Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e34332e302f32342d3234203d3e203137343531.roa
File: 3138322e3235332e34332e302f32342d3234203d3e203137343531.roa (raw, json)
Hash identifier: Q/WTOcGjMc3jEfZ70hMoXeJxtcT1wBwiYzMi34s82cU=
Subject key identifier: 3B:1A:71:85:08:EE:AD:8C:DA:4C:E4:84:67:10:19:C3:17:F5:FC:A5
Certificate issuer: /CN=AC555447BA62C39107F16BF572F82A417F728DBF
Certificate serial: 4A00C636A027008B7FF6218FD9820D68F68073B2
Authority key identifier: AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e34332e302f32342d3234203d3e203137343531.roa
Signing time: Tue 07 Sep 2021 16:42:50 +0000
ROA not before: Tue 07 Sep 2021 16:37:50 +0000
ROA not after: Wed 07 Sep 2022 16:42:50 +0000
asID: 17451
IP address blocks: 182.253.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:00:c6:36:a0:27:00:8b:7f:f6:21:8f:d9:82:0d:68:f6:80:73:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC555447BA62C39107F16BF572F82A417F728DBF
Validity
Not Before: Sep 7 16:37:50 2021 GMT
Not After : Sep 7 16:42:50 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:39:c4:28:05:2d:41:d5:a3:fb:df:61:96:5e:
c6:50:56:89:18:c4:ae:50:69:2b:a7:b5:2b:f4:c4:
17:6f:5d:f6:19:ad:c6:3b:9f:03:9f:db:2f:ef:03:
1b:16:5f:14:0a:d1:e9:f5:24:b1:d9:19:9b:0f:24:
be:0b:f2:6c:52:f2:2c:70:de:c8:3c:79:15:51:cf:
cf:a1:42:f9:b2:f4:1d:7b:be:5e:11:29:ed:c5:72:
b4:90:df:44:40:26:ff:a3:b1:73:33:3b:ab:e5:3a:
b2:e6:4f:29:1f:4f:bc:2b:d7:4f:5e:31:b9:8c:47:
ae:0f:a9:90:d7:37:67:7a:77:d7:52:88:b9:78:63:
b7:ae:4d:bd:b2:90:bf:a1:42:d1:3d:10:7b:a6:b6:
b4:66:55:b7:98:3e:d7:a3:86:15:ea:59:26:9d:7d:
3a:29:bc:64:62:d8:97:fb:c8:57:73:1e:b3:a5:77:
be:be:46:fb:61:b3:60:6f:79:b2:bd:73:65:cc:15:
7d:27:ce:ff:13:70:2d:2e:b3:97:86:46:03:5c:74:
25:1b:ca:da:62:3b:aa:54:e6:2d:03:21:43:23:e5:
d8:5b:04:c1:7d:af:9f:5d:08:22:29:3c:19:32:c5:
65:e6:eb:0d:95:8a:64:9c:35:06:14:a2:12:f7:82:
bd:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:1A:71:85:08:EE:AD:8C:DA:4C:E4:84:67:10:19:C3:17:F5:FC:A5
X509v3 Authority Key Identifier:
keyid:AC:55:54:47:BA:62:C3:91:07:F1:6B:F5:72:F8:2A:41:7F:72:8D:BF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/AC555447BA62C39107F16BF572F82A417F728DBF.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AC555447BA62C39107F16BF572F82A417F728DBF.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3993f350-b756-4916-8d84-484f025dffcc/0/3138322e3235332e34332e302f32342d3234203d3e203137343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.253.43.0/24
Signature Algorithm: sha256WithRSAEncryption
62:1b:6f:a5:08:0f:6a:8e:b8:0a:60:a3:9a:01:4d:37:d1:b7:
ec:0b:51:0e:49:17:1c:9d:7c:ad:a1:8a:ff:61:86:4a:6e:70:
bd:fa:d0:d4:c8:3f:1f:96:ef:de:e2:4e:de:76:cf:d7:7d:f3:
f2:a1:4b:4b:cb:28:83:ea:51:bd:aa:71:df:40:82:46:6e:74:
a9:63:a0:b0:ff:61:90:66:92:22:d1:f5:29:b2:a8:f7:21:f6:
af:b7:2c:e4:4d:09:c0:3d:b4:65:79:4f:e2:ac:e4:cd:b2:5f:
b3:66:b6:43:e1:4c:25:f4:24:83:96:c1:0f:46:e7:07:d6:e0:
b8:64:71:07:62:e7:63:04:df:b9:07:d1:41:37:ee:4b:72:a0:
f0:1d:52:b1:db:ab:00:d9:b9:f2:17:a7:fc:a5:d7:f2:5f:86:
79:5a:75:3a:15:25:ad:83:2a:7e:43:c3:74:0d:fa:2e:ab:01:
38:8e:0b:52:e4:67:ca:70:98:79:05:08:0a:0c:d3:32:a5:86:
68:ce:ce:28:04:e7:aa:c2:54:45:b9:25:fc:b9:e9:96:6d:1e:
2e:ae:b6:e6:50:19:fa:7b:d4:43:40:a8:b6:f8:1f:1d:5b:ae:
8e:9f:da:5b:9d:36:f0:0c:e3:cd:2b:af:f0:a0:9f:a7:93:cb:
fb:bd:20:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:00 2023 by rpki-client on console-ams.rpki-client.org