Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31362e302f32302d3230203d3e203130323137.roa
File: 3230322e3137312e31362e302f32302d3230203d3e203130323137.roa (raw, json)
Hash identifier: jNlmSGpriOpc1rxfdP2e20OSDsW42NqRYndyUx+FXX0=
Subject key identifier: 9D:C0:6B:17:22:E4:2F:63:E7:BD:CC:D5:36:29:E8:2B:83:30:97:6E
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 7464DBAA6F17D24BEDB8724D381F42E2492685F1
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31362e302f32302d3230203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:01 +0000
ROA not before: Thu 31 Aug 2023 05:55:01 +0000
ROA not after: Thu 29 Aug 2024 06:00:01 +0000
asID: 10217
IP address blocks: 202.171.16.0/20 maxlen: 20
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:64:db:aa:6f:17:d2:4b:ed:b8:72:4d:38:1f:42:e2:49:26:85:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:01 2023 GMT
Not After : Aug 29 06:00:01 2024 GMT
Subject: CN=9DC06B1722E42F63E7BDCCD53629E82B8330976E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1b:6f:4f:66:4b:0d:20:11:2b:89:2c:c5:74:
4b:ec:85:d7:5c:7b:76:02:93:7f:42:0c:04:7a:8c:
ae:35:7f:e9:de:fd:b3:b2:0b:2e:a4:27:1b:3b:e8:
da:d7:be:29:a7:c6:79:e4:f4:4e:ae:57:66:d9:fb:
53:e8:c1:73:4c:ff:ae:bc:ad:cb:cd:aa:64:cd:17:
14:6f:7d:57:34:d0:b9:1a:79:b1:64:72:79:13:87:
98:0c:e4:62:a3:f2:89:7d:59:36:ee:c4:43:e7:c1:
01:9c:73:ad:76:13:07:71:70:df:9d:67:f4:0c:29:
43:a9:23:d5:20:58:4d:b7:6c:e7:20:b4:0e:70:92:
f3:0e:9a:f7:e3:c5:57:dd:2b:d6:8d:0a:98:e2:56:
7e:f6:57:9c:1d:82:18:6e:60:ca:cd:0b:35:96:68:
58:17:40:da:b1:03:7b:0e:4d:b9:0c:ec:4f:6c:00:
9b:c8:8e:f4:cc:25:bd:0c:27:f8:92:ff:b4:67:a7:
6f:00:43:7b:2e:a0:59:07:69:3d:80:3a:72:25:4b:
be:c9:d0:e9:03:1f:96:ed:76:92:75:83:5b:80:2b:
6f:91:1b:c6:73:34:8e:bc:71:32:b2:25:f5:d4:44:
bc:39:5e:2e:d1:bf:b9:d4:4b:5a:fc:bb:f7:24:6f:
93:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:C0:6B:17:22:E4:2F:63:E7:BD:CC:D5:36:29:E8:2B:83:30:97:6E
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31362e302f32302d3230203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.16.0/20
Signature Algorithm: sha256WithRSAEncryption
41:f7:34:f7:6d:d3:48:e8:8a:d2:8c:45:b5:88:a8:67:75:ca:
c5:37:9e:a0:b6:de:da:ce:47:f8:a9:63:b9:11:bc:14:a1:f3:
f0:2f:29:49:b1:4c:39:05:9e:9c:80:59:77:51:34:c8:5d:29:
9f:1e:28:bd:2f:ec:1f:01:b7:c6:87:c1:27:29:ad:09:f7:56:
f5:6a:46:7b:a3:dc:9f:fe:57:76:f0:47:75:e5:b9:4a:19:b6:
f1:29:f4:0a:79:09:56:ba:23:d4:4e:0e:83:24:85:a5:c1:fe:
c0:89:8e:d0:2f:52:ca:d3:0a:6a:87:7c:cf:28:2a:0b:8e:4d:
2e:23:8a:bf:12:40:78:8f:b8:d4:a7:c1:b4:03:72:58:c3:08:
65:5c:12:77:e6:2c:de:bd:a2:2f:ad:69:d2:08:78:c4:f5:17:
32:88:24:88:b1:bc:b3:9e:ac:59:68:af:86:2a:03:d4:89:96:
a4:be:c7:ec:c4:9f:2b:ea:ec:e0:b0:24:96:17:bb:e4:58:c7:
7b:1d:4e:33:9d:4a:97:dc:6c:75:da:be:08:c9:d6:88:37:67:
21:ac:ed:04:52:e9:8c:f4:ec:2e:8c:50:03:3f:f3:c1:d5:c8:
5d:0f:f4:8d:82:c5:89:3e:8e:61:b9:12:f7:19:cb:64:9a:34:
be:7c:b5:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org