Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e332e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e332e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: Fy+OcExQCKaoldmOfg1lhbOvYpeJGAtz//1umnOdbWE=
Subject key identifier: 0D:A3:85:EB:57:A2:1D:B8:34:F4:2B:E8:23:3F:C2:31:80:AC:80:2E
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 758EE5C89BA5B49E11754D30DF59FF674F5161AD
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e332e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:07 +0000
ROA not before: Thu 31 Aug 2023 05:55:07 +0000
ROA not after: Thu 29 Aug 2024 06:00:07 +0000
asID: 10217
IP address blocks: 202.171.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:8e:e5:c8:9b:a5:b4:9e:11:75:4d:30:df:59:ff:67:4f:51:61:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:07 2023 GMT
Not After : Aug 29 06:00:07 2024 GMT
Subject: CN=0DA385EB57A21DB834F42BE8233FC23180AC802E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7d:5c:c5:2a:94:87:29:95:b7:ab:84:8a:91:
ea:99:82:a8:f0:72:f1:7d:c0:60:7a:0a:0e:f9:be:
6d:a0:59:06:89:d0:b7:fa:7b:9e:eb:dc:9c:27:c9:
9b:5e:12:f4:5e:49:08:5d:5c:cd:39:14:50:99:fa:
31:e1:d4:dc:07:b7:11:84:da:dc:a9:c6:1f:66:df:
5b:05:b9:5f:f4:d7:a6:5a:76:59:ca:e4:16:5f:da:
d4:d0:5c:20:f9:df:ee:a3:3e:eb:c6:41:5e:da:a0:
5e:4e:ea:29:b3:c1:08:17:5c:da:54:2d:22:6e:6f:
68:a0:d6:0e:37:20:21:b3:51:ca:cf:ae:c8:87:ad:
47:c6:ec:b6:0d:0f:d1:61:cb:42:c7:da:6c:a5:29:
b6:1a:02:96:18:98:3a:ea:c6:03:ad:28:a2:9f:18:
21:6c:eb:70:11:c2:85:fe:36:63:c7:c5:c5:6c:d4:
54:c0:38:86:4b:d4:5f:ef:67:3e:fc:da:bd:0a:f7:
98:ca:bc:15:64:ec:41:9d:1b:c9:d2:97:cb:ea:76:
8e:19:2e:7b:bc:bb:8f:12:fa:0b:82:0a:3f:b8:1e:
82:93:01:2e:45:18:67:26:e7:31:67:7d:ba:5e:fe:
35:07:8f:9e:4b:3e:0d:92:38:82:34:98:1a:ae:ea:
6d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A3:85:EB:57:A2:1D:B8:34:F4:2B:E8:23:3F:C2:31:80:AC:80:2E
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e332e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.3.0/24
Signature Algorithm: sha256WithRSAEncryption
84:35:f2:f1:98:8d:71:93:0f:17:fe:50:99:2e:6f:a9:f6:e4:
f5:3f:44:30:45:0c:5b:45:3c:f5:c9:45:e9:08:c4:bd:40:85:
23:ae:c9:52:6f:3f:6e:e9:99:5c:dd:13:bd:6c:d2:f5:28:4b:
a6:91:0b:4b:97:95:4d:47:59:f8:4c:2e:d7:0e:2e:e1:30:38:
b6:00:5b:dd:ad:c7:49:a2:38:e9:12:bf:8f:fa:56:56:e0:69:
bc:57:9f:73:a5:95:72:d8:06:7e:27:df:33:92:59:0e:7a:f2:
89:d1:24:97:8b:01:8f:1b:2e:7a:5b:56:d1:09:a3:fc:30:dc:
b4:30:fc:86:e5:cb:3d:f7:40:a2:83:bd:f2:48:50:ef:7b:9c:
b0:a3:e0:0e:49:87:29:76:3f:b4:d7:c2:d3:ee:fd:e5:c4:32:
38:ba:40:2c:7d:da:fb:7a:dd:0f:d2:44:25:1a:59:8e:3f:3d:
c0:94:aa:b0:50:85:1d:18:25:bd:4d:7e:c9:03:44:c9:3d:45:
6e:0d:83:6b:b2:69:e6:6d:c8:0a:60:01:c3:b8:95:02:ab:5c:
21:38:33:77:96:dc:01:d7:8a:a0:dd:d3:cb:0e:c2:98:60:12:
e0:62:c5:b4:17:42:7e:67:47:ee:7c:19:46:65:b6:5d:4b:b1:
0b:b5:38:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org