Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31372e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e31372e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: mHSmQFMEzvGXyWTbIK3nEUotJshOkCMPN4An+oiAvYA=
Subject key identifier: C0:36:71:AC:CA:91:64:45:8C:7B:98:CD:3A:34:8F:8E:30:65:F7:8F
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 5AA56E1EB6AAEDE502A1556D3829D00346C480AD
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31372e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:07 +0000
ROA not before: Thu 31 Aug 2023 05:55:07 +0000
ROA not after: Thu 29 Aug 2024 06:00:07 +0000
asID: 10217
IP address blocks: 202.171.17.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:a5:6e:1e:b6:aa:ed:e5:02:a1:55:6d:38:29:d0:03:46:c4:80:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:07 2023 GMT
Not After : Aug 29 06:00:07 2024 GMT
Subject: CN=C03671ACCA9164458C7B98CD3A348F8E3065F78F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:91:9f:87:d4:92:a5:57:92:e3:7b:fc:53:3d:
ed:1b:26:39:36:a9:77:7c:87:4a:26:70:8b:3e:e7:
8d:8a:45:29:b9:90:08:ac:ce:88:b8:ee:a6:6a:28:
0b:9f:a5:1a:85:d5:d9:9b:b2:0b:9c:a3:c6:d1:4e:
25:a5:5b:39:9b:f7:ee:ce:41:35:67:7c:8c:c1:6f:
a6:5f:59:14:d9:d3:d8:46:05:d0:ae:81:67:10:2e:
b5:2f:f1:73:f6:a9:26:85:be:ca:57:d2:bf:f9:41:
69:8b:b7:f4:55:16:57:a5:ab:8e:d4:71:f6:89:46:
ea:1b:78:a0:d2:6c:19:e0:7c:38:99:d5:0c:fe:a7:
4a:ae:80:6a:19:3b:32:de:be:f0:9d:e2:14:40:2f:
42:fc:9c:9c:79:8c:89:e5:66:ef:32:16:97:a6:3e:
45:38:27:15:be:99:63:cf:f0:6e:d2:0d:9c:ce:88:
09:1d:04:63:ca:ff:4e:e3:75:56:22:0e:25:86:95:
14:02:ba:dc:86:df:65:1a:1f:54:ca:3e:71:5c:9d:
dd:cc:f9:f4:98:b2:59:05:91:07:28:26:23:7d:87:
63:8b:71:a4:ab:e9:a1:0f:d6:ba:b6:1d:d8:ca:12:
9d:aa:9b:f2:59:03:29:49:78:6a:66:59:00:9e:a3:
2c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:36:71:AC:CA:91:64:45:8C:7B:98:CD:3A:34:8F:8E:30:65:F7:8F
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31372e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.17.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:a7:88:22:36:38:d9:4e:07:b0:3c:d1:e8:ad:d3:f8:56:91:
44:5b:32:32:a9:16:9a:3c:08:3e:b7:1c:3b:f9:19:47:c5:47:
e2:cd:c6:61:19:df:d1:8a:38:be:f9:45:88:cb:ce:42:9a:c9:
09:0e:f2:24:37:05:89:95:74:fd:ac:6b:01:ea:73:12:29:0a:
ed:fb:63:ec:84:60:e1:ab:2a:bb:9f:08:9b:a6:26:d9:1f:29:
8e:2a:e5:dc:2a:16:e2:fd:f7:c6:24:59:5f:3d:15:55:b7:28:
72:7c:bd:48:7f:41:ba:e6:c9:d0:55:e1:82:40:23:ca:4f:bd:
e7:98:c8:e7:40:34:5d:57:99:b7:d7:18:c8:1f:c1:9a:8f:92:
8e:35:25:62:5a:ad:3c:57:37:44:41:b3:59:30:b3:c3:2e:90:
51:91:05:1b:a3:af:c8:66:2f:d2:ec:9b:53:37:1f:aa:a4:4f:
2c:58:83:ea:15:ae:37:dd:a2:c3:65:f6:fe:3f:b5:0c:1e:de:
69:7a:9a:d3:06:2c:9c:87:44:3b:0a:15:24:7c:03:26:3c:ca:
48:68:9f:ec:0a:a4:81:88:1a:51:9c:f1:22:7a:1d:8e:35:62:
e2:0c:ac:2e:ec:d3:2b:af:cc:b1:e8:48:40:6e:8a:27:27:fc:
f5:42:e5:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org