Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32382e302f32332d3233203d3e203130323137.roa
File: 3230322e3137312e32382e302f32332d3233203d3e203130323137.roa (raw, json)
Hash identifier: 4unhDvjDTbj0SmMUiMr8EmoIGT3lqRhelMxh5caHcuw=
Subject key identifier: DB:97:59:0A:CA:75:B6:01:A8:5C:83:2F:2D:83:2D:CD:14:AD:6B:D9
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 4E73081884E8214BA408BBAE0CDD697ECC2DF97B
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32382e302f32332d3233203d3e203130323137.roa
Signing time: Fri 17 Nov 2023 07:23:01 +0000
ROA not before: Fri 17 Nov 2023 07:18:01 +0000
ROA not after: Fri 15 Nov 2024 07:23:01 +0000
asID: 10217
IP address blocks: 202.171.28.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 04 Jun 2024 10:21:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:73:08:18:84:e8:21:4b:a4:08:bb:ae:0c:dd:69:7e:cc:2d:f9:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Nov 17 07:18:01 2023 GMT
Not After : Nov 15 07:23:01 2024 GMT
Subject: CN=DB97590ACA75B601A85C832F2D832DCD14AD6BD9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c7:ee:23:f2:e0:46:4c:69:5d:26:5f:32:f8:
68:d3:af:a1:ce:dc:33:b5:62:5c:1a:d6:37:cd:f1:
a3:5f:67:1c:84:27:fe:11:49:7c:92:78:3c:c5:52:
31:eb:ff:b3:09:9a:72:53:f8:ac:c8:af:28:37:b7:
49:46:11:da:f8:be:09:e7:3b:03:58:4a:30:32:72:
b9:99:11:69:97:ed:08:96:49:6b:e2:1d:a8:4d:c1:
9c:37:4a:b5:84:41:45:1c:1a:70:06:df:ef:c0:d1:
4b:80:75:d5:51:c3:15:dc:31:e1:05:68:d5:2b:9b:
d0:46:e3:dd:72:89:d4:6a:c5:42:12:05:ee:af:b9:
4e:5d:57:c4:a0:31:c5:d6:40:e7:5e:7f:e9:b5:8c:
af:e0:d3:c1:d0:fa:86:b4:66:89:02:4d:6c:0a:86:
29:e6:29:90:32:ae:87:50:14:5d:c3:67:9f:c6:fb:
fa:53:07:7a:7a:4a:13:ba:50:24:1f:99:cf:ed:e0:
db:86:76:63:e7:a4:3b:10:df:0b:92:2e:2f:e9:d5:
42:c8:d1:7d:c9:e3:a0:e3:12:7e:65:11:53:68:85:
c3:95:69:5e:76:93:37:dc:ab:99:85:92:79:a1:85:
6d:13:7b:9b:3a:8e:e8:c1:46:56:20:f3:dc:66:28:
f5:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:97:59:0A:CA:75:B6:01:A8:5C:83:2F:2D:83:2D:CD:14:AD:6B:D9
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e32382e302f32332d3233203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.28.0/23
Signature Algorithm: sha256WithRSAEncryption
79:5a:d1:d5:63:64:e8:4c:60:37:88:60:93:2a:c6:c9:1e:03:
13:bf:02:91:6e:31:b2:0d:a9:e3:ed:c9:6f:04:12:2d:18:ce:
91:9a:84:62:fa:9a:46:b8:69:7d:29:56:8d:9f:e2:20:d9:90:
