Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3131392e31312e3230382e302f32342d3234203d3e203130323137.roa
File: 3131392e31312e3230382e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: WfU0CPuPWl0B+wzg5qed0WICXbFvnFhZJffOZBwGWVE=
Subject key identifier: D3:BA:1C:AE:D1:21:E7:FB:A2:D4:15:A3:2B:AD:84:81:59:40:38:BF
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 41A881703D1978766AF18427BB82C8C84F5230CD
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3131392e31312e3230382e302f32342d3234203d3e203130323137.roa
Signing time: Tue 08 Aug 2023 03:31:33 +0000
ROA not before: Tue 08 Aug 2023 03:26:33 +0000
ROA not after: Tue 06 Aug 2024 03:31:33 +0000
asID: 10217
IP address blocks: 119.11.208.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:a8:81:70:3d:19:78:76:6a:f1:84:27:bb:82:c8:c8:4f:52:30:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 8 03:26:33 2023 GMT
Not After : Aug 6 03:31:33 2024 GMT
Subject: CN=D3BA1CAED121E7FBA2D415A32BAD8481594038BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:14:e9:54:1b:63:18:7a:66:a4:18:e7:5e:e6:
0e:49:68:9c:26:cb:8e:a9:d5:3b:59:fb:c2:31:7a:
9d:37:0a:1d:06:6c:12:8d:6e:f6:9e:61:c3:ee:ac:
c9:b6:10:8f:11:d4:d6:e1:f8:54:5a:1a:f4:ee:c4:
c5:4e:3a:7c:4a:d2:a9:97:95:81:f6:7b:55:e2:cc:
2a:5f:e0:52:78:f9:65:6e:df:49:12:a1:9f:e6:1d:
93:e0:2f:50:6a:7d:16:7d:e2:e2:48:20:d1:95:20:
51:97:30:7c:74:84:bc:ce:72:a5:b6:3c:e1:f3:2a:
cc:9a:43:68:20:7f:90:0c:90:5a:44:35:e3:bc:e8:
c8:34:90:4e:21:4e:f4:fa:e8:9e:2a:8a:cb:8d:4d:
cb:36:b9:bb:8a:84:7f:71:62:b7:51:1d:76:c6:ce:
71:03:6d:a3:4d:56:a1:e3:20:8e:6a:8a:a2:ef:2f:
35:23:a6:b0:ff:46:e9:90:2d:0e:1f:5c:91:e5:d1:
0f:de:1b:19:e7:bc:f1:d6:6e:0e:79:69:e4:d9:d0:
c9:a8:91:b4:8b:22:f5:d6:d5:aa:4d:ec:c2:93:dd:
66:03:ed:a7:91:c8:5a:b6:25:10:14:b2:ba:ca:fa:
52:c0:3f:a5:cb:0e:8d:fc:cc:85:1e:70:0b:c4:75:
cd:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:BA:1C:AE:D1:21:E7:FB:A2:D4:15:A3:2B:AD:84:81:59:40:38:BF
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3131392e31312e3230382e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.11.208.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:e8:3a:96:b3:1f:55:b3:19:6f:c2:b0:29:50:dd:05:cc:de:
ed:27:43:33:81:86:7b:2f:db:ad:f8:54:07:94:45:03:f3:83:
9a:15:0a:a0:55:ac:e9:6d:d8:cd:cb:13:a9:3c:dd:c2:51:23:
1e:94:4a:a3:1e:2f:a6:b7:e8:35:8e:dc:3c:6b:c0:cf:65:40:
04:a9:ce:13:03:02:69:41:5a:33:93:00:3c:ed:c7:07:87:ee:
83:d3:c9:4f:13:7d:c5:34:69:a2:d5:3d:68:1e:2d:9a:6a:bc:
3c:34:e7:31:05:18:cb:88:05:e3:5d:90:8d:1d:d2:44:92:ba:
68:43:94:0c:75:02:d3:24:69:eb:f5:a7:ee:88:c8:2b:22:01:
30:4a:cb:19:a2:d4:6c:28:11:a4:9d:de:a4:f3:7c:ef:b3:e3:
9e:2a:78:0b:27:d6:c0:54:f7:85:78:4b:c9:af:9e:bb:ad:98:
e1:3f:32:bf:ee:5b:75:73:f7:5d:d2:48:8e:f1:96:89:a8:91:
b9:a8:7c:64:0d:78:cf:e5:c0:7d:53:6d:81:00:53:ba:20:3e:
71:17:cf:5a:c3:9e:f0:e3:3b:a9:68:c8:28:aa:2a:19:46:9d:
6d:66:16:20:82:01:f3:1a:70:74:bb:bc:d2:cd:6a:4a:93:6b:
18:8d:07:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org