Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233302e302f32342d3234203d3e203536323436.roa
File: 34332e3234302e3233302e302f32342d3234203d3e203536323436.roa (raw, json)
Hash identifier: 9ijcUvBHMep6gunuqTEcIJawaT/iL42olNVHZJvH2EQ=
Subject key identifier: 7A:93:03:2E:89:EF:54:B1:4D:0D:E4:9B:7D:B8:A0:CD:F2:74:D6:58
Certificate issuer: /CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Certificate serial: 3B9BFC32594E541536869DA6E09629B217D1DAC8
Authority key identifier: AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233302e302f32342d3234203d3e203536323436.roa
Signing time: Mon 31 Jul 2023 00:03:58 +0000
ROA not before: Sun 30 Jul 2023 23:58:58 +0000
ROA not after: Mon 29 Jul 2024 00:03:58 +0000
asID: 56246
IP address blocks: 43.240.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 Jan 2024 03:35:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:9b:fc:32:59:4e:54:15:36:86:9d:a6:e0:96:29:b2:17:d1:da:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6
Validity
Not Before: Jul 30 23:58:58 2023 GMT
Not After : Jul 29 00:03:58 2024 GMT
Subject: CN=7A93032E89EF54B14D0DE49B7DB8A0CDF274D658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:55:03:dc:c0:f3:da:d2:ce:a2:96:61:d7:63:
24:a7:00:e1:25:20:a0:63:56:b5:66:61:ab:d2:20:
95:3e:21:25:d3:f9:4b:0b:b7:f8:2d:02:4a:d2:a7:
ae:fd:6d:00:40:a5:ea:0f:5e:f2:0b:d5:4b:0d:07:
02:b4:f7:66:b5:b5:d1:7d:36:be:ea:d7:c5:f0:72:
67:4e:77:b3:05:c1:bb:ec:4a:fe:84:e0:f4:f3:8f:
09:5d:3a:fe:61:a7:45:67:d0:46:6e:b6:ce:e6:8b:
16:db:67:44:80:19:c9:ec:7e:3c:59:93:36:9a:c5:
8f:17:ae:ff:76:ec:4c:7a:ea:68:84:9d:fb:a2:47:
c2:69:a7:7a:a6:0f:27:02:3b:de:a8:27:02:15:d6:
50:74:75:55:3b:0c:32:88:65:48:95:c2:8a:79:14:
52:97:00:3f:80:c3:16:cd:6e:68:82:00:a8:30:0d:
0c:d3:f3:2a:49:32:45:51:b6:09:4d:96:46:ea:ba:
b3:65:3c:45:c0:67:96:2f:4b:60:8c:f0:42:56:c0:
f6:9c:47:32:b6:ef:06:b6:3a:8e:ab:b7:eb:3d:1d:
e9:c3:69:db:a2:5f:1d:39:f3:92:60:fa:73:eb:0c:
55:39:f9:32:3d:4e:5e:0f:12:21:0a:ee:2a:c8:2c:
83:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:93:03:2E:89:EF:54:B1:4D:0D:E4:9B:7D:B8:A0:CD:F2:74:D6:58
X509v3 Authority Key Identifier:
keyid:AF:4B:58:D4:B1:65:30:B9:F6:91:9D:BF:4F:53:DC:3A:E4:D5:FD:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AF4B58D4B16530B9F6919DBF4F53DC3AE4D5FDE6.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5d227dbe-4a1c-40b0-94a6-793bdbda3777/0/34332e3234302e3233302e302f32342d3234203d3e203536323436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.240.230.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:b8:d2:84:80:70:25:d3:00:94:c3:ef:f9:a9:05:4b:75:76:
