Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/3130332e3138392e3234382e302f32332d3234203d3e20313439383838.roa
File: 3130332e3138392e3234382e302f32332d3234203d3e20313439383838.roa (raw, json)
Hash identifier: lcnZMqyPyLbWdZ/QIDdrpfdV9++Vw2pEEsM//kl3708=
Subject key identifier: D1:32:73:7B:3C:84:9A:7C:EF:B0:DF:CD:B8:5F:C4:52:25:45:45:20
Certificate issuer: /CN=E2CDAA223BFB6F2B13973EB80353ED211C9F21C9
Certificate serial: 567084557D2C3FC9A64A05D3DAFED2945C396668
Authority key identifier: E2:CD:AA:22:3B:FB:6F:2B:13:97:3E:B8:03:53:ED:21:1C:9F:21:C9
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2CDAA223BFB6F2B13973EB80353ED211C9F21C9.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/3130332e3138392e3234382e302f32332d3234203d3e20313439383838.roa
Signing time: Tue 05 Dec 2023 07:00:01 +0000
ROA not before: Tue 05 Dec 2023 06:55:01 +0000
ROA not after: Tue 03 Dec 2024 07:00:01 +0000
asID: 149888
IP address blocks: 103.189.248.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 23:51:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:70:84:55:7d:2c:3f:c9:a6:4a:05:d3:da:fe:d2:94:5c:39:66:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E2CDAA223BFB6F2B13973EB80353ED211C9F21C9
Validity
Not Before: Dec 5 06:55:01 2023 GMT
Not After : Dec 3 07:00:01 2024 GMT
Subject: CN=D132737B3C849A7CEFB0DFCDB85FC45225454520
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:49:23:b3:39:97:c7:b8:f3:21:f4:c3:d3:8f:
fa:d8:ee:f6:ca:b9:46:46:13:d7:a2:bc:cc:53:e6:
91:47:f6:e1:ea:6b:db:27:39:52:e5:49:3b:98:87:
48:ba:f7:15:83:03:be:8e:7d:be:c9:37:71:90:83:
22:2a:fd:59:44:c4:6a:ae:33:c7:c1:c6:97:f1:c6:
7e:c6:1e:74:76:6c:17:fa:59:59:be:06:e1:af:74:
4c:9b:a4:50:dc:5a:78:e8:47:6a:61:49:c5:68:58:
56:1e:e9:43:48:d7:a4:7d:44:47:e6:6e:ba:7b:7b:
00:ab:db:c9:4c:9a:19:03:c0:94:a9:97:47:e1:db:
26:61:5d:6c:a7:f5:96:97:ae:e0:2e:e8:c8:d5:3e:
43:a7:0d:71:26:d8:9f:ec:d3:ac:19:90:a7:46:80:
8f:04:e7:6f:c1:e3:f1:86:d5:e6:49:17:5d:3f:16:
41:8e:86:77:c7:a7:11:57:78:7d:87:ad:58:cd:1b:
d9:9d:b5:ce:91:b0:df:e4:16:9f:d9:9d:62:95:ce:
56:fa:71:81:e5:91:79:51:3e:b5:b0:b3:3e:83:80:
36:d6:98:7a:a1:7f:6f:62:3f:bc:51:4f:05:28:e1:
7e:38:06:54:28:f8:5b:4b:b9:1d:8d:e0:35:ee:e0:
54:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:32:73:7B:3C:84:9A:7C:EF:B0:DF:CD:B8:5F:C4:52:25:45:45:20
X509v3 Authority Key Identifier:
keyid:E2:CD:AA:22:3B:FB:6F:2B:13:97:3E:B8:03:53:ED:21:1C:9F:21:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/E2CDAA223BFB6F2B13973EB80353ED211C9F21C9.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/E2CDAA223BFB6F2B13973EB80353ED211C9F21C9.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1df4164e-74e5-40d6-9a30-b372a4d2a454/0/3130332e3138392e3234382e302f32332d3234203d3e20313439383838.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.189.248.0/23
Signature Algorithm: sha256WithRSAEncryption
a5:11:a6:22:8d:35:cc:fc:5a:a6:f7:90:3b:71:4a:30:f0:a6:
9c:89:4b:ae:08:61:c1:6b:db:7e:d0:cc:dd:5c:99:2b:4c:ae:
88:15:61:a1:93:77:25:79:78:f3:8e:41:f0:da:27:f3:77:27:
a4:df:02:ee:2e:f4:a9:6f:bd:8b:fc:96:ba:73:d6:18:38:cf:
1d:8f:b3:03:49:0e:9e:cb:fb:6b:1f:f9:23:72:01:bb:c3:ad:
71:8d:7d:ae:25:b4:b1:8e:84:7d:38:0e:46:f1:8b:e8:28:78:
d0:70:c8:18:94:88:19:9c:cf:b2:8d:d5:e4:5b:eb:25:60:59:
ed:ff:39:2d:f5:7e:b8:52:8d:5d:2b:73:85:42:8b:60:b3:ba:
9d:62:5b:3f:67:31:92:b6:ce:83:d1:87:96:06:41:c2:06:17:
d8:55:b0:41:74:96:8f:91:af:98:3b:cf:6f:1b:2d:ab:ed:96:
31:ba:2f:da:78:e7:95:7c:08:09:c6:22:d7:5d:ce:65:6f:8e:
55:a6:af:a0:24:1f:3a:6e:ef:84:e9:4a:3c:ce:0a:86:79:6c:
17:e7:c4:8c:79:c5:5f:86:76:05:24:ce:dd:d5:65:c8:61:69:
d9:b7:da:d9:b3:0c:6a:a8:53:21:4f:db:4d:3c:38:8e:7f:b3:
3b:90:28:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:01 2024 by rpki-client on console-fra.rpki-client.org