Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e33302e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e33302e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: wPi0JRXfHLYMYS1UXaft1i4Jyw7pVzOof2NevIFf858=
Subject key identifier: DE:AE:69:04:07:3D:C2:9A:AA:6C:72:89:63:81:9D:75:33:79:9D:AE
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 5FA10528EB76A27054E090D0B039DA821B13A052
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e33302e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:05 +0000
ROA not before: Thu 31 Aug 2023 05:55:05 +0000
ROA not after: Thu 29 Aug 2024 06:00:05 +0000
asID: 10217
IP address blocks: 202.171.30.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jun 2024 10:21:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:a1:05:28:eb:76:a2:70:54:e0:90:d0:b0:39:da:82:1b:13:a0:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:05 2023 GMT
Not After : Aug 29 06:00:05 2024 GMT
Subject: CN=DEAE6904073DC29AAA6C728963819D7533799DAE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:44:03:e1:9d:9d:0b:ea:09:5a:42:50:91:62:
a2:99:e1:66:24:24:85:6c:48:72:33:65:69:d9:4e:
e9:d5:2f:49:34:23:43:d8:69:28:aa:2b:af:24:34:
0e:b0:c1:67:17:c0:b1:2b:1e:9e:47:71:b5:87:8c:
ac:28:cb:32:94:ec:ff:8d:8b:b6:e0:8a:55:f7:db:
b8:e8:fd:89:4f:3f:d2:ae:d6:8e:19:3c:a0:35:1a:
20:1e:6d:7d:48:21:55:5d:84:9f:c6:e5:36:ad:2d:
69:ba:35:2c:c9:fb:d7:f6:a2:1e:2c:95:c6:02:14:
12:07:c2:7a:b4:2f:a1:6d:26:f2:db:72:ff:3c:8c:
07:ed:f3:94:e8:07:b3:9e:2d:c6:34:9d:4a:1d:89:
77:7b:f8:8b:bf:13:54:57:02:c5:d3:b7:cb:06:ea:
d6:01:3c:47:43:e3:43:e7:9e:7b:8f:35:9e:2c:a5:
ad:f3:2a:3f:49:50:95:a6:94:19:0e:de:d0:ec:8c:
67:44:c4:07:74:ee:4e:a2:df:8f:4b:29:38:7b:61:
07:0e:fe:ed:ff:16:2b:d0:1c:6e:6f:eb:ce:ac:00:
bd:d1:ce:17:43:d4:7e:8b:e4:2c:be:9a:9a:92:2b:
78:c0:b3:9a:85:fa:3f:68:56:00:ae:cb:8f:9d:38:
12:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:AE:69:04:07:3D:C2:9A:AA:6C:72:89:63:81:9D:75:33:79:9D:AE
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e33302e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.30.0/24
Signature Algorithm: sha256WithRSAEncryption
49:f9:a2:5d:0c:9a:38:42:ba:6c:56:24:3f:ec:6a:66:14:99:
cd:e0:46:12:0f:19:70:1c:f9:b8:31:de:bb:98:59:5c:ae:66:
7c:a6:11:3d:4d:80:54:1f:a9:72:22:8f:e2:3e:44:79:26:66:
30:3d:b2:f6:2e:55:8c:24:80:39:48:e4:a6:50:f8:3e:6e:e3:
9b:31:d2:7a:59:b1:cd:0b:86:66:4a:ef:87:02:37:b9:41:ce:
e0:a5:4f:db:80:88:16:54:5c:d0:d1:3b:c6:16:d7:8c:47:b9:
ad:c0:d7:ec:2d:ba:ff:bb:21:14:73:c2:e0:46:62:2c:2b:0a:
f6:43:03:43:d8:0b:17:87:91:9f:ac:30:23:df:75:4b:93:0b:
d9:42:75:d7:c3:c7:77:62:df:7a:36:d7:7d:de:e7:72:f6:1d:
0c:c4:37:e5:42:c7:8f:a4:dd:fb:23:50:cc:20:ae:1c:b8:40:
7a:b6:8f:35:8d:dd:7f:3d:81:d0:94:64:cc:43:8e:02:69:d7:
f8:c4:bb:71:3a:fe:83:92:60:07:99:c3:b6:14:1e:1f:e5:f9:
33:9a:c3:00:ca:6a:88:85:6e:a4:2e:62:d5:b3:25:1f:bb:e1:
19:45:e3:a6:7c:32:06:c3:dc:60:9b:b1:59:83:a6:04:18:f9:
b7:2b:c4:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org