Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130342e302f32312d3231203d3e2034383231.roa
File: 3232332e32352e3130342e302f32312d3231203d3e2034383231.roa (raw, json)
Hash identifier: yNDUAI9wgLgZqDwX33EzAMKwlMMstFUL/cDVMivdcvk=
Subject key identifier: 40:18:9E:B0:8F:84:22:BD:BA:B6:76:E9:96:93:88:72:77:F0:8E:85
Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787
Certificate serial: 1A6CA489EB2B5E9E1B575C6997D3EB3B3BC31485
Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130342e302f32312d3231203d3e2034383231.roa
Signing time: Mon 31 Jul 2023 00:08:27 +0000
ROA not before: Mon 31 Jul 2023 00:03:27 +0000
ROA not after: Mon 29 Jul 2024 00:08:27 +0000
asID: 4821
IP address blocks: 223.25.104.0/21 maxlen: 21
Validation: Failed, certificate revoked on Fri 29 Mar 2024 22:54:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:6c:a4:89:eb:2b:5e:9e:1b:57:5c:69:97:d3:eb:3b:3b:c3:14:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787
Validity
Not Before: Jul 31 00:03:27 2023 GMT
Not After : Jul 29 00:08:27 2024 GMT
Subject: CN=40189EB08F8422BDBAB676E99693887277F08E85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:8f:5c:c8:79:47:ee:2c:87:a4:bb:68:b2:2b:
6b:f7:34:a3:32:c4:37:26:01:96:f1:c6:cf:12:38:
7e:27:56:6f:19:ec:d3:ba:59:31:e0:82:09:f2:4c:
27:5c:b8:e4:ea:92:db:fd:e4:d1:9c:8d:a6:c8:e0:
86:40:94:f9:ae:ab:3f:d5:62:d5:fa:15:04:53:08:
64:f3:c5:94:3e:24:95:3b:c7:49:64:8a:f5:54:85:
70:6d:16:b2:40:58:f5:8c:a5:48:bb:ec:21:9e:d7:
7e:d4:74:f0:a0:b9:27:9a:1b:dd:a9:6c:5c:ee:d6:
ac:ae:30:6b:e6:73:22:b2:5b:0f:8b:5f:28:87:9a:
d5:c4:b1:cb:e1:14:bb:17:4f:93:ad:70:f1:80:97:
26:ff:52:17:73:c9:aa:68:de:af:2d:a4:58:9b:e5:
8e:9d:5c:8a:6b:22:bd:ba:2f:ac:e6:86:4e:34:f1:
ba:74:1c:bb:2e:d8:34:96:51:8d:ee:db:ef:92:09:
79:66:38:a4:47:20:07:61:22:f9:5e:86:3d:61:87:
97:cc:15:0e:a6:cc:49:d2:bf:ae:bd:b5:97:6f:50:
53:2c:10:18:1a:2e:1f:e8:d8:8e:63:62:fa:2d:92:
9f:30:e5:5b:3f:9f:25:d8:b7:81:59:9a:ee:90:15:
ca:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:18:9E:B0:8F:84:22:BD:BA:B6:76:E9:96:93:88:72:77:F0:8E:85
X509v3 Authority Key Identifier:
keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130342e302f32312d3231203d3e2034383231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.25.104.0/21
Signature Algorithm: sha256WithRSAEncryption
0e:b5:c3:ea:7a:97:97:d5:6b:84:41:28:cc:97:8a:e0:ff:10:
4c:ee:1e:37:c1:cb:ba:95:1a:b8:8e:ea:24:32:8e:a7:92:8f:
d0:3c:43:68:fb:f1:65:8a:ac:4d:17:27:2a:e8:28:4e:09:96:
a0:08:5d:45:0e:90:7c:66:47:24:4f:75:6e:55:35:5f:b8:6f:
94:c3:f9:d5:84:db:1a:69:8e:ff:f2:95:cb:b1:00:22:7e:1d:
9a:a9:94:28:90:8f:ce:db:58:16:85:6f:b9:8c:be:92:06:e7:
26:85:b7:77:ca:87:2f:92:6c:d9:fe:da:77:ba:87:04:26:ec:
66:a1:20:72:43:d4:f6:3b:fe:8a:53:4a:b4:49:0f:0b:fe:e7:
85:86:b9:26:30:bd:99:76:26:e8:ca:a9:a4:8d:8a:67:f8:21:
71:86:0f:4c:fc:53:30:06:88:97:58:2a:a8:9e:b5:2e:f4:c3:
5f:04:3c:6f:ce:60:8d:00:60:a8:ce:20:56:48:84:a4:39:b6:
ad:f2:ee:ba:2b:03:0d:89:f3:2b:e6:25:e9:32:8b:ac:1e:90:
9b:5d:e0:ef:ae:67:46:bf:48:46:6f:7a:46:f7:ef:12:a6:62:
ac:aa:bf:d7:3e:3b:0d:96:6d:41:d3:98:b2:7d:06:29:62:98:
7f:22:e1:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 23:54:43 2024 by rpki-client on console-fra.rpki-client.org