Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136322e302f32332d3233203d3e20313338383134.roa
File: 3130332e3133362e3136322e302f32332d3233203d3e20313338383134.roa (raw, json)
Hash identifier: qd/ii+miZkvHo27UyO8o3mKA56RonGD0KQ+FiO7r7Tg=
Subject key identifier: DD:14:B3:B1:4B:1B:8D:3E:44:D6:66:06:0A:AE:AF:0A:A7:89:4A:E4
Certificate issuer: /CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Certificate serial: 7505301803E6A4914DAF4245370B757B72F1E9AA
Authority key identifier: 47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136322e302f32332d3233203d3e20313338383134.roa
Signing time: Mon 29 Jul 2024 03:26:40 +0000
ROA not before: Mon 29 Jul 2024 03:21:40 +0000
ROA not after: Mon 28 Jul 2025 03:26:40 +0000
asID: 138814
IP address blocks: 103.136.162.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 16 Feb 2025 21:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:05:30:18:03:e6:a4:91:4d:af:42:45:37:0b:75:7b:72:f1:e9:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473748B8EB39BEE96F6462C3B53CEA392729DEEE
Validity
Not Before: Jul 29 03:21:40 2024 GMT
Not After : Jul 28 03:26:40 2025 GMT
Subject: CN=DD14B3B14B1B8D3E44D666060AAEAF0AA7894AE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:57:3d:8d:2e:dd:ac:ff:b1:0e:aa:2c:5f:2d:
ed:b2:26:7d:48:ba:af:d4:c7:85:eb:33:5e:52:ce:
f0:09:f1:de:0e:b0:a9:fd:ab:91:02:49:4a:4a:ac:
1a:17:1d:59:2e:e4:a6:2a:09:26:14:9e:1f:ca:1b:
82:e2:3a:a2:94:44:df:bb:db:b6:57:b9:37:f3:5c:
b7:ab:cf:7a:16:0e:fe:01:26:ea:87:4e:39:1b:dd:
1b:be:2b:8f:3f:55:cb:6d:ce:49:98:00:30:b9:f4:
f1:3a:72:7e:ce:63:73:24:1b:b6:ad:8e:cb:bf:92:
8b:1b:2c:f6:ba:cd:6a:c3:0b:7a:94:1c:b9:4e:7d:
ba:e4:32:4c:7c:f8:a0:d9:39:41:64:1e:70:5c:9d:
6d:1e:5e:42:9e:e9:9d:d8:95:ec:81:97:65:b5:99:
fd:77:41:d5:ab:25:af:6a:d5:c2:20:eb:23:c0:3d:
72:71:7d:a7:c4:27:8e:01:8f:b1:9c:ea:13:63:18:
09:8e:01:a1:d0:76:1d:97:3a:02:1d:a0:2c:83:24:
9f:cd:08:c0:f9:d7:5d:ab:3e:f8:9e:1f:37:e0:2d:
40:58:7c:50:97:2e:2f:b6:fc:2f:68:de:60:b9:f4:
dc:5a:0b:2e:7d:47:86:f7:fc:cf:fa:46:4a:cf:b0:
3e:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:14:B3:B1:4B:1B:8D:3E:44:D6:66:06:0A:AE:AF:0A:A7:89:4A:E4
X509v3 Authority Key Identifier:
keyid:47:37:48:B8:EB:39:BE:E9:6F:64:62:C3:B5:3C:EA:39:27:29:DE:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/473748B8EB39BEE96F6462C3B53CEA392729DEEE.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/473748B8EB39BEE96F6462C3B53CEA392729DEEE.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0654a8c3-30c8-4957-8291-a0c1f9b1839e/0/3130332e3133362e3136322e302f32332d3233203d3e20313338383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.136.162.0/23
Signature Algorithm: sha256WithRSAEncryption
10:07:50:5f:1b:56:16:e1:76:d5:a1:2a:8f:b3:38:3b:e5:7a:
a3:48:91:01:76:6b:62:42:1b:8a:05:9a:97:2a:07:77:3b:cc:
11:90:f2:70:9f:8e:96:68:14:3a:3c:99:d6:26:ad:e6:c8:7f:
ad:b1:6f:78:a2:e1:1b:5d:9a:dd:aa:b4:4d:86:c8:a8:b8:c2:
2b:19:a6:ce:04:9b:4e:aa:95:21:06:01:d9:d1:91:9a:dd:05:
50:4e:3b:40:56:cf:0b:f5:ae:b3:fd:6b:56:2d:04:05:d9:86:
31:ee:aa:28:e4:07:77:83:4c:20:0a:a9:50:46:f3:21:96:76:
4d:84:4a:43:ba:d2:0e:f7:bc:ea:47:71:43:d1:2f:c8:f8:48:
05:f8:f5:49:77:a9:bd:f2:21:b1:72:b4:64:63:dc:10:16:45:
68:76:15:38:4a:10:6a:a2:8f:46:95:bb:74:bb:dc:e3:b9:e2:
d6:13:9a:bc:6e:db:6a:04:7b:de:7c:b2:22:bd:05:e6:6d:72:
1d:97:37:f9:58:0a:fa:a3:ba:44:2f:18:71:4b:14:a7:90:21:
7e:41:94:2d:0d:46:af:3f:c2:2d:1d:54:ff:6f:59:7e:09:8e:
6e:8e:04:83:b4:5d:c3:b4:02:fc:d8:b4:6f:44:94:21:f5:8b:
a3:aa:3c:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:18:49 2025 by rpki-client