Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31312e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e31312e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: wnkHfwqn+3f5PgY+kJxuaEfCLol5ACho704gtV7amxQ=
Subject key identifier: 19:7F:95:B2:4F:17:AF:F2:D8:5C:63:34:5A:41:87:73:47:DB:0D:BE
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 4F2E324FEDF6740D98C68B14B9D1E5CF484F841A
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31312e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:02 +0000
ROA not before: Thu 31 Aug 2023 05:55:02 +0000
ROA not after: Thu 29 Aug 2024 06:00:02 +0000
asID: 10217
IP address blocks: 202.171.11.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:2e:32:4f:ed:f6:74:0d:98:c6:8b:14:b9:d1:e5:cf:48:4f:84:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:02 2023 GMT
Not After : Aug 29 06:00:02 2024 GMT
Subject: CN=197F95B24F17AFF2D85C63345A41877347DB0DBE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:3f:c9:bf:9c:f2:c7:57:34:4e:88:a8:b2:06:
cc:84:0a:23:d5:c9:a5:4d:9b:e4:88:d7:9a:30:c9:
66:51:79:83:dd:30:38:9b:77:65:2e:72:61:20:8a:
e7:ae:6e:fd:9e:10:c4:65:0c:17:40:ca:44:b6:7e:
e5:0f:1e:f8:fe:7b:84:b6:71:3e:e0:61:93:fd:5c:
4a:dc:8e:f8:3f:39:91:19:9b:df:0f:2c:53:14:0e:
2b:69:6c:56:31:cd:8e:84:e8:1b:f4:1b:80:ac:9a:
70:42:18:52:38:9b:92:99:91:ba:d6:ca:40:1a:f0:
41:a0:d0:71:4f:27:34:f7:8c:f6:06:e4:a3:de:45:
09:1c:05:3c:6a:07:ee:db:2e:4e:74:58:c9:2b:c1:
11:53:cf:1b:56:b9:27:ec:b6:f4:6f:4b:c1:1f:1d:
f1:4b:05:31:97:08:4d:40:d9:53:58:c7:15:1c:7f:
b4:25:40:0d:d3:37:63:6a:af:87:91:b2:2e:7e:f0:
5f:20:f9:cc:fb:2f:c0:55:0f:d3:10:ed:b1:85:87:
f5:ec:c7:49:37:0b:2c:c0:d9:f5:a5:64:a4:53:98:
0d:91:66:ff:dc:70:4b:03:b2:22:d0:8f:be:31:40:
9e:f9:ef:7b:86:6a:07:7b:14:c4:dc:a2:79:44:bd:
ab:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:7F:95:B2:4F:17:AF:F2:D8:5C:63:34:5A:41:87:73:47:DB:0D:BE
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31312e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.11.0/24
Signature Algorithm: sha256WithRSAEncryption
03:c4:f4:8c:1d:af:20:fb:7e:bb:e6:e7:d7:99:3e:b8:f6:4a:
a8:00:1d:f8:03:e3:6e:64:45:e1:a5:27:36:ef:e7:27:a1:f9:
b3:b8:a4:82:2e:31:e6:3d:6a:38:4a:1b:ef:7a:dd:06:bb:da:
75:70:e2:66:d4:34:67:5e:49:4e:f1:5f:53:a5:4f:6e:d8:93:
09:48:83:48:d6:de:54:3e:8a:d7:d1:c0:d8:31:d8:9a:1a:11:
84:4c:20:bd:6f:91:e3:94:a3:8e:b0:ff:ed:f0:86:ab:84:4e:
ce:38:0f:e0:4f:d9:3a:bc:7d:58:8f:a4:e7:80:42:99:96:64:
a0:68:b2:0e:a8:2f:b2:51:88:cf:79:16:99:c6:d0:ba:c7:b5:
00:d0:ec:35:78:c7:ae:4b:ef:ec:59:e1:21:df:34:bd:77:7b:
81:99:2e:2e:57:c8:ef:b4:fb:14:13:02:d9:e8:76:dd:df:db:
3e:75:ad:4b:45:c2:94:f9:29:0a:c1:88:dc:c9:c6:4a:5b:af:
b6:5e:88:86:07:ad:5a:4f:d7:9b:37:68:55:87:ce:58:85:e1:
48:d2:ba:9d:28:41:5b:b5:ae:40:7e:b4:c4:96:68:cb:13:ef:
e9:79:f0:3a:9c:7a:53:50:b4:37:12:f4:72:46:79:79:53:96:
79:9f:41:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org