Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32342e302f32322d3232203d3e203130323137.roa
File: 3230322e3137312e32342e302f32322d3232203d3e203130323137.roa (raw, json)
Hash identifier: 3L2aWahOv1cCW5YzMETSSDDxi4MrE8Old1Xgd5qm23I=
Subject key identifier: E0:91:B8:45:72:7D:63:70:21:B0:F9:F0:18:E7:80:D2:47:64:B6:E9
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 2988B33CAD06798245F8AD595CC6C8634B0C96CC
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32342e302f32322d3232203d3e203130323137.roa
Signing time: Fri 17 Nov 2023 07:10:10 +0000
ROA not before: Fri 17 Nov 2023 07:05:10 +0000
ROA not after: Fri 15 Nov 2024 07:10:10 +0000
asID: 10217
IP address blocks: 202.171.24.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:88:b3:3c:ad:06:79:82:45:f8:ad:59:5c:c6:c8:63:4b:0c:96:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Nov 17 07:05:10 2023 GMT
Not After : Nov 15 07:10:10 2024 GMT
Subject: CN=E091B845727D637021B0F9F018E780D24764B6E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:45:ad:43:a1:f1:50:9e:ee:d1:e6:46:26:34:
d3:0b:e5:cc:4e:1a:6b:b9:60:a5:54:c3:ae:9d:59:
d8:1b:19:b5:6c:dc:9d:3b:64:b8:08:39:b9:9b:f8:
e7:e6:62:c0:37:c0:d5:93:5a:1b:b5:87:a2:b0:7f:
30:12:fe:c5:62:53:bb:17:66:15:ce:e8:2e:ac:60:
74:a1:b2:d6:cb:47:23:f7:3f:58:1b:16:d0:b6:9e:
c3:ab:8b:a3:83:13:98:85:15:40:6e:53:50:07:11:
99:40:d4:ee:75:95:63:60:48:a4:f6:b3:e2:b6:8a:
6d:bc:4c:75:a0:fa:99:a4:6b:57:41:8b:a1:82:b4:
28:70:58:70:7e:59:a0:8c:d9:e6:db:de:fe:2d:30:
35:49:34:72:bf:55:b0:38:d2:ee:4d:cf:82:12:50:
fc:89:f9:a1:65:43:3a:24:98:4a:17:1f:ef:4d:48:
1c:aa:4e:b1:e8:e4:35:cc:f6:2e:1e:58:41:db:47:
5e:ec:92:c1:47:a5:2d:19:5e:a0:4b:22:e5:60:b8:
34:04:12:5e:8e:1f:b7:ce:88:6d:a8:12:b5:0e:8b:
1a:ed:8d:75:ec:c9:62:2a:fa:ce:d3:b6:f4:c1:dc:
5b:ed:d3:c0:28:fa:d7:c6:79:01:fb:97:0a:b3:e5:
d0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:91:B8:45:72:7D:63:70:21:B0:F9:F0:18:E7:80:D2:47:64:B6:E9
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32342e302f32322d3232203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.24.0/22
Signature Algorithm: sha256WithRSAEncryption
34:ff:bb:6d:39:59:74:e1:99:27:8c:df:aa:21:39:87:07:e9:
cd:3c:f1:db:da:2d:f9:e0:49:31:8e:f0:53:f2:52:11:42:5d:
5c:fc:7d:a9:42:23:7a:80:82:b1:b0:f5:dc:e9:88:da:9f:d2:
96:c7:43:13:a7:d6:73:16:06:65:d0:5c:83:04:8d:78:73:de:
90:e1:85:89:71:3f:66:82:58:27:1f:67:a2:79:5b:9e:39:66:
e3:64:4b:5e:75:53:cf:b2:54:ee:b9:28:14:27:d5:81:96:b7:
d2:c8:70:5a:e6:80:fc:96:06:5f:2e:37:22:da:42:05:9e:27:
70:4a:d7:67:12:39:7b:96:9c:d9:14:42:0c:06:9c:2c:2d:64:
cc:2b:80:c5:cd:c8:9c:09:76:79:28:c2:cf:05:3b:9c:25:46:
02:b5:70:18:0d:9c:f0:17:ef:f6:6a:67:8a:b3:28:82:d8:a9:
30:16:e3:d7:e4:43:2c:69:7e:a1:9f:ea:f4:6d:57:1b:ec:05:
01:a4:a9:90:4b:39:a2:d2:bd:66:43:47:27:e7:f0:c2:1e:db:
3a:86:fa:99:c4:47:9b:0c:c7:58:69:ca:a1:14:32:3f:1d:34:
91:b9:4e:6f:14:47:9a:2c:24:fd:22:e6:6a:f9:26:c7:ae:39:
88:6c:04:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org