Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/3130332e31332e3133382e302f32332d3233203d3e20313530323135.roa
File: 3130332e31332e3133382e302f32332d3233203d3e20313530323135.roa (raw, json)
Hash identifier: 33eyOMU0dyUoc+5DGhXcs/AcdOrAhRcwpPO+LScKKaQ=
Subject key identifier: 5B:14:74:3A:0F:D5:9C:E9:09:74:81:78:F3:37:BD:2E:B8:C2:DF:64
Certificate issuer: /CN=FE880CC93B6284E6833106A5BEB71A0CDDE57C0B
Certificate serial: 01B361CC2EE9420C5DE82959FBCBFCA4CDACACC2
Authority key identifier: FE:88:0C:C9:3B:62:84:E6:83:31:06:A5:BE:B7:1A:0C:DD:E5:7C:0B
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE880CC93B6284E6833106A5BEB71A0CDDE57C0B.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/3130332e31332e3133382e302f32332d3233203d3e20313530323135.roa
Signing time: Sat 03 Aug 2024 05:43:46 +0000
ROA not before: Sat 03 Aug 2024 05:38:46 +0000
ROA not after: Sat 02 Aug 2025 05:43:46 +0000
asID: 150215
IP address blocks: 103.13.138.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 03 Aug 2024 07:22:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:b3:61:cc:2e:e9:42:0c:5d:e8:29:59:fb:cb:fc:a4:cd:ac:ac:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FE880CC93B6284E6833106A5BEB71A0CDDE57C0B
Validity
Not Before: Aug 3 05:38:46 2024 GMT
Not After : Aug 2 05:43:46 2025 GMT
Subject: CN=5B14743A0FD59CE909748178F337BD2EB8C2DF64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d2:69:ad:07:53:b8:a9:b9:b5:b7:ce:74:d7:
93:30:bb:3e:33:cc:73:b9:5a:f1:14:39:16:d5:de:
f0:26:6f:c4:27:ef:c3:ea:dd:da:23:22:75:b8:c8:
4b:75:e5:4a:9f:d5:f9:89:3f:47:65:70:68:fa:ef:
1b:39:5c:2c:03:ab:57:36:85:49:8a:da:eb:a8:d7:
ab:00:00:31:f3:48:b6:64:b2:f0:f2:fe:2c:6f:33:
c0:b7:bf:48:4f:7a:e7:50:74:66:e4:f6:ac:66:9d:
9b:eb:7c:c6:ce:76:50:f5:20:f4:f4:45:7f:2c:d9:
35:b6:19:57:cd:e6:44:cb:4c:27:9a:e4:a9:21:35:
58:07:6e:45:81:2d:8d:87:27:e6:65:9d:33:d0:3f:
37:f2:08:1a:13:e1:42:2d:63:c1:18:93:c9:44:0c:
ce:ee:55:f4:6c:65:51:9a:7b:f0:ed:4f:64:31:3d:
b3:fa:64:05:df:19:d0:ff:c1:7d:49:ad:ea:65:8c:
c7:af:f4:76:d1:c6:c0:fa:aa:24:9d:7d:63:b3:c7:
a5:9e:7e:53:13:9e:c4:76:6a:95:a2:98:86:4b:fb:
47:8b:ba:d2:d6:f8:f7:19:be:9a:0a:e8:d8:1d:e8:
a5:10:5b:d9:4d:7d:5d:03:0c:5a:dd:17:f8:c2:fa:
3e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:14:74:3A:0F:D5:9C:E9:09:74:81:78:F3:37:BD:2E:B8:C2:DF:64
X509v3 Authority Key Identifier:
keyid:FE:88:0C:C9:3B:62:84:E6:83:31:06:A5:BE:B7:1A:0C:DD:E5:7C:0B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/FE880CC93B6284E6833106A5BEB71A0CDDE57C0B.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FE880CC93B6284E6833106A5BEB71A0CDDE57C0B.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1653247a-a56e-424a-a07b-36a2511d7caa/0/3130332e31332e3133382e302f32332d3233203d3e20313530323135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.13.138.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:85:04:eb:b6:7f:0b:2c:72:8b:4c:70:29:d7:ae:67:a4:45:
54:eb:82:0e:b8:e0:bf:21:f8:cc:05:51:ec:70:ee:4e:38:e6:
2b:b4:a9:0a:38:02:4d:45:f9:37:10:5e:f6:40:7a:1a:24:44:
43:fd:69:7f:dc:79:dc:ce:1f:09:e2:39:43:4e:64:38:2a:46:
5a:52:bb:ad:1b:be:a5:76:50:f2:10:08:27:4a:cd:84:d5:9d:
c6:1e:08:a0:c4:3c:e1:af:2d:6e:da:a2:70:30:19:0b:69:42:
1d:9d:22:09:d7:9f:39:f1:eb:c7:c8:44:ed:ac:1c:25:de:86:
3f:4b:1d:87:c2:2d:e6:7f:b5:63:ab:da:d1:79:50:a3:a4:d7:
ee:0c:67:e5:f4:31:2c:a6:d0:dc:41:91:8a:de:88:cf:24:e7:
50:2f:d8:fa:36:f9:5a:a2:80:e2:21:67:b3:61:df:bb:81:37:
d1:af:7c:b0:7e:df:9c:f4:2a:a9:39:25:3c:81:0f:56:82:2e:
66:6f:e9:5e:21:69:d2:c7:96:5b:57:be:42:3e:2f:df:de:13:
24:aa:b8:5d:a2:43:3d:fe:30:ed:1f:87:6e:4f:0d:2b:19:e8:
b8:57:8f:74:6a:40:4d:0c:a5:4d:a0:ef:1a:a8:e4:dd:e2:2a:
b6:7f:b4:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 3 09:12:38 2024 by rpki-client on console-fra.rpki-client.org