Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e302e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e302e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: OwZx/vSibPKTcJnuuqDqcsBgNRlDv2RuMNkV3W3DR64=
Subject key identifier: 23:DD:C2:CE:7D:B7:E4:58:69:52:F5:78:FE:12:8B:B8:20:AB:AD:9B
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 042B6ABA7B66B63A14D9CBABFBFEF6E3CCC0D4B8
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e302e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:05 +0000
ROA not before: Thu 31 Aug 2023 05:55:05 +0000
ROA not after: Thu 29 Aug 2024 06:00:05 +0000
asID: 10217
IP address blocks: 202.171.0.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:2b:6a:ba:7b:66:b6:3a:14:d9:cb:ab:fb:fe:f6:e3:cc:c0:d4:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:05 2023 GMT
Not After : Aug 29 06:00:05 2024 GMT
Subject: CN=23DDC2CE7DB7E4586952F578FE128BB820ABAD9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:72:aa:01:71:17:20:ad:b9:82:40:d5:08:45:
92:d9:bd:1f:8a:a9:2b:44:8c:95:1d:8d:1f:f0:6b:
42:25:ec:bc:85:4d:fc:6a:d6:88:aa:b8:5b:98:30:
cd:a2:09:6e:6f:c1:5c:45:f8:22:b3:72:85:fe:43:
d4:c4:88:cb:7e:c2:86:f0:bb:ab:9c:41:d1:4d:fd:
34:ce:0f:b0:64:10:e9:28:77:70:49:17:d1:8f:93:
17:1b:f9:e7:30:2c:4f:a1:8e:3d:ee:5b:56:08:da:
a2:a3:72:50:17:55:ed:b3:25:3d:8d:6c:d3:c6:5a:
9b:bd:e8:10:93:b7:47:3e:47:35:aa:29:5f:0f:1f:
0f:22:9d:7a:a7:30:76:85:5d:c4:03:96:03:46:b3:
6f:97:d1:e6:8d:56:47:e0:83:67:ff:57:c0:72:67:
29:08:9f:8e:a8:cb:9c:72:c3:ae:da:c9:db:cb:ca:
58:92:9c:cd:ac:5f:cf:73:e4:bb:f8:a2:bb:2c:fa:
ac:28:3d:f6:5d:1c:c2:45:9b:45:13:6f:a9:21:6f:
69:99:cd:5e:8e:33:a5:8a:f3:ab:b5:6e:c8:a2:d4:
b6:6c:0a:78:79:9b:54:80:93:94:45:89:57:e1:73:
52:63:bf:0b:c0:8c:40:58:ba:28:58:06:4c:17:37:
2f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:DD:C2:CE:7D:B7:E4:58:69:52:F5:78:FE:12:8B:B8:20:AB:AD:9B
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e302e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.0.0/24
Signature Algorithm: sha256WithRSAEncryption
27:fb:49:2e:3b:d2:d0:49:60:b1:a1:bc:4e:ff:67:18:80:59:
aa:b8:1d:b4:17:b7:07:32:fd:5b:52:92:e0:f9:49:58:9a:38:
fe:46:d4:23:5c:35:d8:93:eb:ee:6e:9c:ab:e0:bd:35:5c:c3:
c3:3d:13:5a:f4:28:17:15:54:c5:a7:d5:ab:19:32:cc:d2:2b:
ee:7f:19:c1:38:12:68:b5:47:2c:dd:eb:04:91:a3:56:98:68:
46:5b:61:8a:a6:ec:27:d7:0a:f3:1c:49:4a:0b:07:f5:00:62:
90:dc:b5:89:53:43:98:ac:3b:56:4e:67:f8:7b:1c:3f:74:35:
0f:24:df:10:26:3b:a1:46:ca:11:b5:bd:6d:f2:ff:59:88:16:
e5:92:db:04:91:3e:ed:b3:a3:b3:1f:0a:60:e2:1e:e2:73:49:
a8:61:3b:bf:3d:b1:53:5a:18:5c:dd:ef:fa:b8:09:34:4b:4e:
c4:17:0d:92:06:90:1e:6a:67:1c:88:4d:7f:8d:8f:fa:06:cc:
1d:c0:17:33:2f:55:f2:e2:8f:89:a6:ce:06:93:0c:ac:07:55:
e3:5e:dc:69:52:73:65:a6:5a:d0:7c:32:69:33:5b:15:69:32:
f4:b5:fc:e2:c2:0e:c8:64:68:dc:66:ad:bd:32:e8:39:ff:24:
de:b1:73:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org