f6:9b:50:6d:aa:20:eb:10:9c:84:29:c6:d1:2d:2e:da:b1:7a:
ab:7e:62:f0:f7:f1:dc:1e:68:18:ee:ad:06:0d:c4:d3:26:4b:
43:76:62:22:ea:06:a8:ae:48:f5:2c:b1:50:86:db:9c:7e:7e:
da:32:dc:0b:ad:95:a0:08:68:d9:60:69:c9:8e:69:7d:78:a0:
00:c0:dc:86:dc:d6:fb:5b:26:98:d8:6e:cf:66:79:ac:30:25:
e3:97:b4:eb:51:9f:f8:de:44:0d:9b:d4:c4:36:3b:22:9b:77:
c4:a3:16:92:6a:1b:cc:4c:24:e7:2c:06:d4:46:1e:d0:e3:47:
cf:b7:f1:58:3e:53:88:48:db:2e:0b:c8:46:89:7b:f2:1e:7a:
da:65:bd:f2:48:8b:c2:ec:dd:9b:ec:bc:72:77:dd:3c:bb:d2:
2a:e9:59:1f:8e:dc:cc:96:f6:f2:57:42:22:f7:52:1e:65:de:
1e:85:d0:0a:b6:e9:9e:2c:7c:1d:0e:56:d5:5b:27:0e:58:a1:
af:af:35:5d:3b:47:40:c2:58:c8:c6:e8:53:4f:ad:fe:09:4f:
de:18:39:8f:a7:ad:aa:ff:0c:ea:69:4b:11:bb:7f:9d:c3:4e:
53:f8:4b:b3
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUO5v8MllOVBU2hp2m4JYpshfR2sgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FF
NEQ1RkRFNjAeFw0yMzA3MzAyMzU4NThaFw0yNDA3MjkwMDAzNThaMDMxMTAvBgNV
BAMTKDdBOTMwMzJFODlFRjU0QjE0RDBERTQ5QjdEQjhBMENERjI3NEQ2NTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJVQPcwPPa0s6ilmHXYySnAOEl
IKBjVrVmYavSIJU+ISXT+UsLt/gtAkrSp679bQBApeoPXvIL1UsNBwK092a1tdF9
Nr7q18XwcmdOd7MFwbvsSv6E4PTzjwldOv5hp0Vn0EZuts7mixbbZ0SAGcnsfjxZ
kzaaxY8Xrv927Ex66miEnfuiR8Jpp3qmDycCO96oJwIV1lB0dVU7DDKIZUiVwop5
FFKXAD+AwxbNbmiCAKgwDQzT8ypJMkVRtglNlkbqurNlPEXAZ5YvS2CM8EJWwPac
RzK27wa2Oo6rt+s9HenDaduiXx0585Jg+nPrDFU5+TI9Tl4PEiEK7irILIMVAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUepMDLonvVLFNDeSbfbigzfJ01lgwHwYDVR0j
BBgwFoAUr0tY1LFlMLn2kZ2/T1PcOuTV/eYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81
ZDIyN2RiZS00YTFjLTQwYjAtOTRhNi03OTNiZGJkYTM3NzcvMC9BRjRCNThENEIx
NjUzMEI5RjY5MTlEQkY0RjUzREMzQUU0RDVGREU2LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQUY0QjU4RDRCMTY1MzBCOUY2OTE5REJGNEY1M0RDM0FFNEQ1
RkRFNi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVkMjI3ZGJlLTRhMWMtNDBiMC05
NGE2LTc5M2JkYmRhMzc3Ny8wLzM0MzMyZTMyMzQzMDJlMzIzMzMwMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzUzNjMyMzQzNi5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEACvw5jANBgkqhkiG
9w0BAQsFAAOCAQEAu7jShIBwJdMAlMPv+akFS3V29ptQbaog6xCchCnG0S0u2rF6
q35i8Pfx3B5oGO6tBg3E0yZLQ3ZiIuoGqK5I9SyxUIbbnH5+2jLcC62VoAho2WBp
yY5pfXigAMDchtzW+1smmNhuz2Z5rDAl45e061Gf+N5EDZvUxDY7Ipt3xKMWkmob
zEwk5ywG1EYe0ONHz7fxWD5TiEjbLgvIRol78h562mW98kiLwuzdm+y8cnfdPLvS
KulZH47czJb28ldCIvdSHmXeHoXQCrbpnix8HQ5W1VsnDlihr681XTtHQMJYyMbo
U0+t/glP3hg5j6etqv8M6mlLEbt/ncNOU/hLsw==
-----END CERTIFICATE-----
Generated at Thu Jan 11 05:08:34 2024 by rpki-client on console-fra.rpki-client.org