Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32342e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e32342e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: 06yRMYKJ66VOfnWIiKcu8lTOvgRSzYByakZdKMuzayE=
Subject key identifier: 7D:09:08:7D:01:0B:68:4B:71:09:10:1A:1E:08:DC:14:76:84:DB:00
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 4FF04BCA4560D40A3559021FD79DEA9421CC16E5
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32342e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:04 +0000
ROA not before: Thu 31 Aug 2023 05:55:04 +0000
ROA not after: Thu 29 Aug 2024 06:00:04 +0000
asID: 10217
IP address blocks: 202.171.24.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:f0:4b:ca:45:60:d4:0a:35:59:02:1f:d7:9d:ea:94:21:cc:16:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:04 2023 GMT
Not After : Aug 29 06:00:04 2024 GMT
Subject: CN=7D09087D010B684B7109101A1E08DC147684DB00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:70:75:99:ac:60:1e:35:4c:4a:a4:7d:c0:32:
71:72:95:b9:84:d8:71:c5:82:8d:3e:93:18:cb:06:
41:9f:e3:55:98:3b:22:dc:3a:5f:20:d0:d3:03:2d:
84:76:d1:f9:98:5e:c9:36:a5:1f:f3:20:77:87:5f:
b1:93:64:f1:e1:ac:fc:aa:98:8e:93:f4:a5:9c:4b:
92:4a:ef:21:a6:20:a8:2e:3c:b7:06:3a:af:ad:33:
8b:d6:ef:9f:99:f6:80:7e:92:10:19:fa:ec:29:48:
62:75:8e:8e:f6:22:84:5b:da:3c:69:86:b2:74:da:
43:ac:74:96:01:d0:3d:e8:43:62:21:a2:e4:4f:3e:
28:de:f2:bc:4e:a8:33:31:50:cd:c1:12:32:c5:d1:
7c:b9:60:c4:89:5c:79:1d:20:65:0b:09:07:69:86:
e4:69:9d:ff:04:94:f0:dd:33:87:f5:5a:bc:9d:87:
74:22:84:76:a7:c2:7d:39:2b:08:83:45:a4:97:a7:
60:fb:43:19:85:6f:0a:f2:17:83:0a:90:67:59:a5:
41:b4:93:cd:5b:3f:96:d9:44:82:05:7d:b5:d6:5c:
9c:41:1d:82:9d:70:5b:10:2a:98:15:69:3f:cc:d1:
20:4a:2c:d0:ff:3d:1a:8e:25:60:88:a4:5c:60:62:
72:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:09:08:7D:01:0B:68:4B:71:09:10:1A:1E:08:DC:14:76:84:DB:00
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32342e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.24.0/24
Signature Algorithm: sha256WithRSAEncryption
45:9f:2f:c7:94:29:10:22:c1:53:01:0e:36:de:7b:31:c7:9f:
a0:6b:9d:30:0e:85:61:d5:61:fb:55:bb:a7:60:83:0b:a8:10:
15:87:e6:e7:2f:4a:6a:ef:2b:33:20:3e:8f:2b:42:b5:b1:f4:
cb:83:0a:ca:0a:f0:30:a4:d1:2f:20:8c:47:58:c4:73:82:49:
ba:c5:7b:eb:62:5a:14:ce:0b:0e:08:29:b9:61:62:8c:f8:85:
c0:84:99:df:c8:d5:b6:11:90:61:7f:05:c8:44:10:e2:31:3a:
3a:a2:ad:e2:87:72:a5:f9:86:87:01:24:70:54:7c:30:32:01:
a7:af:cc:10:c8:31:cb:fe:f4:69:a6:1b:56:0e:86:e6:db:d0:
02:bc:58:1e:98:2b:fc:37:98:a6:33:81:7a:3b:70:fe:e0:1b:
f1:d1:56:00:2c:79:89:8b:fd:18:c0:9f:84:5f:e8:ad:c1:71:
03:03:16:5e:c8:ea:54:fd:00:82:5b:04:3a:1b:66:2f:21:eb:
44:44:e4:b5:c1:11:76:46:a2:b4:31:0b:fc:29:e4:d5:c1:6b:
c5:aa:e7:ca:19:e6:e9:2f:45:4a:a5:c0:43:2d:9b:a1:2e:c3:
d0:70:e1:3c:48:97:2c:b1:da:ad:91:6c:fa:1b:9c:72:d2:5c:
65:49:11:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org