Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32332e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e32332e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: wBPXBri8GbDyyX841Ng4+gRDPuEP1KW7gXkwJuq+U6w=
Subject key identifier: 46:AF:B5:36:7D:58:C8:E2:1E:70:85:3D:92:03:1A:35:0E:6A:41:68
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 733865D9E05650BB1D276EC41A877381C57B824F
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32332e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:06 +0000
ROA not before: Thu 31 Aug 2023 05:55:06 +0000
ROA not after: Thu 29 Aug 2024 06:00:06 +0000
asID: 10217
IP address blocks: 202.171.23.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:38:65:d9:e0:56:50:bb:1d:27:6e:c4:1a:87:73:81:c5:7b:82:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:06 2023 GMT
Not After : Aug 29 06:00:06 2024 GMT
Subject: CN=46AFB5367D58C8E21E70853D92031A350E6A4168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8f:5a:5a:4a:e2:9c:23:1f:16:56:5a:29:4d:
ed:a4:f4:07:31:bd:06:11:37:70:c7:16:98:05:bf:
15:67:65:16:c0:43:e2:f6:c1:a2:e4:ce:8f:a2:97:
82:5a:f1:5b:6d:a1:53:c4:ff:27:73:ef:87:74:72:
30:9f:0c:78:97:d9:ef:5e:ca:05:8d:aa:ba:29:30:
af:bf:10:f8:44:b9:af:34:f8:06:ff:da:73:d4:d1:
67:f7:85:35:1d:72:fc:94:af:fc:01:98:6e:30:78:
fa:39:82:79:8c:e5:76:08:82:72:76:2a:91:3d:74:
b8:72:51:3d:d9:1c:5a:df:50:cc:3d:e5:18:8d:eb:
ae:31:12:6a:f9:14:fc:df:ee:6b:6e:3e:36:56:49:
e0:ab:30:2d:64:6a:1d:0b:f0:3e:04:fb:b0:a8:8f:
cd:bb:07:a9:f5:94:2f:af:1b:c0:0a:92:d9:64:18:
2b:f4:67:29:a1:a9:8e:0a:ed:09:99:88:a8:d4:1c:
b1:bc:d5:d9:b7:80:73:9e:90:8e:45:cb:7e:c4:6b:
4d:d7:5b:d3:6f:e6:ea:91:fb:2f:24:ad:55:b4:d6:
a3:4b:b4:f1:da:a5:47:1d:77:eb:e0:3b:ff:af:bd:
2e:3e:60:bd:d9:03:ac:ef:47:35:b7:ac:99:77:b9:
88:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:AF:B5:36:7D:58:C8:E2:1E:70:85:3D:92:03:1A:35:0E:6A:41:68
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32332e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.23.0/24
Signature Algorithm: sha256WithRSAEncryption
22:a0:c9:20:a2:c5:22:4c:fa:86:61:98:19:f8:66:f4:66:a7:
80:c5:62:b2:c8:f0:04:82:b1:8e:25:bd:c3:f2:d5:97:20:ea:
ae:45:ef:3d:95:ba:db:9c:c0:ad:2a:25:b7:3e:fd:55:ac:39:
d2:3b:e2:04:76:48:97:f1:42:79:f2:db:82:27:c7:d6:3a:53:
aa:bb:b9:7b:97:b7:9e:e5:70:63:a0:50:6e:68:96:38:b9:c2:
24:8c:32:90:8d:7d:a6:c9:24:e2:d9:61:5a:04:03:58:d9:6b:
47:e0:6a:81:b2:7b:89:93:36:85:68:5d:e2:58:94:c4:9b:67:
7f:c9:4c:08:81:0e:24:81:2d:80:03:6c:1a:dc:11:90:43:a1:
99:9a:bc:a2:96:f3:63:a9:13:d5:51:5d:d1:8e:5a:65:2e:7c:
62:28:1d:6c:d5:3a:54:fe:ab:b8:0b:15:ce:d9:7c:c8:a1:48:
97:36:91:d6:71:a9:7f:65:55:07:46:ad:5e:4e:74:f0:ea:ee:
bc:49:e8:6d:7d:b0:d7:74:fd:ee:6f:9a:19:d2:9a:cb:9c:18:
03:12:6a:f5:a3:7f:f2:fb:90:ae:c0:20:0d:f9:16:10:f1:c8:
2c:9a:d9:ff:ee:d8:cf:d3:ae:c3:36:27:b5:5a:0f:eb:bf:d6:
75:f8:66:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org