Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32342e302f32312d3231203d3e203130323137.roa
File: 3230322e3137312e32342e302f32312d3231203d3e203130323137.roa (raw, json)
Hash identifier: GVgEAcPzaOcFNjrn3dbdNNjlIRGWZT2vVWGxYKiAYcg=
Subject key identifier: AF:93:F6:CE:D9:82:2C:3B:6B:96:C7:A1:AC:25:CD:4B:AA:69:19:99
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 1E124D004DD4AAB792D7A8C50DD0E93021652D69
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32342e302f32312d3231203d3e203130323137.roa
Signing time: Fri 17 Nov 2023 07:03:07 +0000
ROA not before: Fri 17 Nov 2023 06:58:07 +0000
ROA not after: Fri 15 Nov 2024 07:03:07 +0000
asID: 10217
IP address blocks: 202.171.24.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:12:4d:00:4d:d4:aa:b7:92:d7:a8:c5:0d:d0:e9:30:21:65:2d:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Nov 17 06:58:07 2023 GMT
Not After : Nov 15 07:03:07 2024 GMT
Subject: CN=AF93F6CED9822C3B6B96C7A1AC25CD4BAA691999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6e:ed:f3:89:7b:4e:ba:96:0d:8c:80:50:4b:
8b:8f:4e:fa:69:97:2c:7d:33:8e:54:5d:47:19:13:
b8:84:9b:cf:59:6d:b4:57:f9:79:bb:4a:97:41:f5:
58:9c:da:75:a9:44:f8:33:78:02:bb:34:0a:78:ea:
5a:bf:c9:0f:22:6e:92:68:80:e0:a0:13:e6:a1:3b:
da:fa:00:97:d8:a3:c5:61:ff:71:d3:a4:50:ce:d4:
e5:1b:5a:ec:fd:bc:65:94:c2:58:3e:33:71:fe:c0:
a1:59:80:95:08:66:c7:af:a6:41:f3:7e:56:28:b0:
7b:08:c7:18:f4:ec:16:16:71:54:da:be:e1:87:db:
66:ea:e0:07:75:d4:dd:0e:4a:07:25:ad:65:a3:fb:
7d:ba:fc:c6:c9:63:2c:70:4b:f6:66:ac:87:77:64:
db:69:5a:2f:ee:b1:7a:7c:15:7a:3a:ce:3c:2b:1d:
61:60:63:6d:da:15:08:39:c2:83:bf:62:4e:ba:5e:
e5:d0:3a:2c:ab:5b:75:ed:f4:af:61:4a:a4:b7:11:
09:20:81:0a:36:6f:af:aa:3f:6d:a4:eb:e5:e0:a5:
7a:5e:b5:b3:15:23:0e:9d:f0:c2:55:0e:04:06:d5:
d4:5e:e8:f6:20:05:5a:b7:76:cd:43:78:1a:ec:95:
df:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:93:F6:CE:D9:82:2C:3B:6B:96:C7:A1:AC:25:CD:4B:AA:69:19:99
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32342e302f32312d3231203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.24.0/21
Signature Algorithm: sha256WithRSAEncryption
06:a3:26:51:a8:79:45:53:42:6b:d2:50:40:5b:67:f9:ab:fc:
db:8f:2e:00:9d:57:f2:01:ac:83:a9:bd:ab:8d:97:e3:f0:f9:
e6:07:0c:38:b6:53:1d:34:a8:42:d6:15:01:0f:b4:72:57:c3:
d1:96:84:ee:da:17:f5:4b:81:f5:7f:65:69:89:00:be:42:6a:
