Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e34322e302f32342d3234203d3e203137343531.roa
File: 3138322e3235332e34322e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: GP7xcmdUzJUaCsODIwzZfJsEqG+RtEC5x3wQgkfe99o=
Subject key identifier: 9D:63:F8:FB:40:CB:2F:02:86:10:6C:A7:4F:58:7D:D3:AA:BC:00:DF
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 40AD952C4387F761007116E161D931B70FFC71E2
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e34322e302f32342d3234203d3e203137343531.roa
Signing time: Sat 12 Mar 2022 08:00:00 +0000
ROA not before: Sat 12 Mar 2022 07:55:00 +0000
ROA not after: Sat 11 Mar 2023 08:00:00 +0000
asID: 17451
IP address blocks: 182.253.42.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:ad:95:2c:43:87:f7:61:00:71:16:e1:61:d9:31:b7:0f:fc:71:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Mar 12 07:55:00 2022 GMT
Not After : Mar 11 08:00:00 2023 GMT
Subject: CN=9D63F8FB40CB2F0286106CA74F587DD3AABC00DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:51:0e:81:c4:35:1a:d6:46:48:81:45:1e:5c:
84:02:47:51:94:d5:26:30:a1:e1:35:9e:eb:51:ef:
d6:98:4a:e0:5e:56:00:e3:fe:d5:f7:11:d5:9f:7d:
78:e0:c7:27:62:4e:43:95:0d:c0:13:f6:24:3f:a3:
f7:a9:d0:18:69:83:04:96:3c:64:50:73:76:1e:66:
f3:d2:21:d7:05:22:9d:08:a2:2d:d7:db:c9:43:16:
4c:27:48:ba:97:e7:77:18:ce:ac:7c:73:57:31:6f:
16:53:9a:fb:86:9b:1d:06:76:21:d8:df:9f:d1:3c:
13:2b:e3:4e:8f:37:a0:be:80:58:11:63:74:c7:60:
87:e4:7b:4a:aa:d8:01:ab:d2:44:37:ef:cb:b6:89:
25:55:50:e2:66:55:74:19:79:92:98:29:f5:46:28:
94:be:25:09:bc:06:59:78:33:7c:29:3a:ba:8a:e3:
f9:b4:ad:cb:d0:e4:37:f4:82:ff:a1:cb:ce:a4:29:
94:b4:e9:9b:ad:16:af:4a:3d:2f:ff:ec:f5:00:78:
1a:05:4a:29:09:c8:0b:a4:1a:74:15:37:36:94:97:
f6:2e:14:da:bd:3b:31:ee:06:a6:65:56:dc:95:28:
ec:6a:bf:47:3c:aa:4a:f2:1e:82:3e:78:45:91:d8:
e2:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:63:F8:FB:40:CB:2F:02:86:10:6C:A7:4F:58:7D:D3:AA:BC:00:DF
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e34322e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.42.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:06:4c:f4:a4:89:7e:c5:ef:64:4d:4c:25:3a:fa:b3:02:cb:
f2:a9:d0:3a:bb:07:a8:1e:71:f1:91:a0:df:14:18:be:ff:f2:
78:73:66:04:39:dd:57:29:62:8e:c9:2a:d9:dd:4e:d0:c8:93:
1b:ab:6f:cb:43:79:01:38:60:7f:9c:62:2c:a0:74:b8:7c:de:
6b:b9:60:9d:38:6e:f9:ea:7a:35:42:0b:63:9d:8d:b4:ba:b8:
87:b5:f5:f0:f8:a7:0e:be:6e:a8:bc:7d:dd:1e:72:61:8f:10:
86:1c:bf:f5:1b:2b:81:7e:3b:b1:82:42:6b:5b:67:6a:c5:35:
ff:21:7a:1d:29:66:4b:b7:fe:6d:dd:8d:1e:80:d5:c6:1e:57:
7e:df:15:da:e4:72:5e:cd:ee:fb:5d:6b:82:70:50:29:89:cc:
88:fd:c3:6e:db:41:db:c8:5e:4e:89:22:c0:29:1d:ff:05:7d:
40:b8:d6:df:2b:e3:bb:eb:ba:d0:b4:a2:a7:59:54:c3:c5:91:
a4:5d:ce:bf:7f:e8:4d:a6:4c:90:b1:78:ac:77:8d:dd:b8:db:
41:55:e1:40:41:97:5e:83:2b:26:23:37:d6:bd:aa:fa:3f:f5:
92:c0:6c:1a:ea:3f:88:1b:c7:ee:76:4d:2e:4f:a2:1a:12:06:
c4:8b:df:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org