Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3131392e31312e3139322e302f32302d3230203d3e203130323137.roa
File: 3131392e31312e3139322e302f32302d3230203d3e203130323137.roa (raw, json)
Hash identifier: qleTxwM0/qEstS1/N4/ekR+wLnfbnG56LjoFmYuAngY=
Subject key identifier: 4C:D0:8F:1A:95:D2:65:57:2C:27:B1:6A:CB:E5:44:C9:CD:9A:41:4D
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 350CD3C6B25B5552EA60B4375138A5E7C979B077
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3131392e31312e3139322e302f32302d3230203d3e203130323137.roa
Signing time: Wed 22 Nov 2023 08:28:27 +0000
ROA not before: Wed 22 Nov 2023 08:23:27 +0000
ROA not after: Wed 20 Nov 2024 08:28:27 +0000
asID: 10217
IP address blocks: 119.11.192.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:0c:d3:c6:b2:5b:55:52:ea:60:b4:37:51:38:a5:e7:c9:79:b0:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Nov 22 08:23:27 2023 GMT
Not After : Nov 20 08:28:27 2024 GMT
Subject: CN=4CD08F1A95D265572C27B16ACBE544C9CD9A414D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3d:cb:77:c9:12:56:ff:e4:f4:c4:5f:3c:27:
c2:ac:84:fe:b9:69:93:6c:10:c1:78:a5:3e:8c:5b:
57:92:aa:c3:42:67:00:92:b6:45:6b:2a:c6:cd:88:
3b:6a:86:54:27:46:d0:86:78:c8:f6:c9:98:3e:29:
66:00:50:39:d6:ab:74:b3:3a:86:98:86:b3:70:e7:
25:46:4c:e6:ed:0d:a1:85:65:7f:33:75:2c:b3:ed:
44:12:2e:b1:bd:2b:55:14:05:4e:9f:2c:98:7b:76:
57:c7:39:e7:be:9e:c6:1b:6c:62:be:d8:89:60:82:
e0:cc:09:f1:6b:bc:49:ba:38:af:07:01:31:33:01:
84:10:4c:71:80:83:eb:89:ba:4d:61:1b:cf:a0:5f:
85:4a:73:66:13:99:50:76:de:25:b7:ca:4d:f6:57:
a9:26:5b:44:2a:84:a3:62:04:72:c2:5c:ce:04:8a:
a7:4d:e7:1b:6e:59:7c:48:55:cd:a6:4b:15:87:db:
07:ea:2f:fa:9a:83:3c:4e:7b:d6:1d:dd:5d:39:1a:
e2:88:b6:84:60:f4:e9:3f:74:5b:3e:4a:70:5a:8b:
a7:7d:0d:87:25:90:b9:aa:cb:4a:b6:6e:4b:9e:12:
ba:1f:84:56:29:1e:71:8e:bb:d2:45:b0:f9:51:5c:
ce:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:D0:8F:1A:95:D2:65:57:2C:27:B1:6A:CB:E5:44:C9:CD:9A:41:4D
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3131392e31312e3139322e302f32302d3230203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.11.192.0/20
Signature Algorithm: sha256WithRSAEncryption
5e:e3:37:b2:e9:40:cf:8f:ae:98:d0:4a:a2:4c:8f:0c:54:8d:
8b:66:1d:c9:aa:7b:82:49:ed:c2:da:4f:a8:f2:a1:05:ee:8e:
7b:44:4f:42:5d:12:a8:47:6a:21:a5:72:b5:b2:56:66:d9:6e:
3b:1b:f0:27:a7:44:2b:92:94:8d:06:5d:19:0f:4d:7b:6c:3b:
be:f7:24:07:0e:ce:c5:97:30:23:be:4f:23:b1:11:e7:73:55:
54:eb:5f:d7:11:ba:73:99:9f:37:43:b8:83:bb:1c:98:e4:60:
38:b7:2d:c9:b6:f2:05:4b:c9:b8:2c:8f:d5:2d:f1:04:49:f4:
09:dd:4b:5d:4b:04:eb:03:72:aa:9d:c2:34:c4:6e:78:b1:a1:
06:86:19:7a:b4:c8:13:8d:72:fe:f4:67:34:05:f1:33:db:ae:
06:80:23:73:b7:45:e8:c9:df:f5:0b:43:47:da:16:70:a9:44:
62:58:18:3d:34:cd:06:ba:d3:cb:9d:bd:41:4b:64:a0:ae:5d:
05:62:18:a7:56:70:11:45:f5:1f:65:6b:f6:84:ef:18:03:d8:
2d:ff:21:ff:20:f6:97:49:96:12:4b:9e:46:76:5c:55:9f:33:
05:93:7b:3e:5c:4e:33:47:c2:e3:f2:81:26:62:01:c3:59:7f:
ab:f6:93:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org