Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130372e302f32342d3234203d3e2034383231.roa
File: 3232332e32352e3130372e302f32342d3234203d3e2034383231.roa (raw, json)
Hash identifier: HwsisXxTxG+1KhOaX7xx0Vac9MhWne8mN5Hd/2EzQ3U=
Subject key identifier: DE:E0:1E:44:FD:EC:1E:74:05:AD:24:0E:98:0E:24:72:17:FE:3F:34
Certificate issuer: /CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787
Certificate serial: 1AF7FCFA7DBB068F2CDADA96E7551507EE2BF70D
Authority key identifier: 4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130372e302f32342d3234203d3e2034383231.roa
Signing time: Mon 31 Jul 2023 00:08:26 +0000
ROA not before: Mon 31 Jul 2023 00:03:26 +0000
ROA not after: Mon 29 Jul 2024 00:08:26 +0000
asID: 4821
IP address blocks: 223.25.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Mar 2024 22:54:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:f7:fc:fa:7d:bb:06:8f:2c:da:da:96:e7:55:15:07:ee:2b:f7:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787
Validity
Not Before: Jul 31 00:03:26 2023 GMT
Not After : Jul 29 00:08:26 2024 GMT
Subject: CN=DEE01E44FDEC1E7405AD240E980E247217FE3F34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:81:d2:36:6f:ac:67:12:87:d7:75:b6:73:30:
30:5a:2d:04:be:f5:69:5b:c6:a1:10:3e:ef:1a:81:
43:df:01:45:4e:f1:bd:d7:e1:41:bd:10:da:9e:99:
55:1f:c1:93:15:95:fb:d6:64:8d:6a:6c:f8:b4:b8:
98:f7:63:86:a5:16:66:b0:07:db:5e:b7:c5:54:41:
f5:04:f1:59:a0:de:dd:b6:32:ed:16:9d:9b:7a:02:
87:f2:d3:cf:f1:11:38:9d:d1:79:d8:f2:3c:60:79:
4f:60:91:a5:d1:5b:44:29:85:cd:14:92:05:bc:33:
44:58:1e:4f:bd:61:02:e0:bf:00:27:9a:f7:fc:8a:
f5:ac:a7:8c:54:48:4b:45:95:1e:a2:db:f4:10:d8:
aa:7c:da:03:b6:d3:f2:55:d2:63:30:89:49:ea:98:
89:bb:0e:21:f8:56:2e:41:73:be:64:c0:44:49:ab:
e9:6f:36:d3:7a:bf:ef:68:54:2b:0d:37:68:c6:61:
ff:ad:8f:bc:65:d2:52:73:4c:1c:29:c1:a3:d2:88:
64:e7:df:76:18:2b:f8:33:38:51:ec:6c:0d:88:48:
ef:da:4c:b7:84:4e:b3:ca:8f:9e:ae:dc:fd:f3:b3:
26:be:a3:46:5f:5c:08:0c:86:2e:03:2c:42:80:c1:
6f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E0:1E:44:FD:EC:1E:74:05:AD:24:0E:98:0E:24:72:17:FE:3F:34
X509v3 Authority Key Identifier:
keyid:4B:F1:DC:C0:BC:C5:B1:A4:B6:BE:52:6A:75:FF:33:39:7F:C3:87:87
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4BF1DCC0BCC5B1A4B6BE526A75FF33397FC38787.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d254419-53be-4ad4-bf7f-29f8912523d0/0/3232332e32352e3130372e302f32342d3234203d3e2034383231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.25.107.0/24
Signature Algorithm: sha256WithRSAEncryption
86:a5:fa:9f:2e:2a:ba:92:6d:83:82:dd:a0:0d:ad:eb:b1:80:
5c:e9:14:0a:25:0c:32:89:2e:c6:b8:bf:3b:9d:be:59:45:6f:
82:c7:7a:96:d9:c4:02:41:5c:a3:dc:0c:41:72:2a:fe:42:4c:
9a:c0:54:72:df:44:18:33:2b:4a:3d:fb:4c:b5:a2:03:b8:22:
f4:48:d6:e7:49:5f:55:8a:c4:68:26:23:5c:17:c1:a9:51:d0:
51:e9:df:5c:b3:8b:a0:7a:99:38:44:0d:5b:6a:e4:03:41:96:
e9:28:99:76:e7:b1:a3:fa:f2:3a:49:a0:e1:1d:6d:e7:21:6d:
46:bf:40:9b:cc:51:27:27:bc:25:40:7f:91:f2:f8:b1:ec:f6:
df:2f:f2:3c:cd:d2:ca:03:ab:ad:50:81:32:b5:d3:64:49:9d:
6b:16:63:e2:26:4b:d0:85:b5:40:4a:02:4d:5d:e0:bb:09:bc:
67:a7:04:b5:27:a1:cc:00:f8:b9:59:c1:d7:02:b7:79:46:42:
3a:16:56:2a:b6:f9:8b:23:c3:40:d4:03:2b:c8:37:87:4c:23:
36:73:37:0a:3a:d1:64:12:82:5f:dc:42:8c:a3:10:ad:23:a9:
b9:5a:69:28:2b:ed:38:04:d4:fa:91:59:6e:24:cd:85:d5:2e:
1f:12:34:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 23:54:43 2024 by rpki-client on console-fra.rpki-client.org