Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230302e302f32312d3234203d3e203436303239.roa
File: 3131372e3132312e3230302e302f32312d3234203d3e203436303239.roa (raw, json)
Hash identifier: U2h2iJK31Mh+cPiEF1oMGsyRJEduBP+wnpM0z9zJpx8=
Subject key identifier: 85:42:BB:6C:34:15:04:5B:D4:E1:D0:54:EB:EF:6B:17:F7:97:BB:4B
Certificate issuer: /CN=45FD71C7EFF830D20E960225B4A971A14B081364
Certificate serial: 6816D8C037A5F7BC6DB49B680740315C8082B222
Authority key identifier: 45:FD:71:C7:EF:F8:30:D2:0E:96:02:25:B4:A9:71:A1:4B:08:13:64
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45FD71C7EFF830D20E960225B4A971A14B081364.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230302e302f32312d3234203d3e203436303239.roa
Signing time: Mon 01 Jul 2024 01:05:19 +0000
ROA not before: Mon 01 Jul 2024 01:00:19 +0000
ROA not after: Mon 30 Jun 2025 01:05:19 +0000
asID: 46029
IP address blocks: 117.121.200.0/21 maxlen: 24
Validation: Failed, certificate revoked on Fri 04 Apr 2025 12:50:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:16:d8:c0:37:a5:f7:bc:6d:b4:9b:68:07:40:31:5c:80:82:b2:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45FD71C7EFF830D20E960225B4A971A14B081364
Validity
Not Before: Jul 1 01:00:19 2024 GMT
Not After : Jun 30 01:05:19 2025 GMT
Subject: CN=8542BB6C3415045BD4E1D054EBEF6B17F797BB4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:30:b1:22:5f:f9:2f:15:5f:97:54:67:ef:1a:
c9:37:6c:f3:7b:1a:12:a7:db:df:14:c9:75:10:4a:
67:12:7a:ae:0a:df:e3:e8:b8:52:08:48:2f:30:e3:
76:3a:5b:15:9a:1c:51:56:0d:ff:b9:e5:21:be:33:
29:de:21:e0:a1:91:8b:fa:dd:7e:59:2b:77:ac:95:
d1:40:f2:de:15:4f:d6:e1:af:5d:d1:ca:97:41:82:
f5:e5:f5:a8:ad:f3:49:50:86:3e:5e:43:26:d4:97:
7e:6f:4b:81:53:0f:cb:f9:3e:3d:bf:31:6d:cd:87:
d4:48:f9:bc:9a:c1:c9:ac:e7:60:5d:46:7d:9d:26:
af:02:a8:07:8f:1f:f4:fb:e9:ba:4a:b3:2e:fc:5a:
e5:bc:52:37:90:f9:96:9f:3e:16:1e:21:4d:0d:fd:
f6:7e:a9:e1:4e:22:f3:da:42:96:e4:43:6a:9c:17:
2f:51:99:19:a7:b8:da:75:1a:2f:8f:fc:ef:c2:22:
38:13:c4:d2:84:9e:8c:93:05:7f:99:fd:21:66:41:
fc:fd:ce:88:ce:bc:4e:96:b9:2c:d7:9a:10:0f:a2:
01:ac:f9:45:61:01:50:67:0a:1c:85:52:bd:f8:71:
9b:16:22:fc:5c:38:2e:80:21:b3:20:fa:36:41:eb:
12:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:42:BB:6C:34:15:04:5B:D4:E1:D0:54:EB:EF:6B:17:F7:97:BB:4B
X509v3 Authority Key Identifier:
keyid:45:FD:71:C7:EF:F8:30:D2:0E:96:02:25:B4:A9:71:A1:4B:08:13:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/45FD71C7EFF830D20E960225B4A971A14B081364.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/45FD71C7EFF830D20E960225B4A971A14B081364.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/153b067c-ecc9-4dca-987d-b9576815f855/0/3131372e3132312e3230302e302f32312d3234203d3e203436303239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
117.121.200.0/21
Signature Algorithm: sha256WithRSAEncryption
88:f9:36:98:dd:47:cc:3a:a4:fe:79:7b:12:c5:cf:b6:e4:6e:
fd:98:75:f9:f7:1a:7f:35:66:0f:7d:7e:c0:0e:37:4f:6f:39:
01:97:0b:4a:ad:48:97:03:7c:5b:7d:e4:12:57:42:22:23:21:
08:44:f2:d6:8b:3f:9c:12:01:12:8e:4b:48:ac:ca:82:18:b1:
5f:07:f0:0e:15:e1:f2:63:62:81:70:51:47:e2:a1:3f:b0:f1:
1c:f0:f1:5a:f1:98:f9:ab:06:37:f4:c3:a6:00:82:1b:16:03:
46:70:a7:77:c8:b8:6d:8e:02:27:bb:d4:ef:0c:69:e5:49:18:
67:8a:80:6d:22:e1:0f:de:ce:09:6a:14:10:6e:12:76:e6:ab:
31:06:63:41:3b:70:41:55:81:dd:78:cf:c0:b0:4c:a7:e9:1c:
2d:97:8a:37:e3:6b:70:3c:3c:77:33:32:ef:ca:6c:66:29:8f:
2e:44:6c:ca:67:7b:dd:3c:76:96:6e:b1:2b:2e:30:07:19:a3:
82:51:39:93:9c:57:e0:4c:56:5c:53:d3:46:13:75:2f:36:3c:
5b:61:55:61:d2:c7:b6:cb:d6:2a:0c:2d:69:b2:fb:85:e5:53:
a7:ef:41:ac:2a:41:7f:2c:84:ff:74:44:f5:28:46:41:69:78:
92:f1:e5:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:32:56 2025 by rpki-client