Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/3130332e34322e3132302e302f32342d3234203d3e203234353335.roa
File: 3130332e34322e3132302e302f32342d3234203d3e203234353335.roa (raw, json)
Hash identifier: jGzouKAhsw5Byj4snVEJ5hzO59U3Sh6XaVRVzu1RooE=
Subject key identifier: DA:0E:40:93:74:28:91:88:E4:FD:9E:87:48:A2:36:2A:DF:11:31:11
Certificate issuer: /CN=DD29F5E4CE561760A0212F0448987AFBE75263D7
Certificate serial: 328912F55E7C3AC7786E65B644B6218FA92E61B4
Authority key identifier: DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/3130332e34322e3132302e302f32342d3234203d3e203234353335.roa
Signing time: Wed 27 Sep 2023 07:47:35 +0000
ROA not before: Wed 27 Sep 2023 07:42:35 +0000
ROA not after: Wed 25 Sep 2024 07:47:35 +0000
asID: 24535
IP address blocks: 103.42.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 02:41:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:89:12:f5:5e:7c:3a:c7:78:6e:65:b6:44:b6:21:8f:a9:2e:61:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DD29F5E4CE561760A0212F0448987AFBE75263D7
Validity
Not Before: Sep 27 07:42:35 2023 GMT
Not After : Sep 25 07:47:35 2024 GMT
Subject: CN=DA0E409374289188E4FD9E8748A2362ADF113111
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:19:89:57:5f:b2:b6:d7:c2:46:fc:44:53:81:
59:d3:26:ac:7c:82:24:3b:9a:60:03:87:1e:33:86:
c6:ce:b4:f6:ab:86:37:1b:2b:63:53:0e:3d:b8:5a:
34:b6:c4:85:3d:70:80:09:ac:18:b9:a6:f5:b2:36:
14:79:3a:6a:08:e4:bf:6b:8a:bd:a5:c3:22:70:89:
99:80:fc:67:a5:41:d0:56:d6:07:9f:23:a4:67:08:
01:64:8e:ef:7e:6e:8d:ff:b8:15:58:9c:5c:c8:d4:
f9:87:e7:fb:cb:9a:e5:c4:6e:60:8e:b3:73:fa:96:
95:ec:c8:a6:5f:eb:41:47:29:f4:92:75:3f:bd:25:
b9:15:0b:9b:ab:33:ec:99:b6:16:5e:3a:cd:22:e5:
61:f2:92:51:24:bc:51:f6:42:9e:c1:2f:ad:3a:ea:
54:f1:f4:a3:c9:0d:1e:54:33:99:cb:07:d4:f4:94:
86:e4:4b:80:cd:ab:08:46:3b:5c:9a:08:72:da:81:
a6:29:b8:0a:25:bd:72:86:d9:d1:0e:59:4c:61:6f:
fb:4c:3c:f2:a1:6a:cd:5d:c6:a6:67:9d:9e:da:5b:
eb:4e:e1:8b:ba:d4:1d:84:db:05:38:75:4b:6e:db:
e6:a5:72:0b:b0:a3:01:1b:12:e2:7f:b9:22:5a:89:
b4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:0E:40:93:74:28:91:88:E4:FD:9E:87:48:A2:36:2A:DF:11:31:11
X509v3 Authority Key Identifier:
keyid:DD:29:F5:E4:CE:56:17:60:A0:21:2F:04:48:98:7A:FB:E7:52:63:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/DD29F5E4CE561760A0212F0448987AFBE75263D7.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD29F5E4CE561760A0212F0448987AFBE75263D7.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0624052e-2205-48f3-a3cb-ce8b326b8f71/0/3130332e34322e3132302e302f32342d3234203d3e203234353335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.42.120.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:3d:ab:83:c1:e2:4a:c3:c4:d1:13:e1:31:da:49:c9:da:55:
fa:ae:47:06:c1:68:93:1a:1d:06:03:64:bf:da:1d:5c:45:80:
da:06:b7:62:04:b8:7c:72:1f:45:a5:68:a9:27:72:e7:8c:2b:
5d:af:2c:69:07:a1:b0:f7:e2:b3:99:4b:d3:b8:7f:c8:84:02:
58:e2:45:ac:a5:e8:f5:22:55:a6:92:cc:78:12:35:76:1f:a1:
a3:08:f2:f2:b2:53:58:89:ef:24:e4:fb:18:27:3d:8c:1d:0f:
28:86:6d:e6:3d:1c:97:fa:f8:b5:32:fd:81:14:63:d1:87:97:
3a:82:ff:a8:f3:f1:f1:34:7b:ec:af:02:6c:4a:47:d3:10:dd:
46:8f:ce:9f:f5:8a:a3:57:13:9a:1d:f7:44:0d:80:a6:ef:3a:
0b:07:f3:72:8c:16:8a:06:d8:3d:9a:4a:6d:09:ce:27:67:ca:
81:6a:32:fe:f5:9a:cd:46:5f:30:e7:c4:c3:ba:bb:9c:6d:95:
60:6e:0e:ef:89:70:d0:91:f6:4c:26:2d:34:16:71:71:b0:8e:
9e:40:80:9f:63:9c:d3:7f:38:d7:c4:f6:4e:29:0b:74:16:a7:
bb:36:94:88:45:17:e4:4a:7b:d6:92:8b:e1:e2:20:3c:81:b7:
bc:df:ac:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:01 2024 by rpki-client on console-fra.rpki-client.org