Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235322e302f32342d3234203d3e20313532373530.roa
File: 3135372e32302e3235322e302f32342d3234203d3e20313532373530.roa (raw, json)
Hash identifier: xOzigRErFODQdDARf5QM/i0Y/lZ+YPGavEVLu/65CLs=
Subject key identifier: 3D:69:81:CF:98:87:F1:FC:F8:4E:7A:F6:F5:A2:24:CD:B6:5C:DB:40
Certificate issuer: /CN=04D3D2E060243AD917D4F682922E4A805EDE3300
Certificate serial: 3E6A371C5F2E482000A915448D36A8B438526E43
Authority key identifier: 04:D3:D2:E0:60:24:3A:D9:17:D4:F6:82:92:2E:4A:80:5E:DE:33:00
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235322e302f32342d3234203d3e20313532373530.roa
Signing time: Thu 30 May 2024 09:24:17 +0000
ROA not before: Thu 30 May 2024 09:19:17 +0000
ROA not after: Thu 29 May 2025 09:24:17 +0000
asID: 152750
IP address blocks: 157.20.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Oct 2024 04:18:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:6a:37:1c:5f:2e:48:20:00:a9:15:44:8d:36:a8:b4:38:52:6e:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04D3D2E060243AD917D4F682922E4A805EDE3300
Validity
Not Before: May 30 09:19:17 2024 GMT
Not After : May 29 09:24:17 2025 GMT
Subject: CN=3D6981CF9887F1FCF84E7AF6F5A224CDB65CDB40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f1:02:a4:6f:79:b3:28:04:b2:01:27:24:46:
26:6d:e1:c7:c7:06:df:dc:91:41:3b:30:b7:83:46:
72:e0:bc:93:fa:be:02:c7:1b:1d:22:6e:32:9c:0f:
98:fb:bf:93:9b:ed:15:08:bc:ce:ef:4d:93:75:35:
f9:ea:4f:fd:8c:82:99:86:73:11:aa:f4:ec:ed:f9:
02:1b:4f:64:93:3f:16:e5:8b:24:2c:76:37:56:de:
65:61:f5:23:5f:96:75:7f:16:51:e8:ec:87:42:4c:
e7:28:9c:8d:5b:81:80:0a:fa:02:82:7e:f6:0a:4f:
db:0d:b7:cf:8d:0d:96:59:8c:91:34:b5:86:ae:e6:
7a:43:f1:0f:7f:6c:7e:57:4e:b4:f8:7c:56:fa:82:
b4:a3:ff:f3:9e:f6:cb:95:e2:48:1d:51:c6:53:b9:
f3:d2:5e:4b:f3:9b:5c:cf:43:af:59:29:2e:3f:a8:
35:dd:9e:df:fd:74:31:0a:21:0c:27:e6:9e:32:6b:
89:ca:28:6e:57:a4:4d:4b:59:44:51:17:c3:a0:d9:
0f:a6:45:29:60:30:fa:15:8f:4e:41:46:9e:13:93:
10:6d:96:e9:b5:8e:81:cd:80:ac:10:59:ee:5d:ed:
12:5b:a7:df:b5:c1:cd:bb:6d:48:40:38:d6:77:28:
54:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:69:81:CF:98:87:F1:FC:F8:4E:7A:F6:F5:A2:24:CD:B6:5C:DB:40
X509v3 Authority Key Identifier:
keyid:04:D3:D2:E0:60:24:3A:D9:17:D4:F6:82:92:2E:4A:80:5E:DE:33:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/04D3D2E060243AD917D4F682922E4A805EDE3300.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/04D3D2E060243AD917D4F682922E4A805EDE3300.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0e8d58a8-e197-4179-b73c-608e047d09a3/0/3135372e32302e3235322e302f32342d3234203d3e20313532373530.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.20.252.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:63:92:83:df:81:b2:62:ae:41:23:c1:c9:89:a6:00:55:df:
9a:e7:70:58:61:e4:17:33:21:18:22:b3:91:74:ad:33:8e:0f:
8f:3b:8c:53:d3:f8:33:e1:66:df:2f:1f:73:57:9f:e8:17:ff:
5b:a4:71:34:e3:90:21:55:0f:dc:50:7b:a6:c5:e0:a0:dd:04:
61:d9:3f:d7:26:31:b9:93:34:20:29:1e:00:d2:20:fb:97:18:
69:bc:c9:a3:89:12:f2:37:ba:3f:71:41:8f:f2:0e:99:34:59:
9e:ae:db:a5:16:78:bf:67:bd:68:00:90:55:92:bb:0b:ed:be:
c3:01:a2:77:a8:de:df:95:7e:d9:68:27:b3:bd:15:f9:38:56:
a4:fd:a0:d6:fd:c1:39:2f:84:30:77:e3:13:a6:a9:56:37:3f:
8a:e4:8a:c5:b7:d1:f1:bf:50:59:0d:08:79:64:ed:e9:7e:cc:
8b:b7:63:12:3c:5f:88:2e:54:d4:64:e3:64:c0:8c:22:cf:e2:
ce:9d:9b:61:98:a3:35:f3:83:de:81:e4:e0:f5:fc:75:1e:d7:
ff:e1:76:a6:86:29:19:6c:52:22:d4:a7:08:1b:be:57:38:62:
78:7f:8b:01:ee:22:b5:75:46:29:1c:da:f8:dc:04:34:32:ff:
5e:f2:79:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 07:28:39 2024 by rpki-client on console-fra.rpki-client.org