Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32312d3231203d3e203138313132.roa
File: 3230322e35372e31362e302f32312d3231203d3e203138313132.roa (raw, json)
Hash identifier: 58Bp8+geqeFcU82yDtQwdPHXrvhNqb1Bvz+mWLAzT48=
Subject key identifier: C1:D1:7D:7C:E3:BD:D6:0B:A8:46:3D:E6:C8:4D:5B:E7:AA:21:E4:01
Certificate issuer: /CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Certificate serial: 3F69D614AD21DF82AA6A32AFABF19BC71A1C9E79
Authority key identifier: 1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32312d3231203d3e203138313132.roa
Signing time: Tue 18 Apr 2023 06:00:00 +0000
ROA not before: Tue 18 Apr 2023 05:55:00 +0000
ROA not after: Tue 16 Apr 2024 06:00:00 +0000
asID: 18112
IP address blocks: 202.57.16.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:69:d6:14:ad:21:df:82:aa:6a:32:af:ab:f1:9b:c7:1a:1c:9e:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F969EE9B0838D22156118A888B81BF27B859BD5
Validity
Not Before: Apr 18 05:55:00 2023 GMT
Not After : Apr 16 06:00:00 2024 GMT
Subject: CN=C1D17D7CE3BDD60BA8463DE6C84D5BE7AA21E401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:3c:3e:4c:d3:2a:7b:8c:d3:1d:f7:95:54:c0:
d9:83:3d:83:5d:dc:1b:78:e3:ec:b9:14:3b:01:9b:
81:5d:48:5b:f5:4d:ba:1b:aa:f9:e7:65:42:fe:11:
d1:5f:00:e6:29:4e:37:0f:88:13:37:8a:bc:d2:b8:
5f:18:82:3c:32:83:a3:0a:a8:9b:f4:bf:63:91:63:
c2:14:80:4c:b6:b7:35:15:14:2e:ca:fa:bd:f1:75:
6a:56:59:19:2e:cc:21:c9:85:6b:76:01:d4:15:9f:
79:46:42:5d:78:3c:7c:66:9f:28:6b:cc:cd:bd:fc:
03:12:81:2f:de:bb:b8:d4:ea:6a:f3:50:6f:8f:5f:
94:89:ea:c6:5a:56:b9:a8:04:06:90:6a:dc:1a:99:
50:cf:4f:d4:4f:c5:29:32:7f:98:f3:36:05:cd:a9:
cc:b9:3a:2d:6e:67:f8:65:65:8e:bd:47:38:d5:07:
ef:57:a5:f0:89:cd:b9:cb:c4:15:e7:93:f6:96:7e:
fa:46:90:df:3a:6a:0b:5a:f7:5b:4d:2f:a9:20:06:
86:d3:94:f5:8a:c5:41:b0:1a:28:4c:fa:ec:57:c6:
4d:7c:03:9f:24:cb:f1:ed:68:53:25:de:53:8c:7a:
c8:d6:f4:80:fe:1f:d6:9d:65:92:2c:c8:0b:15:d9:
6a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:D1:7D:7C:E3:BD:D6:0B:A8:46:3D:E6:C8:4D:5B:E7:AA:21:E4:01
X509v3 Authority Key Identifier:
keyid:1F:96:9E:E9:B0:83:8D:22:15:61:18:A8:88:B8:1B:F2:7B:85:9B:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/1F969EE9B0838D22156118A888B81BF27B859BD5.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1F969EE9B0838D22156118A888B81BF27B859BD5.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0d3f095b-7130-4122-af25-7d2e7a11b1b1/0/3230322e35372e31362e302f32312d3231203d3e203138313132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.57.16.0/21
Signature Algorithm: sha256WithRSAEncryption
91:c8:74:9e:4b:a7:15:dc:0c:1c:d3:1c:fa:31:5c:2e:9b:2f:
f9:6d:84:09:98:04:c5:4c:9d:30:b9:18:96:93:52:78:bf:9f:
6e:2d:5b:76:15:49:18:ef:35:ce:60:d9:9c:d0:4f:5e:7a:84:
28:da:0f:29:d6:36:cb:28:99:96:41:d4:3b:80:b8:2b:52:91:
c3:f2:2d:06:b2:1c:96:c7:db:04:1d:b7:7e:8d:89:46:82:75:
fe:1d:20:f9:1b:b2:2f:5b:fc:76:1d:88:b2:97:ff:a6:f8:49:
d5:43:7c:64:3b:d8:20:2c:ad:ba:e1:b8:a6:f3:f9:5e:19:5e:
95:f0:64:fc:2b:a2:22:ac:3f:c3:0c:23:00:d2:bb:88:58:53:
36:d8:51:27:42:89:28:ca:d5:ba:f6:0a:75:96:6d:22:e0:b3:
1e:2f:fc:09:90:05:cc:c3:3a:3d:bc:64:bb:04:35:b8:54:32:
a8:62:02:51:ab:a4:d8:70:cb:8d:d9:76:17:c3:14:32:bd:82:
91:f5:b0:7b:4f:21:6c:81:04:3a:36:52:00:a6:37:a4:f0:f7:
d1:dc:2e:4a:f3:65:e7:cd:83:c9:cf:7d:33:76:0b:2d:d2:a2:
65:f8:e5:b7:de:9a:50:83:3c:50:53:d4:89:59:2c:4b:bc:05:
bf:e8:4e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:59 2023 by rpki-client on console-ams.rpki-client.org