Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e33312e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e33312e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: 54IOnXIusVl5c3KNPT0biwpgmLrPQxB+//oZb9tfEJA=
Subject key identifier: FD:2A:DD:9D:6F:B4:45:CE:C6:2E:FB:E8:6E:96:55:51:3C:E8:74:A2
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 5AA3AE6A00DF074CFE249E4EEAB75EC1EBCAC3AE
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e33312e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:06 +0000
ROA not before: Thu 31 Aug 2023 05:55:06 +0000
ROA not after: Thu 29 Aug 2024 06:00:06 +0000
asID: 10217
IP address blocks: 202.171.31.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:a3:ae:6a:00:df:07:4c:fe:24:9e:4e:ea:b7:5e:c1:eb:ca:c3:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:06 2023 GMT
Not After : Aug 29 06:00:06 2024 GMT
Subject: CN=FD2ADD9D6FB445CEC62EFBE86E9655513CE874A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:db:35:e7:40:0d:68:e7:db:dd:7e:30:92:b4:
ec:d8:7f:53:e2:23:99:4e:ec:30:4a:9a:11:31:c7:
65:b9:8c:3f:a4:82:a6:f0:1e:d4:6a:fe:dc:de:ef:
18:fa:85:e7:7f:d9:d3:fc:5d:92:86:9d:c6:55:e9:
20:3b:51:a5:92:2c:61:a8:42:d5:b5:30:2e:f5:dc:
e9:f4:a5:b9:88:dc:ce:61:96:2c:08:4d:2f:95:90:
60:f1:94:5f:e0:01:86:ee:7a:5a:63:87:a5:94:ab:
8d:19:d4:7b:db:ed:8a:4b:8c:c5:ac:fb:71:d3:e2:
20:9d:e5:ef:9b:4b:44:e9:7d:75:e9:9b:04:ed:13:
b6:e6:23:86:05:67:e2:2a:5a:31:ae:63:e6:d3:fd:
61:9b:a7:90:e2:fc:79:44:33:dc:5c:c8:36:19:6e:
22:87:64:a5:e9:39:f0:93:dc:3e:38:44:3c:d1:06:
d7:12:ca:49:e2:3a:49:ee:87:d6:5c:48:a1:51:ea:
23:11:25:04:b6:11:e4:71:f4:6a:e9:95:07:ad:fe:
b2:3e:d0:97:19:53:44:6c:63:15:78:8d:4a:c9:91:
d7:48:1c:1f:24:84:a7:34:9e:4b:6c:f1:fe:b7:38:
42:83:b5:ef:de:ae:e7:fa:cd:08:97:91:e0:78:22:
c1:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:2A:DD:9D:6F:B4:45:CE:C6:2E:FB:E8:6E:96:55:51:3C:E8:74:A2
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e33312e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.31.0/24
Signature Algorithm: sha256WithRSAEncryption
69:c5:ac:9b:46:de:65:9d:68:71:e0:3f:c9:59:38:3f:2c:c4:
e4:cf:58:18:76:ac:bb:3a:66:1f:cd:3a:be:d7:c2:12:a4:ec:
6e:b3:6b:c0:75:11:5a:fe:23:a1:a9:00:d1:28:ca:32:e6:7d:
e5:5e:ff:35:9e:ad:33:2b:78:93:72:cd:4b:fb:bf:36:bc:e8:
89:a4:80:fe:40:24:b6:72:d2:cd:65:cd:4b:91:14:e1:bb:8d:
