Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/6bfa4265-bb58-46e2-8309-3ad3981a3516/0/3130332e3137302e3233362e302f32332d3233203d3e203137393935.roa
File: 3130332e3137302e3233362e302f32332d3233203d3e203137393935.roa (raw, json)
Hash identifier: YDzUik7/3tc07b4HZIpdyFw7atJrP+JswsUq2yuWyto=
Subject key identifier: 85:54:7E:BE:AA:D0:9D:EB:83:39:E8:91:A0:44:37:EE:F2:BF:C3:FF
Certificate issuer: /CN=9F02A9B87CC5F81A22E8E58D2EC12E6E06588A03
Certificate serial: 56E8E101962D0A91A93FDC581831474176DCA54D
Authority key identifier: 9F:02:A9:B8:7C:C5:F8:1A:22:E8:E5:8D:2E:C1:2E:6E:06:58:8A:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F02A9B87CC5F81A22E8E58D2EC12E6E06588A03.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/6bfa4265-bb58-46e2-8309-3ad3981a3516/0/3130332e3137302e3233362e302f32332d3233203d3e203137393935.roa
Signing time: Thu 08 Jun 2023 07:01:59 +0000
ROA not before: Thu 08 Jun 2023 06:56:59 +0000
ROA not after: Thu 06 Jun 2024 07:01:59 +0000
asID: 17995
IP address blocks: 103.170.236.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 17 Apr 2024 10:12:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:e8:e1:01:96:2d:0a:91:a9:3f:dc:58:18:31:47:41:76:dc:a5:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F02A9B87CC5F81A22E8E58D2EC12E6E06588A03
Validity
Not Before: Jun 8 06:56:59 2023 GMT
Not After : Jun 6 07:01:59 2024 GMT
Subject: CN=85547EBEAAD09DEB8339E891A04437EEF2BFC3FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6e:88:8d:9a:3e:dd:15:34:41:2b:61:8b:95:
e7:18:56:4c:bc:12:15:64:b4:eb:74:13:d4:c6:fd:
91:33:ad:e7:70:ae:f7:f2:71:22:ca:50:fc:30:f9:
68:4b:c9:6a:69:1c:4b:6a:be:23:dd:38:8a:84:4a:
ef:77:36:fa:69:1b:79:f8:4d:3e:11:20:20:af:4e:
37:f0:41:b4:f7:ef:c5:4b:7a:03:f7:75:01:f9:a0:
f0:ee:19:05:f0:d8:c0:21:47:41:fb:08:ff:27:c8:
a9:a8:b5:60:0a:4b:c4:b3:76:b3:ee:92:d1:ee:1c:
27:98:70:81:7c:a2:1c:60:1e:cd:2e:28:f0:10:86:
a2:e5:c3:c1:aa:5d:3c:0e:11:bd:b4:88:f9:1f:73:
d1:88:87:4f:50:c5:95:8d:ea:37:3c:68:0d:83:d8:
00:88:f6:3a:a9:a9:07:5d:6d:3d:cd:39:9d:96:29:
cc:9b:6a:2c:e7:87:89:48:97:03:25:e2:44:89:8c:
70:6a:3a:38:ac:b3:fe:4c:11:1c:8b:37:2e:7d:a8:
30:b1:b8:10:cb:06:19:d5:81:fc:a4:6b:11:06:45:
bb:ac:59:9b:37:a2:d7:2d:21:1f:b9:8a:81:6b:7f:
8b:be:e6:dc:75:b2:20:19:9c:d8:8a:35:19:08:f5:
36:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:54:7E:BE:AA:D0:9D:EB:83:39:E8:91:A0:44:37:EE:F2:BF:C3:FF
X509v3 Authority Key Identifier:
keyid:9F:02:A9:B8:7C:C5:F8:1A:22:E8:E5:8D:2E:C1:2E:6E:06:58:8A:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/6bfa4265-bb58-46e2-8309-3ad3981a3516/0/9F02A9B87CC5F81A22E8E58D2EC12E6E06588A03.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9F02A9B87CC5F81A22E8E58D2EC12E6E06588A03.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6bfa4265-bb58-46e2-8309-3ad3981a3516/0/3130332e3137302e3233362e302f32332d3233203d3e203137393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.170.236.0/23
Signature Algorithm: sha256WithRSAEncryption
85:e9:93:7a:49:2e:e5:2f:00:51:b0:b4:ca:c0:d4:4a:3d:6e:
19:b2:81:4b:33:63:41:4e:ca:b8:85:9b:62:30:4c:e2:d1:dd:
22:b9:15:6b:48:d2:5c:ee:4f:f5:fa:bf:a0:75:47:20:5b:44:
e9:ae:77:f1:94:37:d2:81:fd:f4:ac:42:91:da:21:ec:a1:1a:
cb:71:63:d3:70:02:89:ed:bd:ae:2b:22:f1:4b:ae:95:ec:d9:
3a:0b:5f:e8:d4:6a:a6:99:cd:7a:f8:3d:19:0c:23:34:39:b4:
c9:d9:95:40:90:08:96:ec:56:ca:aa:60:fc:bd:09:27:cf:a7:
95:c0:93:26:10:b1:b6:b7:25:69:c7:21:b8:1f:2d:76:7f:7d:
5d:d4:5a:74:38:48:ba:18:b7:71:dc:a9:c8:48:9f:e7:ec:d0:
8d:50:c5:56:19:3c:22:20:75:5b:14:4a:81:88:8a:c7:d4:8c:
4b:dc:74:96:2d:f2:1c:37:e7:1d:5c:9e:e0:d1:15:cb:89:0a:
0e:00:f0:2b:da:fa:15:d0:4c:ba:cb:cc:e7:a8:1a:9e:cd:d9:
df:d4:d9:94:e8:0c:90:a5:0d:69:40:1e:c6:53:06:bc:76:21:
56:c2:de:07:74:b7:c3:21:1d:40:79:57:83:7f:05:82:e5:7c:
97:35:aa:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 17 12:33:38 2024 by rpki-client on console-ams.rpki-client.org