Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e302e302f32312d3231203d3e203130323137.roa
File: 3230322e3137312e302e302f32312d3231203d3e203130323137.roa (raw, json)
Hash identifier: olZ2x9D+diWFeO32iv4vpymS7hJVKKZZJcXKO/tGbfk=
Subject key identifier: 22:86:08:28:CE:25:54:9A:9A:76:BE:31:8C:4F:6B:B4:2F:69:80:B4
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 10E3C6D1FF4BB941D8A699BD66F1FC484F010C33
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e302e302f32312d3231203d3e203130323137.roa
Signing time: Wed 15 Nov 2023 04:50:48 +0000
ROA not before: Wed 15 Nov 2023 04:45:48 +0000
ROA not after: Wed 13 Nov 2024 04:50:48 +0000
asID: 10217
IP address blocks: 202.171.0.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:e3:c6:d1:ff:4b:b9:41:d8:a6:99:bd:66:f1:fc:48:4f:01:0c:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Nov 15 04:45:48 2023 GMT
Not After : Nov 13 04:50:48 2024 GMT
Subject: CN=22860828CE25549A9A76BE318C4F6BB42F6980B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:fd:a9:34:03:01:81:00:c9:21:40:0b:be:f9:
af:85:af:90:a9:45:96:ad:fc:9d:7f:4a:04:ef:92:
ab:99:c1:a0:22:96:6a:0a:b5:2e:12:ad:36:9a:d4:
48:0b:7b:f1:8e:8a:29:89:76:88:05:c9:a2:07:ef:
e1:2f:3d:20:27:e5:d3:d7:22:3e:e1:82:6b:79:14:
da:1a:e2:20:e2:e5:cf:3a:88:f4:e3:cb:c8:08:47:
64:b5:78:65:d4:55:b1:30:72:26:6e:3e:63:f1:46:
f6:05:d5:b9:36:b0:26:a4:9b:bc:9e:80:25:90:83:
8e:41:37:39:74:5f:c2:74:68:c7:de:72:3e:d7:15:
37:02:a9:78:1a:20:d3:91:0e:fa:83:9b:b6:e8:55:
c5:36:86:9e:f7:9d:e6:d6:84:97:9a:57:f3:33:ee:
cb:54:2f:5b:9e:c2:19:7f:02:6e:37:7d:5e:b2:21:
d5:64:eb:c6:34:70:30:bc:3b:80:11:a6:86:3b:b7:
15:a0:11:45:97:91:30:7d:d0:27:a9:9f:ce:98:4e:
a2:2c:f1:3a:6c:90:93:15:44:c2:e0:08:d2:78:26:
90:ac:1f:80:2c:64:8e:99:a6:d5:c8:3b:da:a9:d0:
01:ab:3b:52:25:23:a9:25:00:7e:46:02:69:a4:51:
33:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:86:08:28:CE:25:54:9A:9A:76:BE:31:8C:4F:6B:B4:2F:69:80:B4
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e302e302f32312d3231203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.0.0/21
Signature Algorithm: sha256WithRSAEncryption
22:d4:03:c6:30:5f:d8:46:b4:9e:07:90:2f:61:e5:26:84:32:
b1:46:1f:c8:6e:c3:4a:55:a8:ae:59:93:e4:cc:2b:a0:04:a9:
c2:1a:cc:bb:c5:40:55:5b:1a:a1:72:b1:04:5f:e4:d5:e8:1c:
de:97:fd:40:cf:c2:e9:eb:fd:6b:e1:f7:ba:23:79:1f:47:0c:
21:fa:24:c9:15:a1:82:c6:79:08:75:34:6f:8a:df:59:66:e1:
56:bb:2b:c0:bf:ad:06:02:89:16:bb:a2:49:93:2c:8b:a5:f9:
a5:89:70:da:e0:47:cb:67:08:d0:cb:19:e0:4f:f4:d7:57:c9:
7d:e1:34:ad:c4:c2:dc:06:6b:c4:9c:b4:45:d2:68:f9:37:51:
d1:da:3e:59:04:ff:50:3f:a7:c1:35:77:43:bd:fb:fc:67:34:
3a:81:90:f7:2e:5c:a5:5d:ac:fe:c9:76:fb:9d:4c:ec:1d:50:
37:4b:43:2a:73:a5:34:35:05:0b:04:92:eb:c2:2a:9c:1b:4b:
61:74:ea:06:1f:f3:ab:69:89:87:75:db:3f:54:0f:1a:94:8a:
1a:25:2d:00:30:a4:1b:07:6f:93:25:3f:91:bc:75:63:88:24:
d6:52:82:54:8c:f4:80:5f:dd:c5:2a:20:9d:af:98:ef:b5:1b:
40:36:c8:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org