Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/3130332e33392e37322e302f32332d3233203d3e20313530343838.roa
File: 3130332e33392e37322e302f32332d3233203d3e20313530343838.roa (raw, json)
Hash identifier: Wy8k4tXh0TKHvIi28nZSc4mxXZ7J8Q0A2Y/9H0Lybbk=
Subject key identifier: 4A:AC:15:7B:62:86:B2:3E:C2:1C:64:FB:67:23:3E:68:CB:E4:40:85
Certificate issuer: /CN=D6E54AF6C437868899B99F4312CD3DBB493B5D29
Certificate serial: 0221B0A5E2F13D7BCCB0FD4A802A15F6F58CBF44
Authority key identifier: D6:E5:4A:F6:C4:37:86:88:99:B9:9F:43:12:CD:3D:BB:49:3B:5D:29
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6E54AF6C437868899B99F4312CD3DBB493B5D29.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/3130332e33392e37322e302f32332d3233203d3e20313530343838.roa
Signing time: Wed 10 Jan 2024 04:00:01 +0000
ROA not before: Wed 10 Jan 2024 03:55:01 +0000
ROA not after: Wed 08 Jan 2025 04:00:01 +0000
asID: 150488
IP address blocks: 103.39.72.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 18 Nov 2024 07:42:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:21:b0:a5:e2:f1:3d:7b:cc:b0:fd:4a:80:2a:15:f6:f5:8c:bf:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D6E54AF6C437868899B99F4312CD3DBB493B5D29
Validity
Not Before: Jan 10 03:55:01 2024 GMT
Not After : Jan 8 04:00:01 2025 GMT
Subject: CN=4AAC157B6286B23EC21C64FB67233E68CBE44085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:88:da:64:0f:6d:73:69:56:44:0a:46:93:b3:
34:6f:8d:1f:69:60:43:33:36:0a:f2:8a:99:09:e9:
a5:f8:3b:73:1a:67:80:5f:95:df:4e:24:da:64:61:
da:f0:fb:f2:4d:42:78:e8:7e:ba:cf:87:02:f1:19:
1e:80:d0:05:fb:58:05:bb:f7:cc:0f:91:97:6d:87:
6d:ba:05:87:99:1f:90:a2:b6:45:65:b4:9a:ce:6e:
d9:ce:fe:e0:01:79:72:a5:41:c2:47:7c:8d:fb:d4:
b8:96:9f:f9:cc:bb:63:0a:5f:36:e8:dc:38:0b:9a:
91:10:7c:e0:f8:d4:77:46:ae:18:62:73:ba:c0:c0:
72:30:15:f4:7d:2c:31:a8:2a:1d:3f:2e:a6:03:b9:
8d:19:6b:f7:ad:aa:c3:59:b9:03:4a:b4:67:16:56:
6a:84:6a:f9:31:b9:49:df:c3:dc:ee:85:4e:59:19:
e2:ab:83:80:ab:3c:c1:ca:39:02:ec:09:eb:24:8d:
5f:12:6e:50:8d:c4:2b:8c:01:14:6e:e7:4d:d5:1c:
6b:ad:7d:fb:0c:9a:07:0e:3c:21:f2:b4:fe:ba:24:
b9:25:df:cd:dc:5b:ff:cc:80:53:99:08:9b:c7:3e:
1c:2c:aa:b8:78:c1:8f:42:f7:24:9c:86:0c:a0:2d:
2b:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:AC:15:7B:62:86:B2:3E:C2:1C:64:FB:67:23:3E:68:CB:E4:40:85
X509v3 Authority Key Identifier:
keyid:D6:E5:4A:F6:C4:37:86:88:99:B9:9F:43:12:CD:3D:BB:49:3B:5D:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/D6E54AF6C437868899B99F4312CD3DBB493B5D29.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D6E54AF6C437868899B99F4312CD3DBB493B5D29.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/10c73af5-a2c0-424d-862e-112c58b7270e/0/3130332e33392e37322e302f32332d3233203d3e20313530343838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.39.72.0/23
Signature Algorithm: sha256WithRSAEncryption
b2:d0:c2:a9:c4:25:82:2d:16:dd:60:ef:c0:74:26:0d:44:31:
95:ac:96:cb:9e:fa:81:7c:22:64:04:5e:55:03:d8:29:bd:42:
f0:49:ae:c5:c3:e6:9f:36:56:0d:52:2f:ea:b4:c3:6f:ba:70:
0f:13:b3:5b:8f:b5:c0:ca:10:98:69:f6:ff:a3:e2:d8:f2:e8:
5e:1e:e7:ed:4b:8e:bc:14:da:ad:c4:da:c7:0c:2f:70:f2:39:
86:d9:d5:c9:c2:8e:86:b8:45:e0:9c:38:b5:24:1b:dc:fb:97:
44:52:b7:7f:61:cb:e0:60:6e:52:5f:11:d8:e3:6c:36:ed:dc:
da:fd:94:f8:a8:3c:4b:9c:fb:3d:0a:62:b0:ae:32:61:d3:96:
f9:67:d3:cc:af:ba:e2:12:01:9b:93:ad:ae:85:72:a2:34:ab:
6e:9e:df:76:60:c6:fe:e2:87:22:2d:c6:97:02:5c:16:5c:40:
f6:8d:82:00:49:0f:cc:29:2f:00:27:e6:85:0b:ec:c5:19:c1:
0a:2b:dd:80:25:e5:44:f5:b3:8e:de:bd:29:8a:c8:46:15:bd:
32:60:10:2c:63:c0:77:2a:e1:d7:01:45:09:c6:75:a3:98:bb:
c2:40:6c:81:9b:e5:00:bb:6d:63:d0:6b:9a:77:d6:11:6a:94:
1b:7c:05:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 18 09:02:42 2024 by rpki-client on console-ams.rpki-client.org