Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e33382e302f32342d3234203d3e203137343531.roa
File: 3138322e3235332e33382e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: viRmehHP1tNDnqNnpy1D6OkltV22dXhFdaKpJwhal1I=
Subject key identifier: 66:1F:53:69:97:31:24:F3:B8:FE:5C:FE:3E:0A:17:2D:E6:24:E3:E2
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 52282AB946A33DD8ED6301AC3465A28404B8A247
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e33382e302f32342d3234203d3e203137343531.roa
Signing time: Sat 12 Mar 2022 17:00:00 +0000
ROA not before: Sat 12 Mar 2022 16:55:00 +0000
ROA not after: Sat 11 Mar 2023 17:00:00 +0000
asID: 17451
IP address blocks: 182.253.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:28:2a:b9:46:a3:3d:d8:ed:63:01:ac:34:65:a2:84:04:b8:a2:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Mar 12 16:55:00 2022 GMT
Not After : Mar 11 17:00:00 2023 GMT
Subject: CN=661F5369973124F3B8FE5CFE3E0A172DE624E3E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1f:f7:03:f1:2a:35:58:c8:6c:b6:f9:86:e0:
02:8f:90:b0:5b:71:d2:ce:19:dc:96:c5:a3:c6:64:
2f:db:c3:cd:75:6a:5e:62:83:36:4e:22:eb:e4:ea:
a5:02:65:12:a4:ac:86:83:56:ad:89:8a:71:07:91:
5e:f5:07:ea:13:84:73:42:ad:e2:87:c5:bb:9a:d1:
7a:cf:48:04:b1:40:0c:44:5d:4b:06:23:1b:e7:a3:
c8:23:ac:2f:12:16:b3:a7:bf:2b:89:59:2f:c8:22:
42:59:60:38:aa:ab:25:bd:a5:98:97:e7:aa:3d:7b:
2a:3c:17:0a:c0:68:bf:45:fd:dc:bd:c6:01:76:f3:
7a:fa:06:57:6a:bc:03:e5:94:e2:17:94:43:af:b6:
df:26:d1:aa:7e:75:0e:4b:8d:09:3a:41:70:6b:4f:
72:87:19:96:e3:f6:b0:d1:b4:18:6e:e8:78:bc:a6:
fb:c8:50:4b:31:48:d4:d9:37:4a:72:0f:77:19:b3:
c9:0e:41:20:3e:87:e6:96:8b:52:c1:2f:40:c1:69:
f8:d6:28:b7:dd:99:42:41:9b:fd:67:bc:09:45:5e:
ab:62:c5:61:90:fa:4a:12:6d:a4:56:5e:05:54:e5:
94:e7:be:b6:5b:fc:a8:0c:26:b6:35:73:33:a4:7c:
c4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:1F:53:69:97:31:24:F3:B8:FE:5C:FE:3E:0A:17:2D:E6:24:E3:E2
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e33382e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.38.0/24
Signature Algorithm: sha256WithRSAEncryption
46:96:96:56:bd:13:19:a5:e2:60:24:c6:24:38:c8:6e:64:cb:
5e:d6:a6:5e:e0:d3:ca:c3:63:ca:0c:f1:38:57:65:05:84:86:
e0:b6:c1:ba:ac:fb:ce:26:4e:a5:74:58:31:e7:1d:75:6b:0a:
8f:59:9c:92:9b:a9:ec:7a:a2:38:86:b7:dc:51:51:1b:61:d2:
81:5f:48:72:14:15:cb:23:90:75:80:f5:0b:0a:5c:2c:02:a6:
4c:33:5f:b6:7e:ee:ee:76:3f:04:36:7d:ea:52:fc:dc:cf:51:
e0:b1:74:ee:71:65:14:96:29:c9:9b:b0:b0:7c:05:89:09:cf:
00:14:46:0e:19:f3:fb:72:ef:15:a3:14:e5:cf:18:7c:45:06:
bc:82:98:a4:85:6f:e6:fd:88:57:1b:54:01:09:a9:0b:71:7f:
9b:aa:aa:4a:18:7e:b7:37:49:ce:ca:cb:82:2e:4b:7d:6f:54:
29:21:37:88:25:d7:91:aa:21:8c:1c:d7:55:15:c5:88:eb:ae:
33:33:c1:d8:df:20:c1:8b:ce:21:3d:e0:a7:50:41:49:bc:4d:
66:a2:62:6c:81:88:70:43:36:3f:9c:a7:16:88:b5:1f:34:90:
af:f5:85:cb:f1:b8:de:9a:70:89:e7:9b:46:f6:a0:13:03:31:
87:50:4e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org