Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32332d3233203d3e20313339343338.roa
File: 3130332e3134352e31342e302f32332d3233203d3e20313339343338.roa (raw, json)
Hash identifier: YSPNdNrMPBRzmbiQkbmwII1FPDtoCDNk5dyA/ssKHpE=
Subject key identifier: 77:5F:1C:EC:AC:77:CD:6D:AE:FE:A8:3D:23:8D:7B:ED:EB:3B:C8:FE
Certificate issuer: /CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17
Certificate serial: 7202699B265CEAF1E2B4EB782493E0FFA02D7F0F
Authority key identifier: 25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32332d3233203d3e20313339343338.roa
Signing time: Fri 27 Oct 2023 11:29:08 +0000
ROA not before: Fri 27 Oct 2023 11:24:08 +0000
ROA not after: Fri 25 Oct 2024 11:29:08 +0000
asID: 139438
IP address blocks: 103.145.14.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 04 Jun 2024 13:21:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:02:69:9b:26:5c:ea:f1:e2:b4:eb:78:24:93:e0:ff:a0:2d:7f:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17
Validity
Not Before: Oct 27 11:24:08 2023 GMT
Not After : Oct 25 11:29:08 2024 GMT
Subject: CN=775F1CECAC77CD6DAEFEA83D238D7BEDEB3BC8FE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:52:2a:d7:f5:fa:13:ca:35:b9:b2:47:61:c8:
17:f2:21:3d:c0:be:8e:b3:19:98:07:fa:42:cc:5f:
1d:f3:c2:49:cb:4f:ec:d2:be:d0:65:4e:ae:92:4e:
41:14:32:6e:7c:1f:37:ca:6f:20:67:35:30:4b:ad:
f9:13:df:c3:7b:64:8f:6a:61:d5:53:06:64:73:7d:
d7:39:2f:b3:1f:02:fe:71:49:b6:65:e5:92:a0:41:
88:eb:16:24:a5:91:ba:aa:cb:11:c2:52:e2:90:e0:
88:91:ee:be:aa:f2:48:9e:44:94:b1:4c:91:27:49:
8b:cc:50:fb:71:47:21:ee:1a:c1:13:66:b3:14:49:
20:be:29:08:46:40:04:7b:71:3e:8c:84:35:bd:cf:
ab:5e:73:4a:ff:6d:27:38:b7:b5:e6:b7:c0:cc:7e:
c6:86:8d:b5:ad:3f:be:ee:fa:48:a7:d6:2a:5c:bb:
92:62:e6:99:0f:5c:16:65:4d:09:70:12:e7:a2:f9:
7a:10:2e:52:04:03:74:70:b3:44:b4:70:f8:ab:5d:
73:ad:ed:af:b1:e7:02:32:28:d3:4f:3f:f1:2b:1a:
17:15:dd:6d:59:b5:ba:84:90:84:93:ae:46:aa:0f:
ff:a6:43:c0:1b:01:4d:69:b3:17:88:4a:c3:ea:3e:
66:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:5F:1C:EC:AC:77:CD:6D:AE:FE:A8:3D:23:8D:7B:ED:EB:3B:C8:FE
X509v3 Authority Key Identifier:
keyid:25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/3130332e3134352e31342e302f32332d3233203d3e20313339343338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.145.14.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:bd:04:3b:8f:9e:0a:fa:49:7e:b3:a4:b2:a3:01:ec:6c:8b:
93:69:86:7f:4f:c0:81:14:3c:68:a1:85:c0:a1:68:f1:35:50:
08:5f:95:b6:f2:dc:65:30:24:03:e3:50:1e:a5:93:45:21:bd:
9b:d1:1d:b4:37:af:00:29:7c:52:33:1f:bb:8c:2f:bc:18:57:
ce:1c:23:24:1e:43:e9:ff:6b:2c:44:f4:0d:71:7a:a6:33:c8:
76:9d:c9:70:2a:cf:94:e7:4f:62:db:27:63:b7:89:66:6b:84:
1b:5d:73:41:b8:77:b0:9f:8a:f4:9e:2f:a3:11:36:b5:46:73:
c8:d1:d6:69:1f:09:22:c0:2c:cf:29:40:b0:41:86:57:ce:5e:
29:1c:fe:9b:17:bd:41:c8:b3:8d:5e:33:bd:79:c1:b2:80:ea:
b9:f3:0c:f2:d6:95:57:e8:f4:4a:a9:aa:73:63:61:da:21:ac:
b1:b4:2f:88:09:f0:06:81:83:0d:da:6d:cf:98:dd:b5:5f:90:
09:15:47:c7:75:82:2c:db:2e:82:81:26:d2:20:60:5a:00:eb:
06:7d:d8:f5:41:b5:36:be:a0:9a:ba:93:0a:f4:07:49:97:e1:
bb:35:b7:2d:1c:4e:48:0d:c8:ac:a8:22:b4:0f:51:f9:9c:73:
10:28:8b:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:01 2024 by rpki-client on console-fra.rpki-client.org