Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/36302e3235332e39382e302f32342d3234203d3e203338313434.roa
File: 36302e3235332e39382e302f32342d3234203d3e203338313434.roa (raw, json)
Hash identifier: NhVxn8KOirh7n/xhVWFzHOm6P3FZl/fxgcP1Wi5xO0Q=
Subject key identifier: F8:DF:79:F2:85:CB:3E:7D:2F:AF:21:27:E9:2F:1D:35:2C:3E:9B:72
Certificate issuer: /CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101
Certificate serial: 7B0E39BE2C16A5DE04CF96ED75AD151D0938C6D8
Authority key identifier: 25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/36302e3235332e39382e302f32342d3234203d3e203338313434.roa
Signing time: Wed 13 Mar 2024 05:35:54 +0000
ROA not before: Wed 13 Mar 2024 05:30:54 +0000
ROA not after: Wed 12 Mar 2025 05:35:54 +0000
asID: 38144
IP address blocks: 60.253.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Mar 2024 05:04:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:0e:39:be:2c:16:a5:de:04:cf:96:ed:75:ad:15:1d:09:38:c6:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101
Validity
Not Before: Mar 13 05:30:54 2024 GMT
Not After : Mar 12 05:35:54 2025 GMT
Subject: CN=F8DF79F285CB3E7D2FAF2127E92F1D352C3E9B72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:35:52:fa:b3:ee:c7:9b:6e:29:fa:1e:f8:7a:
46:27:e0:ab:56:61:cd:91:a1:0c:0b:ad:a5:a4:5d:
0b:32:a6:1f:49:d3:26:f2:b5:04:ad:f5:1f:0b:c4:
16:dd:26:d7:38:55:ab:cc:82:4f:3a:09:c2:35:0a:
c9:4f:d2:af:ee:a7:7c:a7:82:72:67:89:3d:04:38:
4d:fe:fd:2c:0f:72:f3:91:df:82:90:21:d1:17:3c:
97:33:6f:b8:21:f3:94:30:d7:2d:28:3c:39:de:2a:
cc:82:d6:21:ff:6f:d2:2f:15:d7:6b:cf:0d:d4:31:
b5:94:b0:2a:c6:a0:9b:fa:c1:50:ce:aa:f5:0d:14:
b2:ad:c8:5e:55:b2:71:1e:90:58:b7:25:0f:a2:68:
b9:77:5e:5f:3e:3a:b9:f2:5d:8d:68:c3:86:54:8f:
96:ca:a1:64:c1:d6:71:87:dc:81:5b:22:63:c0:6e:
ea:72:1d:6b:b1:08:fd:66:6b:c8:4d:0a:c7:60:79:
c7:41:12:ba:65:9e:4a:20:c6:2c:18:ee:42:71:ca:
bd:43:4f:b4:c6:49:1e:58:e1:63:97:a0:1c:11:f0:
69:82:95:dc:8f:c0:53:11:e1:31:05:ba:ce:5f:cc:
ac:f3:81:c2:c6:ad:de:72:82:cf:6d:f6:eb:14:d0:
39:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:DF:79:F2:85:CB:3E:7D:2F:AF:21:27:E9:2F:1D:35:2C:3E:9B:72
X509v3 Authority Key Identifier:
keyid:25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/36302e3235332e39382e302f32342d3234203d3e203338313434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
60.253.98.0/24
Signature Algorithm: sha256WithRSAEncryption
06:87:30:f9:41:c0:ad:e8:31:1f:c1:03:c0:c5:b2:28:6f:fa:
ee:08:89:e2:ec:21:a5:5b:ae:0d:37:87:55:00:7a:7b:54:3b:
8c:13:2d:24:40:c9:5c:1a:82:b1:41:f7:e6:d8:68:71:6f:bf:
0e:36:b3:a3:fe:52:9f:82:d4:34:02:ac:90:14:a0:ae:e2:a8:
7a:a5:d1:20:4c:9d:f3:52:71:3f:28:63:9c:ce:76:d5:b6:22:
32:83:e7:2f:74:c8:ba:d9:f1:3c:1e:f6:4d:35:85:39:c1:a3:
d4:9f:be:67:41:6b:c2:89:82:75:ce:c6:5a:5c:fe:f6:da:b6:
17:3a:ef:f2:4d:ac:0f:6d:11:ea:0a:01:0a:ff:0d:4f:f8:99:
8d:5e:83:85:d6:12:9e:cd:37:69:38:01:d5:3b:23:77:7a:7c:
93:a5:17:95:8b:00:d8:3f:c9:06:88:ba:70:a4:36:f6:81:07:
0d:b9:3b:00:69:62:3b:98:0f:91:d8:93:98:bb:b7:ae:45:36:
ea:db:fa:ab:79:a2:d3:d7:c3:c8:22:d9:8d:49:8c:92:f8:cc:
4f:21:fc:07:b4:11:e5:7a:58:dd:d3:ae:78:aa:9b:30:27:3c:
d0:37:77:64:c3:8e:99:d2:37:42:c6:9b:fe:bc:a5:dc:a7:8f:
8e:cb:78:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 14 06:05:24 2024 by rpki-client on console-ams.rpki-client.org