Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3130332e3232382e3234372e302f32342d3234203d3e203539323832.roa
File: 3130332e3232382e3234372e302f32342d3234203d3e203539323832.roa (raw, json)
Hash identifier: 8vK/cqBWeh1B58iMTa4XrJjcT+13+udRDRhIGbDple0=
Subject key identifier: 70:17:A9:3F:06:69:DC:0C:C8:07:2E:4D:BE:E5:17:D6:6C:51:8A:76
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 3EE74036199DD49C290B793A0EF06ACE0D7ABC06
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3130332e3232382e3234372e302f32342d3234203d3e203539323832.roa
Signing time: Sun 28 Aug 2022 23:06:13 +0000
ROA not before: Sun 28 Aug 2022 23:01:13 +0000
ROA not after: Sun 27 Aug 2023 23:06:13 +0000
asID: 59282
IP address blocks: 103.228.247.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:e7:40:36:19:9d:d4:9c:29:0b:79:3a:0e:f0:6a:ce:0d:7a:bc:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Aug 28 23:01:13 2022 GMT
Not After : Aug 27 23:06:13 2023 GMT
Subject: CN=7017A93F0669DC0CC8072E4DBEE517D66C518A76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:31:a5:9a:0d:2b:88:51:5c:1b:39:3f:d0:86:
4d:c9:1f:c2:7f:4d:e6:a8:34:fd:b3:67:9e:8f:c4:
cf:01:1c:6d:c4:79:53:0e:ea:ec:03:63:a7:08:3f:
38:8a:bb:f3:e2:3a:85:b4:96:a8:d1:e1:d0:32:fd:
61:9e:a6:01:35:cb:be:7f:18:b1:56:a2:19:a6:4d:
fc:8e:6a:a2:fe:ea:78:1d:a8:48:9d:af:18:8b:b5:
1a:cd:c8:29:a9:c6:cc:78:6e:cb:d4:69:44:6e:9c:
36:43:c5:ed:cd:40:89:19:b5:b6:16:3c:cc:08:cc:
dc:fb:d2:98:2d:82:08:ea:5c:ce:02:fd:b9:00:97:
df:fc:b6:7e:e1:ca:9f:46:3a:aa:f2:51:b8:1c:4c:
63:95:91:23:cb:67:5b:e4:c3:d1:12:63:5d:c9:4b:
88:63:33:fb:d6:f8:d7:66:1a:16:91:42:c6:ef:3a:
93:58:3e:67:cc:5a:dd:ec:f1:20:b9:9d:3e:50:5e:
df:12:db:93:c1:67:eb:23:ca:d4:77:b6:bf:d1:2a:
43:2c:0f:09:29:d4:43:ff:72:f0:44:a2:98:4c:26:
4f:74:59:68:56:e0:28:b7:a4:c2:d9:1b:36:cd:d1:
a2:8b:fa:80:37:70:0c:3f:dd:0f:10:38:6b:25:6b:
a7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:17:A9:3F:06:69:DC:0C:C8:07:2E:4D:BE:E5:17:D6:6C:51:8A:76
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3130332e3232382e3234372e302f32342d3234203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.228.247.0/24
Signature Algorithm: sha256WithRSAEncryption
70:29:0f:95:db:25:61:f8:b8:9a:c5:89:9d:b4:88:f5:1c:51:
2b:74:61:89:20:85:36:6a:b3:73:58:df:c4:3c:47:93:de:98:
40:45:a5:09:e6:a9:48:7e:63:d7:2b:02:25:8d:d3:7e:90:56:
ff:52:09:a5:db:39:53:3c:1a:5b:4d:b3:93:d9:14:87:a1:86:
