Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e322e302f32332d3233203d3e203130323137.roa
File: 3230322e3137312e322e302f32332d3233203d3e203130323137.roa (raw, json)
Hash identifier: mejHQFfIs+0xcnch/vTz6CxfHGQFIZcNxaca7zic7YU=
Subject key identifier: E7:96:2C:F0:89:6E:00:5C:58:71:D7:F2:07:A1:95:7D:EB:D3:97:43
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 7D9CA2EE1D5FC57A8438F12ABD9FF99633663B92
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e322e302f32332d3233203d3e203130323137.roa
Signing time: Fri 17 Nov 2023 07:13:37 +0000
ROA not before: Fri 17 Nov 2023 07:08:37 +0000
ROA not after: Fri 15 Nov 2024 07:13:37 +0000
asID: 10217
IP address blocks: 202.171.2.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:9c:a2:ee:1d:5f:c5:7a:84:38:f1:2a:bd:9f:f9:96:33:66:3b:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Nov 17 07:08:37 2023 GMT
Not After : Nov 15 07:13:37 2024 GMT
Subject: CN=E7962CF0896E005C5871D7F207A1957DEBD39743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b2:d5:2b:80:8f:82:95:2f:08:fb:e5:c0:af:
cb:10:dc:e9:ae:e3:29:c8:c4:be:61:14:28:60:b7:
b3:17:85:5c:13:5e:b1:1b:1d:8e:67:47:ee:f3:4b:
28:b5:95:7f:a9:58:58:03:78:df:29:bf:2f:d5:e8:
81:ac:5e:32:c1:b2:af:87:2d:9a:c3:ed:08:51:51:
2f:fc:12:71:d7:2a:7e:db:81:a3:c0:7b:21:70:64:
3c:f7:e8:94:eb:35:b3:82:68:2f:e6:48:6e:4a:ad:
ee:d6:d8:0a:0b:a5:ab:a1:00:f4:eb:9d:97:b7:1b:
5a:50:c0:2f:9b:47:b6:f3:89:a2:d8:59:ea:18:17:
ce:07:f1:f9:7a:d3:39:d3:4d:3e:d2:1e:81:63:4c:
32:77:42:26:f7:df:d3:38:2e:08:1b:71:2b:75:a8:
32:a8:93:f8:50:8f:91:c8:8c:fa:7c:a1:70:f3:40:
7d:82:05:24:6e:68:b7:6e:90:94:95:39:da:46:5d:
3b:9b:40:c6:3d:1a:94:52:3f:23:cd:94:c1:33:42:
be:0b:8b:c2:13:61:dd:9a:f9:b0:a5:d5:35:a9:7c:
9d:7c:04:36:4b:55:16:e9:c3:99:e3:65:9a:e5:f0:
63:11:51:c1:cf:08:94:16:3a:be:0c:12:05:85:94:
a7:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:96:2C:F0:89:6E:00:5C:58:71:D7:F2:07:A1:95:7D:EB:D3:97:43
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e322e302f32332d3233203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.2.0/23
Signature Algorithm: sha256WithRSAEncryption
71:be:86:a3:a9:eb:b3:a1:b6:35:99:1f:9a:7a:67:47:9b:25:
d4:f0:4c:9d:bf:4f:f7:bb:1c:2f:84:88:69:55:ad:4d:bc:b8:
44:9b:84:e3:a0:f3:e7:c4:0a:ac:59:a4:41:cf:13:58:3b:11:
e7:13:46:41:9a:00:f3:48:36:10:e2:ae:01:c8:76:63:bc:82:
0b:63:04:d6:3e:c1:6e:cb:b7:cc:a2:22:d3:a1:de:98:49:15:
8b:8a:90:2a:a4:96:29:c6:43:4f:7c:d4:f5:d7:9e:b8:e6:cb:
46:c4:72:54:26:53:51:ae:e6:75:56:2d:f5:20:c2:88:09:22:
5a:17:86:9a:a5:9c:d4:bd:57:ed:14:31:53:36:97:73:42:11:
95:e7:2e:68:00:63:48:0b:de:29:17:43:89:8c:60:fc:c5:e8:
23:e9:b8:99:d3:d7:c1:b2:01:37:05:aa:af:30:79:5c:9e:90:
a5:1d:54:a9:61:48:8c:4b:93:79:90:cb:1b:13:9e:76:7a:cf:
6f:41:62:2f:e9:d8:dc:ff:1b:b4:5f:a0:6b:a0:63:60:a8:af:
28:a9:46:7f:aa:7d:83:66:5e:47:52:84:90:75:6a:79:d2:1c:
40:21:59:4b:15:6a:d2:bf:6f:79:94:1d:86:94:dc:75:24:d7:
d9:42:6f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org