Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3131392e31312e3132382e302f31372d3137203d3e203130323137.roa
File: 3131392e31312e3132382e302f31372d3137203d3e203130323137.roa (raw, json)
Hash identifier: IhgpdujkbMGhaFcf7nL7YR0R5QE15tEEB3El/aeQSPg=
Subject key identifier: 47:0C:E7:40:C1:14:17:31:7D:D9:78:5F:2B:D0:EC:70:AC:B8:77:81
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 02F887B592CCCBEABB8FF6E36C16A4FA937E41F0
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3131392e31312e3132382e302f31372d3137203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:03 +0000
ROA not before: Thu 31 Aug 2023 05:55:03 +0000
ROA not after: Thu 29 Aug 2024 06:00:03 +0000
asID: 10217
IP address blocks: 119.11.128.0/17 maxlen: 17
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:f8:87:b5:92:cc:cb:ea:bb:8f:f6:e3:6c:16:a4:fa:93:7e:41:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:03 2023 GMT
Not After : Aug 29 06:00:03 2024 GMT
Subject: CN=470CE740C11417317DD9785F2BD0EC70ACB87781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ae:a8:00:a4:a1:ae:22:63:77:c7:2d:3e:94:
2a:18:44:6d:2b:f7:fb:c2:75:9c:20:62:7e:f7:63:
d5:8a:bc:60:ac:c8:53:5a:58:33:ed:a5:c9:97:cc:
36:0e:e1:9a:a5:2b:04:9f:a2:8e:87:36:16:72:68:
cb:2a:73:95:6d:09:9f:58:c1:03:c6:1a:fc:3c:cb:
93:05:1a:05:34:19:44:1e:1d:0b:5f:f4:c1:39:45:
eb:fa:03:e2:90:73:73:b4:08:6e:6a:fb:cb:f5:c4:
9b:f5:a1:33:92:85:f5:25:92:8b:01:c9:a3:ab:93:
c0:13:38:d6:89:9e:5b:4d:de:5e:6d:a6:60:16:c4:
71:82:10:02:dc:77:6d:88:0d:f4:3a:9e:3f:b5:89:
64:7b:7c:2c:3e:e3:44:01:c3:7e:7b:c5:45:e0:81:
85:9f:01:02:87:1e:84:bc:b7:58:48:19:c0:a4:1d:
c2:24:d8:15:94:b4:35:c1:9f:e9:ed:1b:27:ae:90:
ab:4a:40:d7:e5:92:79:c8:40:32:85:83:46:9c:4e:
bf:5f:3d:26:cc:29:8c:7a:30:7c:8f:59:d9:65:8b:
eb:56:db:ab:ab:b6:45:cc:f7:99:b5:fd:71:c7:c1:
57:2e:4f:a9:c4:10:6c:66:8a:94:42:4e:cf:c7:19:
e7:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:0C:E7:40:C1:14:17:31:7D:D9:78:5F:2B:D0:EC:70:AC:B8:77:81
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3131392e31312e3132382e302f31372d3137203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.11.128.0/17
Signature Algorithm: sha256WithRSAEncryption
1c:ae:db:f0:f1:0b:27:fe:6e:17:55:77:30:0a:78:7d:20:29:
33:7d:c8:85:99:69:79:c5:73:d0:7a:4c:7d:4f:27:36:5d:cb:
5a:31:4b:3d:ec:32:7e:80:0f:b7:d4:29:2f:05:64:5b:cb:95:
c2:60:54:f7:34:8b:b1:c1:5b:ed:48:d3:28:c4:25:fe:e8:e9:
11:44:a5:1c:0b:f0:9c:ea:84:f3:0b:ca:b7:0d:45:9b:34:50:
07:15:76:31:ff:7a:4e:d4:1c:2b:7a:c4:12:cd:6b:9b:77:70:
cd:e8:61:a0:6c:59:cf:4f:39:16:a1:95:da:ba:6b:62:fc:b7:
58:6d:f8:0c:81:a5:e6:77:dc:23:e7:63:d3:52:b3:37:1d:82:
bf:9b:02:8e:60:14:17:56:c5:45:5b:65:4a:4d:cf:80:77:a2:
3b:4b:1e:51:f3:87:90:b9:8f:9a:3e:ac:b3:82:ad:49:80:ee:
de:bc:71:2e:fa:1a:55:f6:87:c1:64:52:f8:79:80:bf:63:e9:
ca:a7:16:45:af:d7:09:23:04:97:ac:63:75:cb:ec:77:ef:88:
9a:82:a3:61:2d:60:21:40:55:e5:09:34:e2:e7:24:8e:91:e0:
f7:d9:7b:b8:5e:e0:b8:90:bf:7c:2e:54:a3:b5:81:e8:47:cf:
19:ae:8e:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org