Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31302e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e31302e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: KxZqAc2HoWfhYACv0JyduArcN3ZISMh2RvaRRjDLYeY=
Subject key identifier: B8:DC:6C:F6:10:02:CA:0A:34:C8:FE:1E:75:FB:29:46:64:6D:7A:FC
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 6E2FB6CED7F0C2335A791317BA9F6542702F1179
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31302e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:03 +0000
ROA not before: Thu 31 Aug 2023 05:55:03 +0000
ROA not after: Thu 29 Aug 2024 06:00:03 +0000
asID: 10217
IP address blocks: 202.171.10.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:2f:b6:ce:d7:f0:c2:33:5a:79:13:17:ba:9f:65:42:70:2f:11:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:03 2023 GMT
Not After : Aug 29 06:00:03 2024 GMT
Subject: CN=B8DC6CF61002CA0A34C8FE1E75FB2946646D7AFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:18:9e:56:59:36:0b:b5:d2:79:36:98:62:14:
f6:e6:8a:74:c0:ab:23:f2:a4:dd:2c:ca:73:4e:61:
7e:95:25:b2:b3:64:58:ec:c5:52:02:ff:09:ca:6b:
d4:b3:4a:b9:4c:d0:f5:ad:a3:89:ee:80:6e:6d:dc:
94:aa:c1:b1:32:37:ce:04:26:b2:14:63:e7:06:05:
ed:fc:64:d1:6c:6e:6e:d3:b1:7a:52:3f:bd:81:65:
b1:d5:d5:91:d5:76:84:bf:46:ce:07:67:7d:bc:b8:
ef:8e:b6:75:3a:21:c0:66:98:93:83:49:a4:51:a6:
64:d5:51:01:ed:01:63:ca:9f:0b:44:e2:77:9e:dc:
c8:53:9e:38:1a:5d:2e:fa:a8:ca:48:a6:6b:dc:a6:
53:b1:54:51:1a:4d:f1:58:df:b2:ae:5d:5d:8e:1f:
d2:fb:17:12:b8:9e:b5:11:63:a9:74:64:6d:49:2b:
d5:c8:91:bf:b2:2a:4d:81:44:99:19:66:d0:c6:44:
69:cc:ce:9e:e1:97:5f:1a:01:5b:26:fe:ff:66:8b:
42:bf:e9:3b:41:2f:fc:d9:ab:28:05:fa:c6:0a:1e:
ed:44:93:88:cd:c5:98:fd:cd:46:f1:f6:c9:34:62:
10:c1:18:95:74:f6:1d:97:76:b5:83:a0:b1:a1:46:
d0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:DC:6C:F6:10:02:CA:0A:34:C8:FE:1E:75:FB:29:46:64:6D:7A:FC
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31302e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.10.0/24
Signature Algorithm: sha256WithRSAEncryption
23:02:47:7f:b0:cf:a0:b6:7a:42:6b:88:50:6f:5e:e1:7c:a7:
42:9a:5e:36:73:5a:ac:c4:3a:38:26:9e:a9:95:67:8f:ce:63:
31:48:3d:49:6b:ff:cc:61:bf:63:cf:5d:da:35:03:95:ec:81:
e1:b7:99:e5:6d:f1:6b:e3:ba:40:6c:e0:4c:ac:29:b7:ae:7b:
7b:e3:e9:e4:ea:d1:3c:36:74:76:47:02:ca:02:d3:2d:3c:ed:
d3:84:a5:fc:5a:e2:42:22:29:75:bd:74:81:9d:38:07:9c:52:
0e:a2:44:bf:a5:e8:67:b1:8c:3a:9e:84:e9:99:c5:44:95:14:
48:74:50:0e:66:0e:ad:39:b9:33:ff:1f:97:b5:5f:97:1d:bc:
8c:9c:7f:42:0e:a4:d3:d6:04:f5:e0:f3:a6:7a:19:60:d2:a0:
18:fa:e8:07:19:5a:6e:62:0c:6c:7f:13:21:df:79:6a:8a:5d:
dd:aa:51:95:12:a0:77:37:1c:83:a8:66:4f:b9:22:6c:f5:c0:
02:f8:2f:39:0a:aa:c0:2e:54:46:5b:07:74:51:10:d6:83:93:
7c:d1:63:8e:d8:bf:ce:b1:bb:aa:4f:6f:19:7a:61:04:98:ab:
c0:56:2e:50:e5:b7:a7:6d:99:9a:b4:be:f0:e1:aa:c7:f3:5d:
04:bb:e6:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org