Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32352e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e32352e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: 4y1PYa2lLj39dNgpKvUwBardkQvhhMjIVVZiUsLdNPI=
Subject key identifier: 7F:68:A6:E3:B9:A1:1C:4E:96:D3:BE:D7:20:0E:48:08:D9:AF:68:76
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 604109DBDA9D0EDCEEE3A1A5639E62149E9CACF7
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32352e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:06 +0000
ROA not before: Thu 31 Aug 2023 05:55:06 +0000
ROA not after: Thu 29 Aug 2024 06:00:06 +0000
asID: 10217
IP address blocks: 202.171.25.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:41:09:db:da:9d:0e:dc:ee:e3:a1:a5:63:9e:62:14:9e:9c:ac:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:06 2023 GMT
Not After : Aug 29 06:00:06 2024 GMT
Subject: CN=7F68A6E3B9A11C4E96D3BED7200E4808D9AF6876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e6:7f:bf:2d:e9:d7:da:51:83:bc:f4:9a:81:
a3:e5:cf:8a:85:13:75:c3:2e:92:f2:92:38:8b:c2:
29:21:00:6e:6f:d4:65:dc:e2:cb:c4:5d:54:fc:82:
3d:e2:93:7c:4a:43:2a:61:f8:6f:dd:c8:77:43:de:
61:87:fe:00:69:1e:aa:a1:dc:7a:93:8e:f9:1a:89:
2e:42:7f:23:99:5c:35:e5:bf:e5:c7:1f:02:45:30:
0c:6f:a1:ce:21:7b:14:22:c9:4c:9c:3e:09:a0:df:
85:2a:c6:0c:55:6c:09:34:b5:b1:6f:4c:9f:58:de:
0c:1d:24:96:a0:61:d6:de:99:66:79:b7:ae:ac:97:
fb:7d:d5:e1:7a:17:6d:e9:f6:4c:2f:68:8a:34:c5:
f8:64:51:fd:ca:89:a3:99:c4:c7:68:e4:7b:3d:bf:
4f:b2:ae:a5:11:c8:f1:f9:7c:5a:b8:52:e0:7c:90:
3e:9b:69:2c:e0:b9:9d:e2:d8:12:4e:97:b1:8a:16:
73:56:f7:47:c1:ce:37:7e:97:dd:46:de:69:f3:7f:
13:62:7a:c0:de:3d:de:35:8c:cb:d5:6c:a7:b9:3e:
5d:20:f7:f1:cf:d1:e9:6e:3a:5a:ca:c7:4a:0d:63:
28:fc:a1:97:2e:33:82:d8:20:55:96:80:49:d4:64:
e7:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:68:A6:E3:B9:A1:1C:4E:96:D3:BE:D7:20:0E:48:08:D9:AF:68:76
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32352e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.25.0/24
Signature Algorithm: sha256WithRSAEncryption
34:25:b3:ae:1f:3c:97:1b:9f:12:a1:3b:27:48:9a:11:60:49:
32:5f:51:c3:05:fa:59:22:ef:86:91:51:31:24:c4:ed:08:7b:
62:82:b0:ae:10:18:9f:e2:e8:36:9b:c4:dd:34:55:95:55:39:
c2:cd:d5:b1:c7:ad:0f:56:c0:a4:c9:2b:ad:10:c3:74:21:09:
69:4d:e6:26:fc:7d:00:fc:07:ee:38:09:ea:18:ee:80:9e:3c:
b0:5c:f9:16:59:21:0c:45:c6:90:8f:aa:b7:5f:20:31:6e:3f:
a4:a2:ee:9d:8f:7a:2a:f2:59:08:4b:e2:9f:d8:38:ca:5e:2c:
ac:b2:cc:b9:69:88:f0:12:ba:e1:95:de:e6:a5:b1:f2:35:72:
17:02:fb:ee:b8:ed:3d:f5:89:71:db:d7:95:32:14:13:c2:52:
9e:48:c4:f2:65:ab:84:13:b6:d0:00:3f:1b:38:e1:e0:d9:e5:
52:d5:32:ec:c3:9a:0c:b5:69:8d:f1:1e:75:05:57:77:16:d7:
4a:45:44:03:23:a1:67:f2:fc:07:0d:e2:79:cb:4c:95:14:85:
2d:95:8c:75:1a:6a:61:0f:c6:eb:b2:86:ee:2a:02:45:0a:87:
95:a7:56:87:29:dd:07:84:72:6d:b4:d5:08:19:9c:7e:82:0a:
d0:4b:4d:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org