Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3131392e31312e3235312e302f32342d3234203d3e203130323137.roa
File: 3131392e31312e3235312e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: 98JeIazJy5rDA5qpDVoK++yLwvhp2+Zkzv2PSCkL/lY=
Subject key identifier: 34:87:68:44:C0:CA:01:66:35:BE:C7:CC:25:8E:C9:9C:4C:1B:D7:0D
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 0CD0AA81DA5A7462E7D3721721885768CF5221C3
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3131392e31312e3235312e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:03 +0000
ROA not before: Thu 31 Aug 2023 05:55:03 +0000
ROA not after: Thu 29 Aug 2024 06:00:03 +0000
asID: 10217
IP address blocks: 119.11.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:d0:aa:81:da:5a:74:62:e7:d3:72:17:21:88:57:68:cf:52:21:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:03 2023 GMT
Not After : Aug 29 06:00:03 2024 GMT
Subject: CN=34876844C0CA016635BEC7CC258EC99C4C1BD70D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b1:94:69:de:1e:05:39:e1:df:86:26:5c:fb:
13:4a:e3:04:28:da:ef:13:08:cf:8a:eb:10:dc:00:
af:ba:83:83:05:ad:31:d8:59:27:03:bf:e0:35:11:
eb:80:79:48:6f:fb:6a:23:3d:29:56:64:ca:af:73:
f1:11:7c:d0:36:42:f1:21:43:3d:ee:51:fd:b9:30:
b6:45:bb:1e:9a:ec:55:56:f3:1b:ad:a7:af:c0:8d:
0e:24:77:fc:57:7a:8a:66:8b:0d:7f:45:20:70:14:
de:d2:07:48:2e:36:ef:0d:b0:b5:58:29:7a:97:63:
4f:6d:4b:6c:c5:ee:e8:2a:84:55:77:2a:8e:6e:35:
3d:34:4c:8d:c5:ca:11:33:80:fb:e5:97:b4:13:f0:
99:9d:6f:63:a0:76:c6:50:4e:fc:7d:6c:50:96:19:
0b:08:aa:9d:89:a3:1a:25:e3:12:26:ba:68:3f:fc:
39:78:ab:57:54:0c:dc:69:1d:68:29:1f:42:92:61:
ab:f1:bc:e2:41:39:0b:de:d9:3f:6b:44:1f:0e:f3:
4b:97:e0:d3:7c:3a:e7:c5:19:2e:c8:15:c5:31:0d:
9d:72:53:76:ad:09:df:54:44:17:79:ee:f1:14:f1:
9f:7d:77:e2:70:89:4a:97:ef:b8:7a:36:d5:86:8d:
bb:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:87:68:44:C0:CA:01:66:35:BE:C7:CC:25:8E:C9:9C:4C:1B:D7:0D
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3131392e31312e3235312e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.11.251.0/24
Signature Algorithm: sha256WithRSAEncryption
07:53:a9:3d:0e:53:cd:5e:9e:ef:0d:2a:8a:19:61:84:01:73:
4a:cb:21:9d:7b:0c:49:a5:36:72:80:3b:d9:ff:37:cf:77:7a:
21:68:fe:d0:36:0f:ab:88:2d:cb:dd:3b:26:d0:95:e0:87:3a:
73:a2:f2:69:a9:d1:51:f4:a8:e0:0a:55:46:19:c2:c2:6e:af:
5f:41:a4:e4:14:e4:8b:cb:e2:78:a5:34:37:41:89:a7:28:48:
73:f4:31:06:3f:75:22:63:a1:57:71:57:d4:45:0b:57:8d:f6:
71:ec:46:ca:d9:e0:0c:8a:82:14:57:20:54:27:7e:e8:e2:3c:
b6:91:88:99:ef:06:9c:58:96:a3:d0:9b:a5:98:55:75:08:b1:
4d:44:18:08:cc:de:1a:3e:9a:0d:f8:bf:22:4f:91:84:71:7f:
99:e4:c1:e7:7c:4f:a9:dd:16:29:7e:36:7e:2c:8e:8e:84:aa:
55:e9:1c:67:39:1f:82:ed:6e:b9:57:4e:9a:c6:10:d6:29:34:
56:a5:d1:01:20:28:9b:5f:88:ef:7c:2d:74:97:5a:f3:d9:1b:
b5:c6:68:0c:f0:1e:64:06:e8:16:f2:d6:cd:ff:f3:78:bb:6a:
59:e7:e0:99:9c:d6:7c:bf:3d:4b:a7:c7:9a:5e:9b:99:3c:9d:
f9:1e:fd:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org