2f:91:b6:19:2c:42:65:5e:bb:a1:6f:06:06:2c:dd:44:6f:e5:
aa:cd:66:7a:d0:1b:96:45:08:91:20:c0:f6:81:28:23:7a:fc:
18:5a:78:1f:0c:b2:03:8f:af:ce:36:d4:3f:ca:e6:69:b9:1b:
7b:24:d3:c4:99:5e:80:ac:a4:4b:94:88:21:ae:72:bf:3a:4a:
18:3d:90:62:a5:0c:6f:29:1a:63:3e:09:05:c2:aa:ba:91:1a:
e6:61:7e:4f:e1:b5:cc:40:93:4b:8a:df:35:93:23:c9:55:ce:
21:54:ff:43:f9:e0:24:e1:7b:f7:de:da:16:42:9e:e6:07:d6:
7f:53:da:2d:d9:7c:77:87:7e:19:58:21:36:c2:d5:ac:a0:a5:
0a:88:30:c6:88:0e:da:86:76:8a:bd:5f:51:2a:ad:06:fe:4d:
a9:46:87:7d:b3:2d:84:ef:b5:45:e1:5d:a0:28:00:e3:a2:d0:
cd:00:83:30:72:13:31:0a:aa:c0:18:6c:a7:0f:9f:ed:d3:b8:
e4:92:8d:c3
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUTnMIGIToIUukCLuuDN1pfswt+XswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjI5ODY2NTA4RDZENjI0NTIzRURBRDJBMERFMUU4MkFF
MkMzQjUxMjAeFw0yMzExMTcwNzE4MDFaFw0yNDExMTUwNzIzMDFaMDMxMTAvBgNV
BAMTKERCOTc1OTBBQ0E3NUI2MDFBODVDODMyRjJEODMyRENEMTRBRDZCRDkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPx+4j8uBGTGldJl8y+GjTr6HO
3DO1Ylwa1jfN8aNfZxyEJ/4RSXySeDzFUjHr/7MJmnJT+KzIryg3t0lGEdr4vgnn
OwNYSjAycrmZEWmX7QiWSWviHahNwZw3SrWEQUUcGnAG3+/A0UuAddVRwxXcMeEF
aNUrm9BG491yidRqxUISBe6vuU5dV8SgMcXWQOdef+m1jK/g08HQ+oa0ZokCTWwK
hinmKZAyrodQFF3DZ5/G+/pTB3p6ShO6UCQfmc/t4NuGdmPnpDsQ3wuSLi/p1ULI
0X3J46DjEn5lEVNohcOVaV52kzfcq5mFknmhhW0Te5s6jujBRlYg89xmKPWNAgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQU25dZCsp1tgGoXIMvLYMtzRSta9kwHwYDVR0j
BBgwFoAUIphmUI1tYkUj7a0qDeHoKuLDtRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y
ZmI3MDgxOC0yMzY2LTQyZTAtOWRiZC0yNTQzODEwNjllNTcvMC8yMjk4NjY1MDhE
NkQ2MjQ1MjNFREFEMkEwREUxRTgyQUUyQzNCNTEyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjI5ODY2NTA4RDZENjI0NTIzRURBRDJBMERFMUU4MkFFMkMz
QjUxMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmYjcwODE4LTIzNjYtNDJlMC05
ZGJkLTI1NDM4MTA2OWU1Ny8wLzMyMzAzMjJlMzEzNzMxMmUzMjM4MmUzMDJmMzIz
MzJkMzIzMzIwM2QzZTIwMzEzMDMyMzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcqrHDANBgkqhkiG
9w0BAQsFAAOCAQEAeVrR1WNk6ExgN4hgkyrGyR4DE78CkW4xsg2p4+3JbwQSLRjO
kZqEYvqaRrhpfSlWjZ/iINmQL5G2GSxCZV67oW8GBizdRG/lqs1metAblkUIkSDA
9oEoI3r8GFp4HwyyA4+vzjbUP8rmabkbeyTTxJlegKykS5SIIa5yvzpKGD2QYqUM
bykaYz4JBcKqupEa5mF+T+G1zECTS4rfNZMjyVXOIVT/Q/ngJOF7997aFkKe5gfW
f1PaLdl8d4d+GVghNsLVrKClCogwxogO2oZ2ir1fUSqtBv5NqUaHfbMthO+1ReFd
oCgA46LQzQCDMHITMQqqwBhspw+f7dO45JKNww==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org