Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32382e302f32322d3232203d3e203130323137.roa
File: 3230322e3137312e32382e302f32322d3232203d3e203130323137.roa (raw, json)
Hash identifier: CsNvES5YpMx7I98ASgFyPU//YT9qZXqIJKtbytzLmXA=
Subject key identifier: 05:14:E6:23:DD:EE:09:1C:1F:1A:F3:D0:FB:CB:4E:35:71:1E:6C:36
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 74A5F23BEBBE6B0A4DC0DD18B7DF724AE88EA9D2
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32382e302f32322d3232203d3e203130323137.roa
Signing time: Fri 17 Nov 2023 07:11:35 +0000
ROA not before: Fri 17 Nov 2023 07:06:35 +0000
ROA not after: Fri 15 Nov 2024 07:11:35 +0000
asID: 10217
IP address blocks: 202.171.28.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:a5:f2:3b:eb:be:6b:0a:4d:c0:dd:18:b7:df:72:4a:e8:8e:a9:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Nov 17 07:06:35 2023 GMT
Not After : Nov 15 07:11:35 2024 GMT
Subject: CN=0514E623DDEE091C1F1AF3D0FBCB4E35711E6C36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:51:d8:7e:6a:9d:6b:ec:f6:ee:90:e2:73:31:
24:47:84:03:4a:6e:0e:4e:cd:64:69:9a:c6:cc:a0:
43:8a:a1:ed:13:84:e9:79:e3:42:9d:58:38:c6:8d:
b7:73:92:59:9a:e2:cb:67:a4:51:4b:57:88:90:d0:
58:b4:35:72:ef:3a:b4:d4:e4:95:9c:ef:c0:59:74:
19:50:3c:22:19:d2:8d:04:b1:ca:f8:2b:1a:cd:aa:
a8:4e:b4:81:42:85:8d:fa:96:a4:a3:10:9b:85:6e:
be:aa:47:20:56:6d:79:20:d4:b2:ed:72:2d:a4:51:
a3:a8:63:df:57:08:b7:a3:0c:18:d5:fd:36:d4:30:
12:68:93:97:80:a8:7c:47:ba:82:fe:c4:f7:ef:40:
7d:4a:68:d0:d6:cd:36:90:79:ee:4d:cf:5b:b8:bb:
22:91:1c:c4:44:96:99:bd:9b:e9:24:a6:30:78:37:
69:89:0e:7f:bb:6a:ca:dc:1d:da:74:94:dd:ab:bf:
18:b0:21:36:d4:55:6c:ef:f2:8e:1e:80:86:a6:6c:
67:77:3f:08:8d:fd:b1:7f:f6:5c:45:e9:1e:63:15:
27:9d:2a:ac:0e:e2:a1:c9:5c:7d:7f:cd:7f:b2:a2:
e9:e8:e1:77:0b:60:06:69:a9:ed:a0:90:67:90:19:
09:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:14:E6:23:DD:EE:09:1C:1F:1A:F3:D0:FB:CB:4E:35:71:1E:6C:36
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32382e302f32322d3232203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.28.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:44:c0:a1:20:c2:36:3b:d1:e2:85:7d:ed:83:cf:46:ef:b9:
c8:ca:07:26:5b:63:0e:55:9b:27:00:b1:00:6d:55:52:22:22:
97:7a:d0:04:42:fe:d2:38:19:f0:3d:d9:ba:c2:36:fa:81:6c:
bb:c3:a6:23:54:99:1e:a2:a3:df:48:d9:9e:36:ee:47:09:37:
64:db:08:70:24:9e:90:45:b6:cc:02:50:75:a9:b2:e6:79:6f:
f2:bb:83:b6:38:65:c4:e5:27:83:db:b5:a4:52:ec:6c:54:18:
fa:ea:b4:45:5b:38:92:82:de:40:8e:7d:57:74:11:e4:5c:ff:
35:dd:12:8b:d8:d0:fe:2f:7d:2d:6c:22:e0:d2:d5:8d:22:99:
e8:d7:7e:ec:fb:d8:75:c0:a4:99:6b:c0:d0:2a:4c:cf:2c:ec:
14:16:bf:fc:56:14:7f:23:55:a9:33:d4:c0:00:35:bf:cc:63:
85:11:1c:0a:ce:38:e6:df:79:1a:41:59:7c:3b:a9:21:23:09:
e6:08:b5:9c:31:c8:b3:ab:1a:a7:34:1e:c8:31:0a:82:71:39:
ab:b9:c4:17:5d:52:c6:5d:59:eb:02:4d:ef:67:e3:b5:58:b7:
39:2b:7e:28:64:67:d1:1a:cf:3a:10:b9:2e:70:3b:bd:68:f9:
7f:2b:a4:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org