41:c8:23:7d:f5:27:56:47:62:11:7d:63:97:3c:69:02:2e:b1:
3d:ae:30:03:b7:8f:b3:2d:41:e1:ba:13:1d:9b:8c:1d:c7:7a:
78:4e:a2:51:24:d0:a5:db:25:d3:e9:e4:00:ff:37:d1:08:43:
54:c3:ed:7d:84:2e:f5:26:d7:47:1c:71:3d:8f:af:0a:b0:94:
0f:a5:ab:40:99:95:db:d8:1f:3f:46:c2:8e:ab:9a:7d:91:b1:
fe:6c:1d:14:2f:39:84:af:cf:73:db:9d:71:da:95:00:f1:ec:
68:0b:59:8c:7b:5e:2f:23:e1:75:45:f5:27:ac:40:d4:13:39:
54:0a:84:9c:ba:2a:d2:f9:a6:41:ec:5f:65:4c:00:8c:b2:16:
c8:b4:63:fa:2e:a6:32:0b:11:ee:72:d5:d5:12:1c:ea:b9:1b:
8b:6d:6c:c3:19:1b:4f:cd:50:e9:91:42:b6:70:bc:a5:64:28:
62:d6:b3:6e
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUHhJNAE3UqreS16jFDdDpMCFlLWkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjI5ODY2NTA4RDZENjI0NTIzRURBRDJBMERFMUU4MkFF
MkMzQjUxMjAeFw0yMzExMTcwNjU4MDdaFw0yNDExMTUwNzAzMDdaMDMxMTAvBgNV
BAMTKEFGOTNGNkNFRDk4MjJDM0I2Qjk2QzdBMUFDMjVDRDRCQUE2OTE5OTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvbu3ziXtOupYNjIBQS4uPTvpp
lyx9M45UXUcZE7iEm89ZbbRX+Xm7SpdB9Vic2nWpRPgzeAK7NAp46lq/yQ8ibpJo
gOCgE+ahO9r6AJfYo8Vh/3HTpFDO1OUbWuz9vGWUwlg+M3H+wKFZgJUIZsevpkHz
flYosHsIxxj07BYWcVTavuGH22bq4Ad11N0OSgclrWWj+326/MbJYyxwS/ZmrId3
ZNtpWi/usXp8FXo6zjwrHWFgY23aFQg5woO/Yk66XuXQOiyrW3Xt9K9hSqS3EQkg
gQo2b6+qP22k6+XgpXpetbMVIw6d8MJVDgQG1dRe6PYgBVq3ds1DeBrsld99AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQUr5P2ztmCLDtrlsehrCXNS6ppGZkwHwYDVR0j
BBgwFoAUIphmUI1tYkUj7a0qDeHoKuLDtRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y
ZmI3MDgxOC0yMzY2LTQyZTAtOWRiZC0yNTQzODEwNjllNTcvMC8yMjk4NjY1MDhE
NkQ2MjQ1MjNFREFEMkEwREUxRTgyQUUyQzNCNTEyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjI5ODY2NTA4RDZENjI0NTIzRURBRDJBMERFMUU4MkFFMkMz
QjUxMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmYjcwODE4LTIzNjYtNDJlMC05
ZGJkLTI1NDM4MTA2OWU1Ny8wLzMyMzAzMjJlMzEzNzMxMmUzMjM0MmUzMDJmMzIz
MTJkMzIzMTIwM2QzZTIwMzEzMDMyMzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8qrGDANBgkqhkiG
9w0BAQsFAAOCAQEABqMmUah5RVNCa9JQQFtn+av8248uAJ1X8gGsg6m9q42X4/D5
5gcMOLZTHTSoQtYVAQ+0clfD0ZaE7toX9UuB9X9laYkAvkJqQcgjffUnVkdiEX1j
lzxpAi6xPa4wA7ePsy1B4boTHZuMHcd6eE6iUSTQpdsl0+nkAP830QhDVMPtfYQu
9SbXRxxxPY+vCrCUD6WrQJmV29gfP0bCjquafZGx/mwdFC85hK/Pc9udcdqVAPHs
aAtZjHteLyPhdUX1J6xA1BM5VAqEnLoq0vmmQexfZUwAjLIWyLRj+i6mMgsR7nLV
1RIc6rkbi21swxkbT81Q6ZFCtnC8pWQoYtazbg==
-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org