Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31302e302f32332d3233203d3e203130323137.roa
File: 3230322e3137312e31302e302f32332d3233203d3e203130323137.roa (raw, json)
Hash identifier: nKwoqPaaRe+PqAWRSW2PazhIpqAsJKN2D/O1UOMECn4=
Subject key identifier: B1:37:E0:9A:D8:DA:60:FB:43:33:E0:8A:23:BE:9E:99:44:40:96:B8
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 29AA8B0C04169E7C6B0EF1D9EAE1F118C3123100
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31302e302f32332d3233203d3e203130323137.roa
Signing time: Fri 17 Nov 2023 07:16:28 +0000
ROA not before: Fri 17 Nov 2023 07:11:28 +0000
ROA not after: Fri 15 Nov 2024 07:16:28 +0000
asID: 10217
IP address blocks: 202.171.10.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:aa:8b:0c:04:16:9e:7c:6b:0e:f1:d9:ea:e1:f1:18:c3:12:31:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Nov 17 07:11:28 2023 GMT
Not After : Nov 15 07:16:28 2024 GMT
Subject: CN=B137E09AD8DA60FB4333E08A23BE9E99444096B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:3b:71:52:a0:c1:d8:35:52:33:2a:ee:d0:21:
18:86:68:17:5e:13:37:3a:49:7b:0e:27:3c:40:31:
6d:12:d5:22:a9:bf:19:46:f6:49:17:8b:45:97:ed:
70:75:62:f7:dc:ca:dc:6c:7b:70:11:d8:88:16:0a:
39:37:e1:fc:d5:1a:56:b4:fb:cf:03:70:78:82:30:
6c:4a:8a:f6:08:e1:e4:73:7e:83:c4:86:bc:ae:de:
af:31:09:06:95:06:3b:12:5c:de:cb:06:a2:53:48:
9e:10:73:ce:0f:64:e2:3e:ee:16:e2:2c:9e:a5:e6:
ba:6c:09:7d:3c:58:da:c2:8b:40:44:e8:8b:57:67:
06:b9:b5:6a:6a:cc:ca:13:42:5c:d4:cc:ec:c4:1e:
d1:96:19:82:93:e4:58:60:8c:99:0c:ed:5e:6a:1b:
d1:99:d0:5b:99:27:49:a3:13:71:84:1b:7e:62:a5:
fa:81:14:41:38:8e:1c:f7:70:26:60:e4:62:68:cd:
b6:6c:cb:95:fc:90:28:69:be:46:02:ef:f5:87:cc:
99:ed:4f:e2:75:13:78:65:4b:ed:c0:34:84:20:d3:
f2:2c:a4:87:d2:24:1d:9d:89:ad:a2:47:5e:b2:ab:
7c:d5:a9:25:f0:64:72:7a:51:eb:00:4b:93:c2:03:
e6:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:37:E0:9A:D8:DA:60:FB:43:33:E0:8A:23:BE:9E:99:44:40:96:B8
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31302e302f32332d3233203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.10.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:1c:c9:59:fc:1b:04:3a:ff:67:57:53:1a:a0:cc:2d:0a:ee:
c0:35:42:fe:5a:2c:a2:12:2a:67:94:d4:a7:bb:6b:0d:fe:80:
a9:80:d9:3c:29:eb:b8:bd:78:66:02:60:c1:0b:75:fb:55:69:
14:f4:64:ea:a5:d8:d8:9d:57:ce:1c:85:61:52:5b:3e:56:e4:
a1:a2:a9:ed:06:9a:1b:6e:f9:73:bb:3e:e9:cb:26:d3:c0:17:
ac:6f:75:7c:9e:cd:6a:34:df:3e:12:00:02:56:34:e5:58:a8:
06:9d:0c:59:df:6e:8b:72:bd:ad:82:6c:ca:9d:ad:09:c7:93:
16:b7:c9:8a:ed:13:30:1d:c8:e3:35:b9:9a:35:f8:3e:28:77:
85:2e:15:5d:92:9c:14:18:ea:3a:08:bc:7f:b6:db:03:30:79:
86:94:46:a3:51:15:24:ca:5d:d2:4e:6f:e8:c3:48:5d:0f:d7:
c1:58:c0:30:92:2f:b6:b1:37:18:66:ac:81:03:06:f4:7c:64:
e8:76:c1:c7:a7:f1:e4:06:a7:ca:fe:a1:85:e1:4b:9e:35:d6:
e4:04:b6:08:5a:0b:92:31:26:30:a2:91:be:c0:6d:86:87:c7:
a8:2a:a1:4d:23:99:b9:49:e0:ae:08:c4:ff:46:7e:5f:21:b2:
7e:66:05:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org