Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31362e302f32312d3231203d3e203130323137.roa
File: 3230322e3137312e31362e302f32312d3231203d3e203130323137.roa (raw, json)
Hash identifier: yRD4jjcr3cp/GI2XAW3IIVnSXdlgOQIik4s/Pr0/HRA=
Subject key identifier: 8A:B1:2E:17:7B:9E:F4:DD:95:C9:96:92:25:4C:7E:6F:6E:BE:6A:D3
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 4D0E5B141841DC56EDC384AE74CEFE8016BD306B
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31362e302f32312d3231203d3e203130323137.roa
Signing time: Fri 17 Nov 2023 07:01:15 +0000
ROA not before: Fri 17 Nov 2023 06:56:15 +0000
ROA not after: Fri 15 Nov 2024 07:01:15 +0000
asID: 10217
IP address blocks: 202.171.16.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 04 Jun 2024 10:21:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:0e:5b:14:18:41:dc:56:ed:c3:84:ae:74:ce:fe:80:16:bd:30:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Nov 17 06:56:15 2023 GMT
Not After : Nov 15 07:01:15 2024 GMT
Subject: CN=8AB12E177B9EF4DD95C99692254C7E6F6EBE6AD3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c1:5a:46:34:dd:6b:84:bd:f7:0a:7c:45:a9:
96:96:22:23:99:a2:9f:79:33:24:d0:84:22:59:de:
3d:33:29:46:11:8d:e0:82:7c:61:86:d5:f8:6e:bb:
d8:82:ee:24:8d:49:9d:09:f0:43:ff:3b:9e:35:13:
fb:e4:bc:21:fb:7f:2d:e1:5a:fa:b3:93:6a:37:04:
62:9f:80:f4:1c:c7:ea:4a:78:c6:3f:cf:09:9a:a1:
bb:11:65:77:c8:3a:03:57:e8:53:f3:fa:35:0b:1b:
5e:1d:6f:02:f8:1e:fb:a5:ad:8a:3d:a2:7c:88:7a:
79:90:6d:35:87:b2:9e:22:22:d6:f8:5c:72:91:14:
4f:20:84:b7:be:6f:f1:60:cc:af:c2:2d:7c:09:67:
13:78:b2:0c:7b:8b:92:2c:41:89:4a:35:2a:9f:97:
c0:74:14:8d:de:6d:3e:1c:46:93:52:ef:4a:99:1a:
71:0b:0a:ec:e5:a0:c6:08:d6:c8:de:4a:1d:9b:12:
ab:f9:ab:88:e8:51:de:38:57:47:0b:d4:64:33:8d:
31:43:46:5b:85:28:50:b2:4d:a1:46:99:48:5d:d3:
2d:da:15:ff:55:52:18:fc:53:ae:21:09:a9:c8:37:
3c:ac:72:f2:09:30:32:11:94:6b:b2:7d:87:58:59:
c7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:B1:2E:17:7B:9E:F4:DD:95:C9:96:92:25:4C:7E:6F:6E:BE:6A:D3
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31362e302f32312d3231203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.16.0/21
Signature Algorithm: sha256WithRSAEncryption
0a:52:17:98:f4:d8:1b:a7:d7:5c:2a:a8:22:00:dc:bc:d7:58:
98:31:e8:b6:a1:f1:97:3f:ca:23:6c:17:83:32:5a:7f:e9:fb:
c8:24:69:62:6e:aa:0a:f9:fc:df:5f:35:56:f0:a4:48:b6:29:
84:24:11:26:ba:f6:ce:a5:81:52:b9:b5:87:55:2a:f4:d5:8b:
b9:56:5a:4e:a8:e8:31:ae:db:8a:2d:25:a0:b3:e1:f1:a5:cb:
c3:d8:90:9b:21:46:a8:06:0f:80:3b:d1:1a:6e:6f:9a:78:d3:
18:8f:c6:79:9d:16:d3:94:5e:6b:30:b6:11:3b:e2:ab:a5:80:
84:91:c1:8b:0d:2d:fa:51:6e:22:55:b2:bd:a6:7c:3b:2a:46:
72:04:cc:9c:f1:af:5e:2c:fe:04:7c:e4:3b:30:8f:2c:d0:62:
36:54:da:0e:d1:6f:52:cd:20:a5:19:bb:58:4e:1e:09:49:ad:
f0:e4:6f:f2:24:0c:cc:ef:17:7a:61:19:fe:00:07:cf:71:03:
25:1f:22:2a:55:6a:18:2e:9c:ee:93:e6:46:29:2f:81:e8:5a:
35:66:af:56:ce:17:f5:a8:0d:25:75:b8:be:f5:f1:99:be:c8:
d7:1b:34:c8:bc:93:7c:5c:a3:93:11:ba:6b:71:85:31:f5:06:
04:a0:0e:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org