Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e312e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e312e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: wWJhzgFQ3JjJ5Hib1I6DA1fPJFZneFpa93DaU+fFxo4=
Subject key identifier: F9:F5:7C:98:BC:EA:44:15:BB:2A:B7:ED:D5:39:D8:47:25:84:A6:EF
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 480530AD383C2CA4E5C6C178AB45A6645605D3BE
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e312e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:06 +0000
ROA not before: Thu 31 Aug 2023 05:55:06 +0000
ROA not after: Thu 29 Aug 2024 06:00:06 +0000
asID: 10217
IP address blocks: 202.171.1.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:05:30:ad:38:3c:2c:a4:e5:c6:c1:78:ab:45:a6:64:56:05:d3:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:06 2023 GMT
Not After : Aug 29 06:00:06 2024 GMT
Subject: CN=F9F57C98BCEA4415BB2AB7EDD539D8472584A6EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ed:1a:f5:bf:96:81:2c:59:2b:ad:c2:39:f6:
5b:db:d1:3a:0f:29:44:63:6d:23:ac:c6:0d:47:35:
5b:cb:c2:6b:86:bd:a0:a6:27:1b:91:6f:a1:51:d7:
5a:54:bc:91:e0:24:a2:64:70:f9:e3:82:3e:7f:82:
b3:f8:88:2e:31:2b:7a:24:ec:b6:8e:c5:de:03:e9:
c8:2f:e6:78:e2:12:24:c0:36:60:2d:4d:b8:c1:ed:
4f:12:9c:16:a3:ad:3a:5d:98:1c:b0:d8:f6:36:99:
43:f0:28:25:0d:9a:11:8a:78:fa:f2:c9:6f:eb:58:
2c:24:11:e1:32:4e:2e:16:ee:b9:69:c3:13:88:cf:
67:61:e8:10:f6:12:ab:a8:d1:a6:dc:7b:12:7c:c2:
a0:25:79:8c:ea:c5:a7:ac:09:1a:1c:29:86:a0:e2:
0b:8f:75:ba:cf:eb:18:05:80:f4:56:5c:97:f1:f3:
74:35:18:cb:b9:ab:11:3f:d5:fc:f4:23:25:c1:63:
db:5c:44:7e:dc:8f:05:50:78:fd:65:c8:e0:d9:9f:
68:e1:47:1b:c4:12:a6:d2:82:dc:11:42:83:1a:39:
5c:21:ba:71:81:8a:be:7b:32:07:52:d7:55:ec:6b:
56:b3:e7:7d:09:cb:57:a4:5a:dd:e2:24:28:55:15:
c7:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:F5:7C:98:BC:EA:44:15:BB:2A:B7:ED:D5:39:D8:47:25:84:A6:EF
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e312e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.1.0/24
Signature Algorithm: sha256WithRSAEncryption
90:4e:f4:66:fd:f8:d3:90:5b:82:f1:a8:fa:b5:50:e2:58:3d:
ec:d6:05:cc:96:7e:80:53:3d:5d:7b:57:04:d6:e5:55:55:15:
97:38:8d:b1:67:14:5c:ce:80:8b:66:f5:aa:b7:04:d0:48:0e:
96:d4:b1:f0:95:7a:35:70:67:a4:17:ce:cb:fd:81:92:9d:53:
81:84:c4:d4:43:1a:13:8c:12:1e:da:bb:7c:0c:2a:0f:fe:60:
c8:53:06:19:de:77:2e:95:d6:ee:f6:72:d6:61:cb:0f:24:bc:
00:33:52:84:ef:61:df:77:82:c9:be:54:e6:3c:ef:f6:01:61:
24:ca:6f:c4:d7:75:cb:73:f7:00:91:fd:ba:5a:77:03:49:a8:
22:3d:30:44:73:a5:d2:f7:e0:42:ab:3b:e5:67:82:7b:33:65:
7b:17:66:f3:21:74:3a:cf:e3:ca:f1:3e:2b:eb:0d:1d:8d:2c:
b6:a4:c1:ab:7b:ce:5c:5b:16:ed:b0:02:97:2f:93:aa:96:f6:
65:ba:27:34:10:2a:5c:93:06:b0:56:f4:ab:96:e6:52:70:e2:
a8:15:14:61:62:d9:33:d4:06:56:b2:52:5b:23:e2:88:2c:df:
ce:6c:09:0b:2f:4e:bd:6d:aa:98:e9:80:fb:90:fa:00:e6:ec:
95:59:0c:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org