Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3131362e3230362e3231332e302f32342d3234203d3e203539323832.roa
File: 3131362e3230362e3231332e302f32342d3234203d3e203539323832.roa (raw, json)
Hash identifier: tGLyENT+Qa6+TAPlpIHNqozbh6/9QG39iIl0INq+uu0=
Subject key identifier: 26:44:CE:86:B5:3D:05:8C:10:84:20:42:30:8C:1F:3A:7C:FE:67:07
Certificate issuer: /CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Certificate serial: 1E7794B2BAF37FAEE980EA40DE0362187708CD5D
Authority key identifier: 63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3131362e3230362e3231332e302f32342d3234203d3e203539323832.roa
Signing time: Sun 28 Aug 2022 23:06:13 +0000
ROA not before: Sun 28 Aug 2022 23:01:13 +0000
ROA not after: Sun 27 Aug 2023 23:06:13 +0000
asID: 59282
IP address blocks: 116.206.213.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:77:94:b2:ba:f3:7f:ae:e9:80:ea:40:de:03:62:18:77:08:cd:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639473CD2054A78B39F9AC7A83232462F00E71AA
Validity
Not Before: Aug 28 23:01:13 2022 GMT
Not After : Aug 27 23:06:13 2023 GMT
Subject: CN=2644CE86B53D058C10842042308C1F3A7CFE6707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e2:04:6a:0b:92:14:52:48:c7:bd:84:cb:01:
a4:9c:11:52:50:de:44:29:99:e7:12:d4:5f:21:96:
21:46:40:99:8a:1b:e2:54:b6:96:22:88:db:cf:11:
57:69:90:f8:0d:d0:a6:1a:49:9f:eb:c7:50:3a:e7:
d7:31:4b:a2:2d:be:a2:5c:ad:67:3f:05:9c:7d:65:
c5:73:b2:c0:49:8b:8d:b9:54:47:32:d7:64:c9:e3:
fb:35:91:24:8d:45:ed:bc:70:fc:f3:ec:1b:c2:2e:
0b:c1:8a:fb:b2:63:44:bb:3e:1a:61:ed:39:59:35:
bb:a6:12:28:f4:d4:b8:f6:b2:1b:ac:15:44:72:43:
d5:45:3c:c8:90:a0:21:e7:4a:52:2d:40:61:13:e8:
fe:9e:9a:90:88:6b:b8:1a:3e:29:27:af:ef:1b:42:
50:c8:b0:07:96:0b:2a:95:de:d3:d8:3e:3c:39:5a:
7f:8f:28:d4:3b:6e:f8:2f:ec:dd:7b:69:e8:f9:ef:
fb:88:65:99:9e:7c:37:76:25:c2:e6:24:fe:c5:df:
08:f8:c8:25:de:60:b8:c2:b5:ed:6d:c2:2a:cb:80:
d6:80:a1:ca:a9:2d:65:37:e8:85:80:55:d0:fd:63:
bb:5f:be:ef:63:b6:25:a4:83:22:fb:94:a2:33:91:
bd:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:44:CE:86:B5:3D:05:8C:10:84:20:42:30:8C:1F:3A:7C:FE:67:07
X509v3 Authority Key Identifier:
keyid:63:94:73:CD:20:54:A7:8B:39:F9:AC:7A:83:23:24:62:F0:0E:71:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/639473CD2054A78B39F9AC7A83232462F00E71AA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/639473CD2054A78B39F9AC7A83232462F00E71AA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a8464a5b-2fce-47da-8047-68d2bd63c9c3/0/3131362e3230362e3231332e302f32342d3234203d3e203539323832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.206.213.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:4d:6d:71:1d:35:8c:3b:ba:6d:0c:62:85:c7:ff:c1:8e:fd:
86:c3:d0:85:1a:55:dc:e7:a1:a1:5e:8c:8d:7d:03:b7:9e:ad:
ea:ef:06:57:27:f7:8d:9c:ff:7c:0e:75:2a:91:73:f7:bd:4f:
b3:75:9e:af:66:0d:89:c2:0a:25:25:49:a4:81:2e:40:a1:ba:
57:ba:ce:d9:d6:5b:2c:1b:ec:ac:f9:13:c1:4f:7c:af:ae:c6:
ef:f9:46:b8:28:97:ff:4b:31:e4:f9:3a:b7:ab:d8:2b:e0:f3:
44:af:0b:78:15:a6:a1:b7:93:36:d7:e0:a5:5b:dd:ee:83:53:
f2:2f:27:45:6b:c8:3f:7d:88:cb:7b:27:a7:00:e0:e5:22:9f:
54:86:30:31:e3:43:dc:ec:77:f9:6b:bf:b2:4d:36:a4:72:eb:
72:94:09:58:d1:53:9c:d2:1a:2f:37:e8:69:cc:05:6d:6f:7b:
cc:c8:17:c6:40:8f:f4:f0:0f:50:d5:51:26:d1:68:82:7d:aa:
9f:1f:eb:d4:94:81:35:a3:59:1a:4c:25:ef:26:e1:98:fa:3c:
ed:de:29:83:79:52:ae:f4:89:2d:5d:65:92:ed:83:a6:1f:a3:
78:d0:eb:5f:56:ce:00:46:b4:94:a5:ce:a4:3a:70:19:91:d9:
92:fa:b4:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:11 2023 by rpki-client on console-ams.rpki-client.org