01:0d:a3:e4:d6:2d:06:5b:fd:fd:a0:87:5c:6d:5c:9a:3f:d6:
23:6f:cf:10:25:dd:b4:c9:2c:6b:47:1f:05:8d:ed:bb:47:47:
2b:5e:72:19:3b:7a:e9:cf:27:5a:97:e8:1f:f3:b2:c8:3a:9f:
01:f7:bb:77:6a:d1:d6:84:86:cf:0b:4b:70:78:e7:ba:74:86:
db:97:b2:3c:5f:1f:9e:54:83:2d:30:be:db:e5:37:dc:27:a8:
27:5c:87:28:ba:94:08:4c:59:f5:3d:fe:0a:f6:ed:3a:96:e1:
5b:eb:18:ab:ea:27:6b:83:c3:a6:9e:8e:72:ca:e7:76:dc:3c:
77:fa:e3:cd:c0:19:49:7b:2c:e8:15:66:4f:79:ab:91:32:a4:
34:93:a1:e1:6e:c2:39:b7:c8:6b:ad:18:a2:a9:bb:a5:b4:f6:
42:83:bd:47:bd:51:93:b8:a9:72:1c:f0:6c:c6:75:31:95:86:
39:20:ff:94
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUPudANhmd1JwpC3k6DvBqzg16vAYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJG
MDBFNzFBQTAeFw0yMjA4MjgyMzAxMTNaFw0yMzA4MjcyMzA2MTNaMDMxMTAvBgNV
BAMTKDcwMTdBOTNGMDY2OURDMENDODA3MkU0REJFRTUxN0Q2NkM1MThBNzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDmMaWaDSuIUVwbOT/Qhk3JH8J/
TeaoNP2zZ56PxM8BHG3EeVMO6uwDY6cIPziKu/PiOoW0lqjR4dAy/WGepgE1y75/
GLFWohmmTfyOaqL+6ngdqEidrxiLtRrNyCmpxsx4bsvUaURunDZDxe3NQIkZtbYW
PMwIzNz70pgtggjqXM4C/bkAl9/8tn7hyp9GOqryUbgcTGOVkSPLZ1vkw9ESY13J
S4hjM/vW+NdmGhaRQsbvOpNYPmfMWt3s8SC5nT5QXt8S25PBZ+sjytR3tr/RKkMs
Dwkp1EP/cvBEophMJk90WWhW4Ci3pMLZGzbN0aKL+oA3cAw/3Q8QOGsla6dtAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUcBepPwZp3AzIBy5NvuUX1mxRinYwHwYDVR0j
BBgwFoAUY5RzzSBUp4s5+ax6gyMkYvAOcaowDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
ODQ2NGE1Yi0yZmNlLTQ3ZGEtODA0Ny02OGQyYmQ2M2M5YzMvMC82Mzk0NzNDRDIw
NTRBNzhCMzlGOUFDN0E4MzIzMjQ2MkYwMEU3MUFBLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNjM5NDczQ0QyMDU0QTc4QjM5RjlBQzdBODMyMzI0NjJGMDBF
NzFBQS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NDY0YTViLTJmY2UtNDdkYS04
MDQ3LTY4ZDJiZDYzYzljMy8wLzMxMzAzMzJlMzIzMjM4MmUzMjM0MzcyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzNTM5MzIzODMyLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+T3MA0GCSqG
SIb3DQEBCwUAA4IBAQBwKQ+V2yVh+LiaxYmdtIj1HFErdGGJIIU2arNzWN/EPEeT
3phARaUJ5qlIfmPXKwIljdN+kFb/Ugml2zlTPBpbTbOT2RSHoYYBDaPk1i0GW/39
oIdcbVyaP9Yjb88QJd20ySxrRx8Fje27R0crXnIZO3rpzydal+gf87LIOp8B97t3
atHWhIbPC0tweOe6dIbbl7I8Xx+eVIMtML7b5TfcJ6gnXIcoupQITFn1Pf4K9u06
luFb6xir6idrg8Omno5yyud23Dx3+uPNwBlJeyzoFWZPeauRMqQ0k6HhbsI5t8hr
rRiiqbultPZCg71HvVGTuKlyHPBsxnUxlYY5IP+U
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:56 2023 by rpki-client on console-fra.rpki-client.org