Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/3130332e3137302e3139372e302f32342d3234203d3e203137393935.roa
File: 3130332e3137302e3139372e302f32342d3234203d3e203137393935.roa (raw, json)
Hash identifier: BUF7u1lKZdc5ZvI4a+Rkf4CIGsBzapZgMynuC5OpLVo=
Subject key identifier: C3:AF:8C:E1:8A:DC:A1:88:EA:2F:4D:07:67:AA:18:B4:BF:C2:DB:32
Certificate issuer: /CN=1472DDF3B8546A8B201733914AFB7036FC6742F3
Certificate serial: 6504F88F9D46D9077B22E1BE98FCDD4BA96C5D11
Authority key identifier: 14:72:DD:F3:B8:54:6A:8B:20:17:33:91:4A:FB:70:36:FC:67:42:F3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1472DDF3B8546A8B201733914AFB7036FC6742F3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/3130332e3137302e3139372e302f32342d3234203d3e203137393935.roa
Signing time: Fri 09 Jun 2023 05:00:01 +0000
ROA not before: Fri 09 Jun 2023 04:55:01 +0000
ROA not after: Fri 07 Jun 2024 05:00:01 +0000
asID: 17995
IP address blocks: 103.170.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Apr 2024 10:09:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:04:f8:8f:9d:46:d9:07:7b:22:e1:be:98:fc:dd:4b:a9:6c:5d:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1472DDF3B8546A8B201733914AFB7036FC6742F3
Validity
Not Before: Jun 9 04:55:01 2023 GMT
Not After : Jun 7 05:00:01 2024 GMT
Subject: CN=C3AF8CE18ADCA188EA2F4D0767AA18B4BFC2DB32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:75:b8:97:3b:73:00:22:57:ad:01:dd:f4:ed:
ab:ee:7b:0b:63:df:9d:77:e5:b3:b0:47:7b:52:86:
cb:eb:c4:ab:bc:e7:91:dc:89:68:52:6d:bc:bc:a7:
f3:f2:f8:8d:54:6f:58:3e:53:e9:fb:9a:59:31:27:
49:c3:9b:be:61:d4:4f:cf:22:a9:29:c0:bd:d8:4b:
25:33:9a:5f:93:29:eb:9b:49:6f:bd:44:6d:ee:76:
c3:f5:88:87:20:0a:19:6c:b1:4b:81:20:ce:c1:32:
f5:b0:ec:20:a0:49:2f:9e:46:40:69:1e:b6:47:03:
5b:15:c0:bf:e4:5e:be:1c:7c:19:0b:64:66:76:00:
2c:a3:a5:ee:63:c3:c9:95:b6:cd:6c:60:bb:7f:f6:
1f:8b:01:c6:4c:1c:2e:15:d6:8d:22:5a:f5:ab:db:
29:1e:a6:73:0d:8f:77:a8:a5:0e:2a:27:f1:88:f9:
05:0f:74:73:b1:11:c2:d4:61:86:a4:b8:97:4f:60:
aa:0c:8e:e0:44:5f:78:42:95:42:a8:2d:d7:42:5f:
f2:6b:40:75:12:af:03:0f:bd:4d:70:40:58:e3:92:
cc:7b:de:97:ec:3b:ea:e9:05:78:10:b8:80:4d:14:
78:a9:df:73:fe:2f:24:4d:d5:21:f5:5a:df:f2:36:
0c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:AF:8C:E1:8A:DC:A1:88:EA:2F:4D:07:67:AA:18:B4:BF:C2:DB:32
X509v3 Authority Key Identifier:
keyid:14:72:DD:F3:B8:54:6A:8B:20:17:33:91:4A:FB:70:36:FC:67:42:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/1472DDF3B8546A8B201733914AFB7036FC6742F3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1472DDF3B8546A8B201733914AFB7036FC6742F3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/911a746e-53e3-4c23-b9e5-f64f3ef3d136/0/3130332e3137302e3139372e302f32342d3234203d3e203137393935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.170.197.0/24
Signature Algorithm: sha256WithRSAEncryption
81:87:35:1a:cc:ab:5f:66:b2:27:25:1f:83:b7:f3:fa:e5:71:
47:b6:25:e6:76:7e:4f:22:54:a8:22:4e:ff:e7:39:b2:94:24:
15:b9:54:e5:c2:7c:40:43:59:b5:26:f0:dc:92:20:dc:3a:80:
e1:db:d8:76:ee:d1:fd:a4:e6:dc:e8:3f:34:93:c6:0c:ba:37:
2c:52:31:25:55:5a:03:6d:cc:d4:41:f3:30:25:a7:e4:b9:d6:
db:c5:e3:f4:fb:2f:6a:46:83:25:cd:67:1d:8f:0f:d0:55:a6:
5f:c0:d1:75:df:4b:7e:05:38:02:90:6d:72:8c:dc:79:5e:5b:
5a:37:01:fc:0c:8e:67:d4:a5:f8:4f:2c:20:b3:58:bb:ff:41:
c0:8b:7a:c7:97:b5:ff:33:a7:e7:0e:8b:66:6c:7a:df:28:9b:
23:f5:70:45:0c:62:e1:7a:92:75:1a:ee:09:8e:fc:81:01:45:
ab:ea:2c:90:84:ef:30:8d:18:17:f1:ae:45:0e:c7:53:66:55:
8c:24:eb:e8:3b:55:df:a9:2c:2e:16:86:17:d7:a6:90:d9:95:
d2:14:6d:14:12:c3:60:e7:e1:9f:65:59:e7:5a:da:3b:40:05:
81:9e:77:4b:43:60:d8:c9:0d:ca:f3:6e:40:1e:26:60:f0:a5:
b4:f8:db:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 17 12:33:39 2024 by rpki-client on console-ams.rpki-client.org