 09:57:52 2021 GMT
Not After : Dec 27 10:02:52 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0c:3c:4e:3d:54:82:ac:11:af:b0:de:a3:ae:
c7:8a:07:88:85:27:96:9c:a8:ee:15:ea:04:04:3c:
17:44:bb:ef:49:2b:84:39:ac:9a:b0:75:a8:cb:d3:
2b:8c:0c:65:1f:a2:1e:06:3c:d5:39:9b:36:96:bc:
a3:ce:25:fa:25:2b:16:f4:5b:48:c4:88:8a:e6:d4:
56:57:ed:18:e6:ac:62:87:b5:6a:27:1e:50:15:0a:
d0:d3:38:ca:b0:69:e5:02:d5:d9:cb:11:f3:61:4f:
59:44:1a:20:b2:08:c9:d5:2d:20:66:76:69:5e:83:
35:8d:1b:d7:a1:73:46:2e:c1:42:1f:1f:3f:94:6c:
e1:54:b8:0c:c6:d2:0f:ac:ae:45:34:43:23:5f:62:
90:24:30:eb:af:98:da:49:97:80:09:c7:67:2f:66:
84:58:54:00:90:12:b4:f1:fb:e4:b4:83:22:32:a4:
03:99:2a:1b:8d:d9:d9:03:5e:0f:b6:15:94:db:d5:
fd:63:5b:0b:12:7c:ad:b2:14:31:9f:aa:84:ec:21:
05:dd:55:e5:25:6d:72:c8:ce:1e:a0:58:2c:ca:05:
bc:fb:7d:0b:a8:3b:ed:ab:c5:72:1b:71:2d:88:24:
9c:08:e8:94:a9:cc:00:a7:25:61:79:3a:81:41:2d:
fb:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:CF:79:B6:17:8E:B4:AB:1C:4D:BA:24:C8:44:7B:A1:90:4E:F0:5D
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e3232312e302f32342d3234203d3e203338343832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.221.0/24
Signature Algorithm: sha256WithRSAEncryption
24:d8:2a:62:65:34:c4:53:2c:86:48:72:cd:96:43:b1:01:82:
d1:8e:97:d3:8f:08:33:0a:77:be:0b:7e:f3:33:74:ea:31:e2:
cf:6f:0f:e9:13:c8:63:a9:fe:87:ad:3f:6d:52:11:25:af:5f:
2f:2e:57:3d:76:c9:bb:57:99:7e:31:72:26:fa:0b:06:1f:f2:
9b:1e:ab:a5:b9:a2:0e:c3:6e:7e:e9:94:3e:34:7c:4c:9a:ca:
d9:53:56:0e:f0:4e:90:1a:7d:1a:4f:86:a6:09:5d:b3:a1:4a:
49:bd:a4:40:e7:d1:35:e4:3a:ce:f0:9c:b5:e7:0c:0f:5b:16:
4a:e1:27:12:48:a1:51:74:46:19:80:e7:77:61:90:6b:a4:18:
cd:89:52:89:97:b1:f3:cb:a9:67:f5:f0:26:56:f8:60:25:56:
54:4a:75:54:a4:87:9d:ca:48:5e:f8:c0:a7:6e:e2:0e:8c:56:
55:8d:0e:81:cd:c6:76:db:99:45:21:b4:1a:77:9e:49:4b:a9:
e2:a2:04:5e:a7:7b:af:1c:99:f5:97:26:92:d6:e4:d4:c4:bd:
94:66:7a:72:bf:57:18:82:c2:f4:ed:0c:33:f8:de:41:ce:10:
4f:a5:2c:bb:9c:81:a8:67:88:68:42:8a:00:3a:b6:63:f6:3b:
8e:64:ca:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org