Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e382e302f32332d3233203d3e203436303233.roa
File: 34332e3235322e382e302f32332d3233203d3e203436303233.roa (raw, json)
Hash identifier: 1nYgzx7RF0OT8YaiHao/Zbh6bZZ2+AJUYzcgP25Q2H4=
Subject key identifier: 86:4C:AB:AE:7C:E6:4B:33:4E:7F:41:8D:B8:D3:5F:07:18:F3:47:0C
Certificate issuer: /CN=7DF6602C113DDEE922AA019C74EF4283764A4695
Certificate serial: 533410D38D59DEDE2B061DC784337E9715152812
Authority key identifier: 7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e382e302f32332d3233203d3e203436303233.roa
Signing time: Mon 12 Aug 2024 15:16:51 +0000
ROA not before: Mon 12 Aug 2024 15:11:51 +0000
ROA not after: Mon 11 Aug 2025 15:16:51 +0000
asID: 46023
IP address blocks: 43.252.8.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 12 Nov 2024 15:06:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:34:10:d3:8d:59:de:de:2b:06:1d:c7:84:33:7e:97:15:15:28:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7DF6602C113DDEE922AA019C74EF4283764A4695
Validity
Not Before: Aug 12 15:11:51 2024 GMT
Not After : Aug 11 15:16:51 2025 GMT
Subject: CN=864CABAE7CE64B334E7F418DB8D35F0718F3470C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:33:f0:1a:dd:84:de:7c:41:77:53:f6:bf:83:
7e:58:5a:ae:a3:67:a3:1b:0e:77:cf:70:8e:ae:8e:
7b:71:c8:9b:24:8e:5b:85:a8:92:35:2b:af:1f:77:
ee:f7:8f:30:99:a8:85:64:a5:66:13:cc:fb:b9:cf:
a9:fc:cf:f6:1a:eb:1c:26:3c:34:1e:6d:5e:f9:54:
b7:4f:e0:e5:f0:b2:83:98:2b:d4:24:f9:df:14:60:
6a:5e:65:d8:ee:ff:63:b0:e8:4c:50:b1:fe:6c:17:
89:b7:3e:dc:45:8c:f8:7a:64:64:fa:df:b0:05:ff:
38:15:26:89:92:70:83:69:0f:a9:c2:f2:ce:bd:53:
ba:77:82:42:8d:45:02:7c:4c:9a:cc:05:e3:33:d5:
e1:97:8a:77:08:50:8f:c2:a1:e5:01:73:5d:06:e5:
49:5a:68:37:f9:37:f0:d2:a6:35:a3:82:97:6f:d9:
b4:02:4d:99:c1:f2:cb:b7:99:31:35:b1:84:2e:ea:
2b:92:cd:ee:a9:42:0e:34:87:ac:32:d7:20:fc:b0:
4f:df:fe:ca:7b:e5:75:d2:0f:5d:92:a8:3d:aa:9a:
7a:a3:4b:70:e6:a9:1d:a8:3f:71:8c:97:b5:bf:0d:
21:ea:26:cd:df:1d:82:f7:1a:b7:44:fb:77:05:12:
c2:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:4C:AB:AE:7C:E6:4B:33:4E:7F:41:8D:B8:D3:5F:07:18:F3:47:0C
X509v3 Authority Key Identifier:
keyid:7D:F6:60:2C:11:3D:DE:E9:22:AA:01:9C:74:EF:42:83:76:4A:46:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/7DF6602C113DDEE922AA019C74EF4283764A4695.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7DF6602C113DDEE922AA019C74EF4283764A4695.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/00a985b0-e17a-421b-9655-03245a01aef8/0/34332e3235322e382e302f32332d3233203d3e203436303233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.252.8.0/23
Signature Algorithm: sha256WithRSAEncryption
15:e6:77:10:60:6b:1b:8c:84:0b:d5:1a:92:2a:4c:92:df:14:
41:7f:c5:81:ef:f3:47:2d:e9:8d:a0:0b:5e:b0:1c:1f:cc:36:
a3:b6:85:a1:c8:24:c9:3e:4b:06:ab:f2:68:65:41:eb:56:a5:
93:41:25:12:f1:5a:e9:f7:d2:f0:06:31:2c:5a:01:01:4c:bb:
0d:8c:41:c1:54:b9:50:19:62:95:41:fc:92:12:94:27:31:b1:
ea:a2:24:90:15:a9:a3:58:69:44:ed:63:53:31:6f:93:43:72:
c1:f2:42:bd:5a:80:3a:af:8c:d8:4f:db:9f:fe:60:f1:03:70:
22:53:fd:df:ac:1a:f9:84:63:f2:f0:76:54:cc:c3:84:f2:f0:
5d:7a:37:cc:c9:ff:c4:76:d8:59:50:08:81:1e:6a:f9:c9:2c:
2d:d7:1c:1a:b9:05:f9:27:8f:32:e9:2f:43:d9:52:a1:d2:54:
73:bf:d6:ca:32:d9:c7:49:89:11:46:e1:6d:6b:44:97:62:7a:
14:2b:ef:db:b0:b4:46:1a:68:3e:ac:08:2d:d5:dd:5a:06:5f:
2a:00:b6:b7:83:e8:a2:8c:33:ec:19:db:5d:25:f5:8e:76:65:
cd:b3:aa:3f:9e:45:c7:c6:b2:2d:1a:dd:60:d0:61:aa:25:9c:
14:88:d9:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 12 19:19:58 2024 by rpki-client on console-ams.rpki-client.org