Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32302e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e32302e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: tnS0qhH+/y1I5GFiw1+RgK+BUA3lCCbELbLf89pgARw=
Subject key identifier: 38:A2:02:2C:34:D8:05:63:F3:46:2D:0F:3F:0B:AB:D2:A7:C8:04:8E
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 48A19B428E847C2F5968B46EF644E94DAA726AE4
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32302e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:05 +0000
ROA not before: Thu 31 Aug 2023 05:55:05 +0000
ROA not after: Thu 29 Aug 2024 06:00:05 +0000
asID: 10217
IP address blocks: 202.171.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jun 2024 10:21:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:a1:9b:42:8e:84:7c:2f:59:68:b4:6e:f6:44:e9:4d:aa:72:6a:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:05 2023 GMT
Not After : Aug 29 06:00:05 2024 GMT
Subject: CN=38A2022C34D80563F3462D0F3F0BABD2A7C8048E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:69:7e:75:d0:b1:0c:f1:8d:f4:4f:e8:d3:fb:
2a:66:70:c3:06:38:3c:2e:4b:9f:46:2a:ac:e1:6d:
94:a4:8a:d9:34:e5:44:fe:06:f1:df:2c:31:f8:29:
1f:95:9c:05:8f:c4:71:68:bc:60:aa:df:0c:ef:97:
20:9c:36:9c:79:0a:a1:ce:08:d2:98:93:a6:cd:1c:
92:27:58:82:7e:b2:9d:23:3c:fd:89:a6:74:88:c4:
55:ce:99:e5:18:79:1f:15:72:20:b8:e6:79:0c:81:
15:0b:b5:90:a1:85:1e:6e:d0:dd:1c:ee:77:dc:e2:
4b:6c:99:71:0f:2f:82:d7:ef:58:31:05:f3:3b:3f:
41:1c:ef:40:54:b7:24:1d:39:39:1e:40:83:d8:87:
db:3e:1c:10:c7:c8:e0:e2:d9:48:77:a1:e3:5f:e6:
28:86:13:9f:04:7d:c4:ac:47:fe:1e:98:0c:25:04:
95:c9:d9:7a:52:ec:53:30:9d:4a:50:3b:6e:7a:f9:
6e:31:6b:ae:e3:1c:7b:6a:b6:74:15:17:22:53:b0:
7e:7a:75:58:93:47:0a:87:6c:fa:06:7f:d7:be:e1:
37:e4:0d:54:16:c4:ed:c2:25:9d:5b:22:d5:d4:1f:
1b:3e:db:e8:fc:3b:c8:ac:33:e8:69:78:32:38:ef:
40:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:A2:02:2C:34:D8:05:63:F3:46:2D:0F:3F:0B:AB:D2:A7:C8:04:8E
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32302e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.20.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:5e:7c:b5:27:d0:07:71:61:ee:c3:7f:a1:45:84:dd:ac:5c:
d1:03:7b:7c:02:d4:9f:03:b6:ce:4e:7d:ca:ad:20:4b:5e:8c:
37:f1:b4:5f:51:1d:a5:cc:cf:e2:b7:9e:4d:a8:3b:79:c7:01:
09:ff:5f:5b:ab:aa:98:b4:d6:d6:ca:bb:3b:21:76:9b:93:b3:
16:48:87:88:3a:5b:3c:54:7f:ee:25:6d:d6:6b:39:0c:56:9d:
08:b1:cb:33:41:37:06:e6:ea:ec:34:4c:79:e5:2d:62:69:8a:
22:da:75:8a:80:8b:6f:4c:0b:53:8c:b7:19:71:c1:e1:4a:eb:
5e:72:98:08:ee:1a:14:c6:73:50:7c:cc:5a:65:22:74:e2:7c:
7c:96:42:80:19:cb:5a:af:f8:92:54:51:62:c8:3b:e3:cf:36:
a6:71:4f:bb:08:d5:98:db:48:cf:b1:13:ca:33:fc:ac:8c:ff:
82:39:d3:fb:0d:80:0b:6e:82:6d:87:2a:05:d3:1d:30:08:10:
7e:8b:34:c3:5d:86:52:6a:53:ab:36:15:e9:d8:36:af:40:18:
04:44:e8:e2:3c:9c:82:00:d9:98:f5:9d:4d:03:82:4c:79:da:
ad:33:31:ab:4d:3f:2c:d2:a3:1f:d4:73:05:a0:90:80:22:c8:
5f:ea:ad:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org