Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31382e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e31382e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: 8K+g8VIfDtgdxdyXtR2a7JhFxhznQtRwz4eGTFuqcG0=
Subject key identifier: 53:E3:79:2F:A9:32:45:9A:F9:03:63:DD:F1:9A:AC:8F:CF:E6:F0:F8
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 12360B5DDAAD54C1FB5D586DD8FCAB3DF44EFF84
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31382e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:04 +0000
ROA not before: Thu 31 Aug 2023 05:55:04 +0000
ROA not after: Thu 29 Aug 2024 06:00:04 +0000
asID: 10217
IP address blocks: 202.171.18.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:36:0b:5d:da:ad:54:c1:fb:5d:58:6d:d8:fc:ab:3d:f4:4e:ff:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:04 2023 GMT
Not After : Aug 29 06:00:04 2024 GMT
Subject: CN=53E3792FA932459AF90363DDF19AAC8FCFE6F0F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:b6:9b:92:8a:77:c3:85:f6:6e:c6:f3:79:e6:
f3:4b:ac:5e:c3:b2:65:c1:ca:19:0d:03:dc:34:29:
2a:0c:e7:a2:8f:ee:c9:4b:26:3c:7a:7e:e5:83:53:
dd:88:1d:91:d2:3d:52:20:5a:f9:06:aa:03:87:3b:
6e:60:04:85:c9:fa:0d:66:e8:d8:ab:60:05:ec:0f:
58:6f:22:e6:ee:ed:d0:f7:c4:42:f4:cd:3a:c5:64:
77:c7:5d:92:d8:d7:ca:33:2e:82:72:52:76:13:b4:
ab:9b:ea:7d:04:d8:91:0a:8d:b5:cc:6a:7a:2b:10:
86:b1:14:b3:63:5d:c7:34:3c:91:1a:12:94:2c:e2:
06:66:1b:44:59:c3:17:3e:3f:42:14:64:d0:18:51:
11:c9:80:cc:b0:91:57:dc:f3:5d:25:a2:05:0d:cb:
21:1a:67:c7:26:bc:d0:02:de:e7:6f:70:40:ef:25:
04:d1:ab:f9:01:8e:06:9a:96:33:66:5d:fc:58:1a:
c8:7f:ff:5d:48:c8:67:61:8a:c6:04:e6:78:e5:5f:
9a:f1:61:7f:33:0d:2b:3c:22:83:8f:0f:2b:da:e7:
30:2b:d4:fd:30:f0:c7:86:fe:de:4c:09:19:18:ad:
b7:dc:07:bf:b8:b0:f6:6e:94:7f:74:87:d1:e9:cd:
a6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:E3:79:2F:A9:32:45:9A:F9:03:63:DD:F1:9A:AC:8F:CF:E6:F0:F8
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31382e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.18.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:75:5f:9e:5b:56:ce:19:34:56:d5:f2:b1:2c:04:d5:06:32:
cc:ef:62:ee:2a:62:ad:4d:56:d2:b6:24:e3:f2:29:9f:06:92:
6c:7a:38:b8:fc:cc:8e:29:4d:5f:dc:04:33:6e:a2:6d:8d:97:
1e:49:14:21:24:13:86:bc:bf:b5:f8:6b:71:cb:01:8f:d4:89:
7c:97:9b:ac:8f:f4:fe:c2:72:f1:f3:d7:4e:67:b9:62:18:98:
b2:c0:82:5d:92:9d:7f:02:a8:02:7a:18:3e:63:a1:13:53:a7:
17:08:f2:1d:b0:3a:e1:ee:51:61:38:76:93:ce:66:61:f5:f2:
d5:17:c0:a3:7d:35:5a:54:a0:34:40:0e:64:fe:0f:d1:ad:2e:
3c:da:03:cd:39:59:4b:8e:41:8d:cf:3a:26:db:ca:18:11:83:
b3:b7:cb:21:57:8b:e0:2e:b9:f2:7f:e5:7c:13:8b:2a:7a:fd:
55:88:7d:cd:87:6a:83:8c:13:28:93:63:02:d4:ea:d2:c2:06:
a0:be:6f:b5:ec:c6:e2:e2:1f:d1:b8:9c:f7:61:8f:2d:99:98:
fe:dd:ad:9c:b7:58:78:f8:33:19:ee:9f:74:ed:4f:19:47:03:
15:0b:07:7c:57:5a:73:15:53:b0:4d:86:8a:36:9c:33:cc:53:
87:c8:8c:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org