Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31392e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e31392e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: Sgb+ArYJFuY9Eo/Yxj7EuRFPVUXi642TV51iSxpiTr8=
Subject key identifier: 14:E0:6F:79:E6:34:25:6B:0C:54:DE:56:24:55:7E:30:E1:AC:06:4C
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 2ACD8A26DD3D51500994ABED8953FF8298C59CF0
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31392e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:07 +0000
ROA not before: Thu 31 Aug 2023 05:55:07 +0000
ROA not after: Thu 29 Aug 2024 06:00:07 +0000
asID: 10217
IP address blocks: 202.171.19.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:cd:8a:26:dd:3d:51:50:09:94:ab:ed:89:53:ff:82:98:c5:9c:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:07 2023 GMT
Not After : Aug 29 06:00:07 2024 GMT
Subject: CN=14E06F79E634256B0C54DE5624557E30E1AC064C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:04:9b:56:26:b5:f8:cb:88:a7:d4:6a:40:dd:
79:9f:7d:81:45:eb:3d:5c:34:a4:24:7d:1e:28:0e:
2f:57:5d:cb:f1:ac:dd:2d:48:e1:94:a5:ed:76:61:
21:d3:1f:37:f0:c1:d6:92:06:c6:87:ef:b2:0d:6e:
95:34:7e:96:ec:da:4a:b3:a7:07:83:9f:13:5a:fb:
5d:cd:d5:b3:e2:7a:66:61:fe:69:15:a5:6e:db:ef:
d0:57:b9:ac:d6:2a:26:d0:e4:88:f3:21:44:76:8b:
8a:bc:a9:fe:27:3d:d1:de:5c:48:e0:17:f2:90:48:
37:97:3e:8d:c1:8b:56:3c:9c:cc:f7:64:3e:a1:d8:
26:51:da:9e:70:81:4b:a1:5a:f3:1d:7b:bc:7a:03:
20:95:29:e0:02:f4:63:02:bf:1a:29:a2:91:d2:c3:
79:5d:d9:74:9b:9d:7c:65:1a:7c:e4:9b:30:7a:4f:
34:78:e9:99:78:86:97:79:be:64:79:30:43:38:bf:
8f:8d:7d:af:7a:58:36:a6:36:c5:69:d4:62:67:d1:
c3:53:3f:f1:75:62:1c:03:58:ef:f0:c9:68:38:21:
25:2a:b3:3d:91:9c:42:b1:8c:ab:45:55:f7:3e:40:
ab:5b:06:cb:06:b9:02:8e:15:cf:15:37:db:e3:e6:
d8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:E0:6F:79:E6:34:25:6B:0C:54:DE:56:24:55:7E:30:E1:AC:06:4C
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e31392e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.19.0/24
Signature Algorithm: sha256WithRSAEncryption
87:d1:c8:f9:71:05:0c:e0:d9:24:51:81:a1:2f:47:38:0e:71:
41:bf:bf:b5:27:69:f7:18:c0:b7:e8:aa:9e:70:18:32:53:a1:
d2:cb:68:05:b6:3d:35:83:59:19:46:15:5b:b2:ea:5b:56:79:
1f:c2:34:ae:a5:41:a6:ea:24:d1:88:bb:92:9d:99:f6:94:8b:
bc:c1:9c:28:14:0d:fa:cf:69:3b:98:88:f4:b6:b6:7f:dd:13:
23:0d:cc:82:17:57:96:e4:84:80:2d:50:2c:be:bc:6c:8e:4a:
2d:f0:09:3f:3c:80:dd:c2:73:26:80:63:dd:a1:37:23:ee:6f:
b0:f0:a2:0e:0d:7e:67:3f:b3:ea:ed:35:94:ec:f0:05:4e:1a:
3f:03:c5:59:ee:6c:33:08:57:aa:50:01:ef:e0:f5:57:97:6e:
1d:11:a5:78:51:ba:c0:3e:cd:9c:73:72:c7:4d:30:df:da:23:
25:60:82:bf:4d:04:ad:22:78:c4:2b:dd:04:07:87:44:69:36:
bf:cf:8a:3c:af:a6:ce:2b:5e:a2:74:6d:0c:87:ca:cc:cc:6b:
8a:c1:02:0a:6c:21:7a:9b:59:f5:17:3e:11:82:f2:a8:3a:16:
4a:10:fc:b3:56:3e:3a:81:0a:b7:eb:61:4b:bc:bb:7d:35:17:
86:09:4b:d0
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUKs2KJt09UVAJlKvtiVP/gpjFnPAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjI5ODY2NTA4RDZENjI0NTIzRURBRDJBMERFMUU4MkFF
MkMzQjUxMjAeFw0yMzA4MzEwNTU1MDdaFw0yNDA4MjkwNjAwMDdaMDMxMTAvBgNV
BAMTKDE0RTA2Rjc5RTYzNDI1NkIwQzU0REU1NjI0NTU3RTMwRTFBQzA2NEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6BJtWJrX4y4in1GpA3XmffYFF
6z1cNKQkfR4oDi9XXcvxrN0tSOGUpe12YSHTHzfwwdaSBsaH77INbpU0fpbs2kqz
pweDnxNa+13N1bPiemZh/mkVpW7b79BXuazWKibQ5IjzIUR2i4q8qf4nPdHeXEjg
F/KQSDeXPo3Bi1Y8nMz3ZD6h2CZR2p5wgUuhWvMde7x6AyCVKeAC9GMCvxopopHS
w3ld2XSbnXxlGnzkmzB6TzR46Zl4hpd5vmR5MEM4v4+Nfa96WDamNsVp1GJn0cNT
P/F1YhwDWO/wyWg4ISUqsz2RnEKxjKtFVfc+QKtbBssGuQKOFc8VN9vj5tgtAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUFOBveeY0JWsMVN5WJFV+MOGsBkwwHwYDVR0j
BBgwFoAUIphmUI1tYkUj7a0qDeHoKuLDtRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y
ZmI3MDgxOC0yMzY2LTQyZTAtOWRiZC0yNTQzODEwNjllNTcvMC8yMjk4NjY1MDhE
NkQ2MjQ1MjNFREFEMkEwREUxRTgyQUUyQzNCNTEyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjI5ODY2NTA4RDZENjI0NTIzRURBRDJBMERFMUU4MkFFMkMz
QjUxMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmYjcwODE4LTIzNjYtNDJlMC05
ZGJkLTI1NDM4MTA2OWU1Ny8wLzMyMzAzMjJlMzEzNzMxMmUzMTM5MmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzMDMyMzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqrEzANBgkqhkiG
9w0BAQsFAAOCAQEAh9HI+XEFDODZJFGBoS9HOA5xQb+/tSdp9xjAt+iqnnAYMlOh
0stoBbY9NYNZGUYVW7LqW1Z5H8I0rqVBpuok0Yi7kp2Z9pSLvMGcKBQN+s9pO5iI
9La2f90TIw3MghdXluSEgC1QLL68bI5KLfAJPzyA3cJzJoBj3aE3I+5vsPCiDg1+
Zz+z6u01lOzwBU4aPwPFWe5sMwhXqlAB7+D1V5duHRGleFG6wD7NnHNyx00w39oj
JWCCv00ErSJ4xCvdBAeHRGk2v8+KPK+mziteonRtDIfKzMxrisECCmwheptZ9Rc+
EYLyqDoWShD8s1Y+OoEKt+thS7y7fTUXhglL0A==
-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org