Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3131392e31312e3133362e302f32312d3231203d3e203130323137.roa
File: 3131392e31312e3133362e302f32312d3231203d3e203130323137.roa (raw, json)
Hash identifier: EGWfccrGm82D50wzIBbJon9oz1PPp+1YuEQL09qwPSc=
Subject key identifier: 59:A8:09:E9:79:25:AE:F1:69:CB:85:A2:C3:00:18:1D:E4:43:8C:54
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 62995644A987433A25E26C5263212688B076F62C
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3131392e31312e3133362e302f32312d3231203d3e203130323137.roa
Signing time: Wed 22 Nov 2023 08:38:36 +0000
ROA not before: Wed 22 Nov 2023 08:33:36 +0000
ROA not after: Wed 20 Nov 2024 08:38:36 +0000
asID: 10217
IP address blocks: 119.11.136.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:99:56:44:a9:87:43:3a:25:e2:6c:52:63:21:26:88:b0:76:f6:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Nov 22 08:33:36 2023 GMT
Not After : Nov 20 08:38:36 2024 GMT
Subject: CN=59A809E97925AEF169CB85A2C300181DE4438C54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:36:e4:db:62:44:d5:c2:38:cf:66:a8:14:7a:
96:2c:53:b7:8b:f3:7b:b4:ef:ff:87:59:1d:4b:be:
db:45:df:44:1a:12:76:fa:08:10:6c:3b:e6:a7:a6:
80:cf:36:b4:3c:14:32:a8:12:8d:31:3d:22:d5:ac:
28:99:f9:55:d7:4b:89:63:cf:0c:cb:61:f7:d1:26:
4e:db:71:32:db:06:76:cf:80:91:13:38:eb:23:20:
0a:35:fb:91:95:e7:85:64:15:d4:00:68:71:3d:42:
e5:8b:4c:a0:39:ec:e9:ac:0c:70:af:4f:70:f0:81:
c7:e2:48:4a:52:a5:81:a8:7a:50:8a:ae:e3:e8:d3:
a0:48:82:89:2f:9d:ec:c2:a8:fc:a9:6d:a1:9b:32:
12:15:21:5c:b2:6c:b5:e5:67:3b:e1:6d:35:97:2c:
64:ae:5b:b7:63:ee:15:44:b4:1f:ab:02:9d:fd:51:
3e:76:80:2a:0e:15:d8:c1:49:4c:64:62:44:59:3c:
c5:ee:52:ab:60:33:0a:8d:d0:d7:49:95:21:ec:c3:
73:2d:96:d9:6c:8b:4e:f8:c5:77:7a:8a:11:f0:9b:
a0:ff:70:8b:09:a6:0b:c3:97:19:74:3a:e8:e1:32:
3a:a0:f8:5f:0e:39:9a:9e:4b:b4:26:4f:c9:81:2b:
a0:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:A8:09:E9:79:25:AE:F1:69:CB:85:A2:C3:00:18:1D:E4:43:8C:54
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3131392e31312e3133362e302f32312d3231203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.11.136.0/21
Signature Algorithm: sha256WithRSAEncryption
95:e1:0d:58:3f:f4:97:f5:83:6c:51:94:97:78:a4:81:60:d1:
af:60:78:22:f7:cc:99:64:97:a3:b8:3a:69:99:cd:40:db:6f:
89:f6:56:19:ac:cf:6d:bf:e9:d0:2c:da:f2:da:30:fe:ea:e5:
59:d2:de:87:f4:b9:84:cc:93:f9:b3:a8:aa:dd:5c:ec:50:07:
38:13:3b:67:8c:d6:6c:b5:53:27:18:df:82:aa:af:0f:45:7c:
e9:a4:48:26:a6:3d:4c:ad:9f:72:fa:28:93:07:4c:70:17:78:
ea:47:0b:e3:8c:4c:54:e9:e5:83:ef:73:0f:7e:ca:4f:24:52:
1a:08:a2:53:dd:48:09:0b:35:3a:b3:9a:55:dd:b1:2c:85:83:
13:b5:b8:a6:5a:54:b4:d4:b9:a1:81:26:7b:3e:ae:36:80:1a:
80:e7:4c:9e:a8:53:f7:9a:a0:2a:05:3f:a8:35:dc:50:12:b0:
8e:0b:a7:65:b8:70:a2:1a:bc:6c:3d:c5:16:57:eb:2b:d8:0d:
8f:6d:4b:97:4a:16:da:ca:ba:00:73:f9:70:f7:8b:71:31:ea:
67:2f:32:0e:33:d0:36:61:df:8d:e1:00:ae:87:aa:c5:bd:5c:
ac:13:3d:2b:e5:49:ec:53:c5:aa:d2:f9:88:00:69:74:48:62:
36:dd:37:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org