Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31322e302f32322d3232203d3e203130323137.roa
File: 3230322e3137312e31322e302f32322d3232203d3e203130323137.roa (raw, json)
Hash identifier: qwQXIHwewygWDpXsAT5DeXABuFNqn4wNxqbiSzqyBBU=
Subject key identifier: 84:53:D5:47:FE:F4:CA:F4:26:49:D5:A5:E2:39:33:49:15:BE:96:DF
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 2D6F43114F9625B8D89E288745D4BF2D2ECD115A
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31322e302f32322d3232203d3e203130323137.roa
Signing time: Fri 17 Nov 2023 07:07:20 +0000
ROA not before: Fri 17 Nov 2023 07:02:20 +0000
ROA not after: Fri 15 Nov 2024 07:07:20 +0000
asID: 10217
IP address blocks: 202.171.12.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:6f:43:11:4f:96:25:b8:d8:9e:28:87:45:d4:bf:2d:2e:cd:11:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Nov 17 07:02:20 2023 GMT
Not After : Nov 15 07:07:20 2024 GMT
Subject: CN=8453D547FEF4CAF42649D5A5E239334915BE96DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:29:c8:ea:79:7a:2c:6d:2f:1f:7b:06:01:7c:
79:e6:66:53:d9:28:7e:fb:01:6d:f6:19:3f:84:95:
47:b4:e2:02:64:a4:fe:7d:e1:2b:d3:c1:64:80:40:
0d:d7:40:50:c9:aa:f9:16:db:9e:6f:5e:4a:92:0e:
41:83:27:a9:9a:46:94:c6:31:b9:9e:9b:05:17:ec:
ef:92:c8:8c:3f:7e:b3:be:3b:c4:21:26:4a:5f:a8:
5c:d3:9f:46:bc:ae:7e:8c:f9:5e:7a:4f:bb:0b:66:
8e:31:e6:53:66:85:25:1d:97:0f:5c:56:f5:55:93:
75:2a:98:b3:15:17:d8:89:43:ef:28:41:c0:af:6b:
96:a6:09:bc:6d:2f:01:cd:8c:9a:68:ea:71:3a:cf:
11:47:37:bf:dd:5b:dc:fb:57:18:93:6f:32:3a:1d:
d8:01:fc:9d:26:9b:a8:90:b8:9d:0c:7c:12:43:92:
57:47:b8:3f:94:b0:f2:2e:57:65:4d:64:38:8c:55:
86:03:b3:fd:74:a8:ad:6c:91:1c:79:e8:d3:18:3a:
95:2b:07:9c:bc:2f:a0:1c:42:42:b0:3e:cf:0d:08:
3f:6d:2d:4f:44:dd:ce:a4:ba:4e:47:8a:16:b4:22:
9a:60:95:59:f3:1f:5d:aa:e8:d4:9a:3d:4d:06:22:
bd:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:53:D5:47:FE:F4:CA:F4:26:49:D5:A5:E2:39:33:49:15:BE:96:DF
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31322e302f32322d3232203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.12.0/22
Signature Algorithm: sha256WithRSAEncryption
64:93:80:6d:d4:9c:d1:e7:c4:95:05:98:52:e1:c1:b2:f8:59:
9f:ea:af:c2:0d:6d:21:78:0d:b8:da:54:f6:23:46:d7:6e:a0:
a8:f1:62:a4:94:58:3a:fc:2c:18:49:ea:3e:25:40:d2:ed:ac:
c3:c1:75:28:b0:bb:03:6e:23:08:b0:6f:5e:d1:26:15:9f:b9:
f4:af:ef:b6:cd:13:ab:6e:d3:5f:19:09:a9:3b:50:b6:36:66:
de:a5:35:ef:cc:c9:25:62:7e:3e:1d:f7:2d:64:10:8f:05:de:
6e:c6:f0:64:2c:4a:e6:99:83:b0:15:bc:07:d7:bb:56:66:66:
44:b4:d2:ba:3e:7c:05:29:3a:94:65:c4:6e:52:25:4f:c5:f6:
61:b6:bd:c9:01:cf:f7:74:36:96:c6:fa:91:4f:96:b4:28:6a:
16:ab:9f:bb:62:74:d9:f6:c7:ce:6c:ac:b2:87:1c:51:1b:7e:
da:bb:6b:fe:71:8b:f9:65:da:e2:7d:c3:02:fc:0f:9b:fa:7c:
18:a1:47:5b:13:9d:c6:a0:06:4e:b4:e8:a8:35:0f:c7:f1:30:
29:c3:87:a3:16:d0:6a:9e:c0:b8:98:10:35:80:27:7d:36:87:
ec:3d:b6:da:37:9d:e4:4b:72:f3:ce:fb:ab:b4:53:65:e0:00:
51:e6:08:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org