ac:de:96:37:04:49:2a:a6:ad:dd:b9:86:f9:91:bf:e9:f3:b2:
03:f8:21:5c:d2:1b:54:4c:9e:4e:6e:26:2d:35:42:02:62:fc:
b6:09:11:57:63:04:43:9c:1e:74:34:01:7f:55:bd:67:a0:f9:
97:e3:ee:68:2b:a6:8a:91:c5:ff:f3:cc:a8:be:d9:62:bb:f6:
c3:8b:2c:7c:08:06:b8:81:6b:7a:46:19:cb:57:91:37:20:82:
ca:9f:c2:dd:d7:b3:9b:42:53:49:6b:1c:19:50:53:b5:fa:36:
d5:42:16:d7:b4:66:d9:b4:3b:c0:3a:8d:fc:c3:83:0d:cf:ad:
1e:2e:ab:bb:2d:8c:13:ab:58:bf:cd:fe:82:34:72:92:d4:dc:
3c:48:6a:b6:62:b7:a4:fb:b3:f2:8f:64:cf:cf:fe:a0:f2:7a:
74:c5:21:a6
-----BEGIN CERTIFICATE-----
MIIFKDCCBBCgAwIBAgIUWqOuagDfB0z+JJ5O6rdewevKw64wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjI5ODY2NTA4RDZENjI0NTIzRURBRDJBMERFMUU4MkFF
MkMzQjUxMjAeFw0yMzA4MzEwNTU1MDZaFw0yNDA4MjkwNjAwMDZaMDMxMTAvBgNV
BAMTKEZEMkFERDlENkZCNDQ1Q0VDNjJFRkJFODZFOTY1NTUxM0NFODc0QTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi2zXnQA1o59vdfjCStOzYf1Pi
I5lO7DBKmhExx2W5jD+kgqbwHtRq/tze7xj6hed/2dP8XZKGncZV6SA7UaWSLGGo
QtW1MC713On0pbmI3M5hliwITS+VkGDxlF/gAYbuelpjh6WUq40Z1Hvb7YpLjMWs
+3HT4iCd5e+bS0TpfXXpmwTtE7bmI4YFZ+IqWjGuY+bT/WGbp5Di/HlEM9xcyDYZ
biKHZKXpOfCT3D44RDzRBtcSykniOknuh9ZcSKFR6iMRJQS2EeRx9GrplQet/rI+
0JcZU0RsYxV4jUrJkddIHB8khKc0nkts8f63OEKDte/eruf6zQiXkeB4IsG9AgMB
AAGjggIyMIICLjAdBgNVHQ4EFgQU/SrdnW+0Rc7GLvvobpZVUTzodKIwHwYDVR0j
BBgwFoAUIphmUI1tYkUj7a0qDeHoKuLDtRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y
ZmI3MDgxOC0yMzY2LTQyZTAtOWRiZC0yNTQzODEwNjllNTcvMC8yMjk4NjY1MDhE
NkQ2MjQ1MjNFREFEMkEwREUxRTgyQUUyQzNCNTEyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjI5ODY2NTA4RDZENjI0NTIzRURBRDJBMERFMUU4MkFFMkMz
QjUxMi5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmYjcwODE4LTIzNjYtNDJlMC05
ZGJkLTI1NDM4MTA2OWU1Ny8wLzMyMzAzMjJlMzEzNzMxMmUzMzMxMmUzMDJmMzIz
NDJkMzIzNDIwM2QzZTIwMzEzMDMyMzEzNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggr
BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMqrHzANBgkqhkiG
9w0BAQsFAAOCAQEAacWsm0beZZ1oceA/yVk4PyzE5M9YGHasuzpmH806vtfCEqTs
brNrwHURWv4joakA0SjKMuZ95V7/NZ6tMyt4k3LNS/u/NrzoiaSA/kAktnLSzWXN
S5EU4buNrN6WNwRJKqat3bmG+ZG/6fOyA/ghXNIbVEyeTm4mLTVCAmL8tgkRV2ME
Q5wedDQBf1W9Z6D5l+PuaCumipHF//PMqL7ZYrv2w4ssfAgGuIFrekYZy1eRNyCC
yp/C3dezm0JTSWscGVBTtfo21UIW17Rm2bQ7wDqN/MODDc+tHi6ruy2ME6tYv83+
gjRyktTcPEhqtmK3pPuz8o9kz8/+oPJ6dMUhpg==
-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org