Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32302e302f32332d3233203d3e203130323137.roa
File: 3230322e3137312e32302e302f32332d3233203d3e203130323137.roa (raw, json)
Hash identifier: V3NJ0PNcHcMUek+JkzGx1dwUP+7wZRpbx7o4huxmEak=
Subject key identifier: 7E:9D:A6:36:82:D3:AC:DA:9E:29:E7:D3:65:D3:9E:A5:75:EA:15:F5
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 0AE431091320D671D0C6B76437882F2D771510F1
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32302e302f32332d3233203d3e203130323137.roa
Signing time: Fri 17 Nov 2023 07:19:47 +0000
ROA not before: Fri 17 Nov 2023 07:14:47 +0000
ROA not after: Fri 15 Nov 2024 07:19:47 +0000
asID: 10217
IP address blocks: 202.171.20.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:e4:31:09:13:20:d6:71:d0:c6:b7:64:37:88:2f:2d:77:15:10:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Nov 17 07:14:47 2023 GMT
Not After : Nov 15 07:19:47 2024 GMT
Subject: CN=7E9DA63682D3ACDA9E29E7D365D39EA575EA15F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f4:81:d4:a4:84:89:ed:54:af:fe:9a:cc:c2:
bc:c8:f9:89:7d:1e:be:7d:6f:7d:a2:22:87:c9:d0:
98:35:e7:65:12:32:68:b5:2b:f5:b7:52:5f:a3:05:
d3:d8:fa:97:55:d8:9c:20:6e:49:3d:da:5d:47:ff:
98:64:04:27:c7:a3:b2:3f:f4:19:18:6d:10:63:ea:
87:2e:55:f0:9f:d0:07:34:30:94:26:78:bc:9a:a6:
8b:da:fa:9d:86:07:23:ef:54:5d:48:02:3f:f9:5f:
e0:ce:ce:3e:9a:60:2c:fd:8a:e3:60:9d:a0:84:ac:
37:b7:9b:25:b2:2f:9d:8f:ae:33:43:dc:f8:3f:a6:
f4:ea:66:6e:5d:b2:94:32:15:48:04:7b:05:b4:96:
50:48:14:2e:d0:50:74:bc:14:0b:b0:0b:e4:57:66:
e1:b0:be:12:e3:e9:e7:f1:ab:f3:20:12:ad:c7:61:
50:77:eb:bd:e1:00:cb:30:52:5f:25:1f:3d:ed:98:
7b:dc:73:1a:17:8e:a2:79:45:7b:ed:ee:90:6d:00:
fd:15:e1:fd:e4:6d:bb:98:bf:a6:8f:68:e9:3d:22:
eb:b9:e0:01:62:9b:b3:4a:c0:46:56:fb:ba:77:f2:
81:7d:54:4a:c8:c5:90:54:75:28:15:f8:6a:a2:e2:
b2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:9D:A6:36:82:D3:AC:DA:9E:29:E7:D3:65:D3:9E:A5:75:EA:15:F5
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32302e302f32332d3233203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.20.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:66:a3:01:4a:59:b8:7e:d8:31:39:61:59:02:ae:6b:62:5a:
5c:dc:42:9c:e3:9a:26:a4:d2:80:ab:d8:c9:68:c7:fd:44:39:
63:6d:8c:44:1e:20:a8:2a:56:a1:62:a3:23:75:0c:4d:09:b8:
01:9c:d9:48:d2:e3:ab:bc:62:b4:93:61:c8:fa:7e:f7:e3:d8:
34:18:48:71:dc:b2:27:5b:c8:f0:30:3a:d3:ad:21:0c:cf:a5:
2d:e0:19:7f:6b:bb:e5:76:d0:5c:b1:bf:77:bd:02:cb:7a:2a:
1e:71:0d:26:23:79:dd:3c:fd:b6:5d:b5:12:67:8c:96:2a:1e:
2e:cd:9c:69:97:cf:68:92:2f:da:e5:32:f2:62:16:3c:ba:b0:
f9:ea:35:73:1e:06:03:17:e1:88:13:f2:f5:d7:3e:4a:c9:5c:
75:80:4a:d0:21:40:5f:61:47:c3:c7:ae:70:3a:7e:77:d7:72:
23:b3:03:d5:01:97:4a:b0:ee:50:7f:04:9f:e8:fb:08:d4:5c:
23:0f:7a:1b:7f:8a:66:4d:49:01:3d:57:ec:b6:81:bd:84:b2:
81:7a:66:c1:39:21:52:c5:42:83:61:e6:9c:36:79:41:bd:e9:
09:db:cf:d4:70:bb:c3:94:38:d7:f2:94:ba:b9:1c:30:70:85:
3f:bf:d9:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org