Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e342e302f32322d3232203d3e203130323137.roa
File: 3230322e3137312e342e302f32322d3232203d3e203130323137.roa (raw, json)
Hash identifier: 0TfByRgyU7oZRhW5ZqbQu2a0t3yjRi7vq826z8nOdCw=
Subject key identifier: EF:36:C1:7B:FD:0A:42:60:51:CA:33:E3:8E:F1:CB:C1:E7:96:BE:88
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 3BD2084BA2FA13C50BA3FB68B0ED737677C61CA2
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e342e302f32322d3232203d3e203130323137.roa
Signing time: Fri 17 Nov 2023 07:04:31 +0000
ROA not before: Fri 17 Nov 2023 06:59:31 +0000
ROA not after: Fri 15 Nov 2024 07:04:31 +0000
asID: 10217
IP address blocks: 202.171.4.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:d2:08:4b:a2:fa:13:c5:0b:a3:fb:68:b0:ed:73:76:77:c6:1c:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Nov 17 06:59:31 2023 GMT
Not After : Nov 15 07:04:31 2024 GMT
Subject: CN=EF36C17BFD0A426051CA33E38EF1CBC1E796BE88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:04:66:73:13:94:56:99:b7:75:8e:b8:2c:3a:
4b:e7:a1:1a:2a:e6:d7:87:ea:35:e4:04:e8:33:4b:
41:c7:10:29:05:b3:d3:32:11:05:3b:b5:eb:9f:67:
5b:a3:4b:00:56:cb:9c:9a:ac:7e:53:96:74:02:5e:
04:7e:09:93:e6:b2:df:fa:96:13:07:65:d3:fe:f4:
12:ca:6f:a4:b4:cd:d5:e5:ea:6c:84:98:23:9e:5e:
31:49:b0:47:0b:f3:04:d1:45:b7:bf:f8:f0:83:2a:
b5:54:6e:67:d5:ab:ae:dd:cb:4f:55:40:39:d4:fe:
f0:bd:56:67:ab:b2:3e:00:b9:d6:88:7f:11:26:6a:
41:25:ee:cb:f1:ec:29:2b:5f:ff:34:ef:52:46:eb:
fa:2d:1f:8e:85:bd:73:51:f4:81:e9:5f:53:f6:19:
85:17:75:b2:bb:da:78:ab:1a:db:d1:e7:d5:ce:6b:
e5:9a:ff:c7:d2:7b:53:5c:39:c8:48:6f:bd:ff:71:
24:99:58:26:51:00:ff:a2:06:7f:29:0d:91:55:28:
00:ff:70:e7:aa:12:05:05:bf:61:a5:55:b4:25:99:
2e:37:cd:38:27:a1:37:95:a2:4b:63:a2:e9:b4:f7:
3d:42:ed:ac:64:11:f9:e4:53:fd:c3:bd:d3:51:4d:
44:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:36:C1:7B:FD:0A:42:60:51:CA:33:E3:8E:F1:CB:C1:E7:96:BE:88
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e342e302f32322d3232203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.4.0/22
Signature Algorithm: sha256WithRSAEncryption
30:03:5c:e5:9d:27:3e:a4:c5:ef:ea:21:7b:21:3c:9f:3f:5a:
aa:7c:1e:fd:0d:a1:e5:4f:75:a2:b5:44:60:94:ed:34:16:75:
f3:1f:8c:4e:e2:32:b6:5e:9e:36:66:d4:cf:5a:85:13:8d:c8:
66:3e:32:d5:be:0c:f5:89:ed:bd:ca:5f:7f:51:4c:1d:52:8a:
e9:91:5f:1d:55:8e:ed:31:6e:a4:1f:e5:0b:b3:ba:c5:68:e7:
81:62:3a:1a:7d:61:94:2f:8a:09:4c:0b:63:3f:09:3a:1c:80:
65:55:b9:2c:eb:ac:c2:a9:a6:12:94:e6:c7:70:01:b1:51:f1:
81:46:fb:77:29:0d:5d:04:e8:1a:3c:56:85:d2:34:ff:0b:55:
db:cb:9c:f5:07:8a:68:8c:44:6c:45:c1:b6:86:98:f0:d3:14:
97:87:be:dc:d9:94:c3:dd:36:eb:00:3f:65:ce:3d:d8:5d:7c:
1d:b4:ea:0e:ee:b7:f0:ae:1d:73:11:9e:ab:1f:c6:2e:b2:d1:
f4:93:bc:5b:91:12:34:5e:2d:96:4c:15:73:75:49:c6:a5:35:
c1:bd:00:00:86:5f:da:4d:0a:10:5d:f3:d7:5d:b7:a9:fa:f7:
57:02:c8:3f:98:25:46:e0:66:a7:a2:71:ac:13:df:99:cb:59:
4d:82:40:28
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIUO9IIS6L6E8ULo/tosO1zdnfGHKIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjI5ODY2NTA4RDZENjI0NTIzRURBRDJBMERFMUU4MkFF
MkMzQjUxMjAeFw0yMzExMTcwNjU5MzFaFw0yNDExMTUwNzA0MzFaMDMxMTAvBgNV
BAMTKEVGMzZDMTdCRkQwQTQyNjA1MUNBMzNFMzhFRjFDQkMxRTc5NkJFODgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjBGZzE5RWmbd1jrgsOkvnoRoq
5teH6jXkBOgzS0HHECkFs9MyEQU7teufZ1ujSwBWy5yarH5TlnQCXgR+CZPmst/6
lhMHZdP+9BLKb6S0zdXl6myEmCOeXjFJsEcL8wTRRbe/+PCDKrVUbmfVq67dy09V
QDnU/vC9Vmersj4AudaIfxEmakEl7svx7CkrX/8071JG6/otH46FvXNR9IHpX1P2
GYUXdbK72nirGtvR59XOa+Wa/8fSe1NcOchIb73/cSSZWCZRAP+iBn8pDZFVKAD/
cOeqEgUFv2GlVbQlmS43zTgnoTeVoktjoum09z1C7axkEfnkU/3DvdNRTURZAgMB
AAGjggIwMIICLDAdBgNVHQ4EFgQU7zbBe/0KQmBRyjPjjvHLweeWvogwHwYDVR0j
BBgwFoAUIphmUI1tYkUj7a0qDeHoKuLDtRIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y
ZmI3MDgxOC0yMzY2LTQyZTAtOWRiZC0yNTQzODEwNjllNTcvMC8yMjk4NjY1MDhE
NkQ2MjQ1MjNFREFEMkEwREUxRTgyQUUyQzNCNTEyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjI5ODY2NTA4RDZENjI0NTIzRURBRDJBMERFMUU4MkFFMkMz
QjUxMi5jZXIwgaAGCCsGAQUFBwELBIGTMIGQMIGNBggrBgEFBQcwC4aBgHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmYjcwODE4LTIzNjYtNDJlMC05
ZGJkLTI1NDM4MTA2OWU1Ny8wLzMyMzAzMjJlMzEzNzMxMmUzNDJlMzAyZjMyMzIy
ZDMyMzIyMDNkM2UyMDMxMzAzMjMxMzcucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYB
BQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALKqwQwDQYJKoZIhvcN
AQELBQADggEBADADXOWdJz6kxe/qIXshPJ8/Wqp8Hv0NoeVPdaK1RGCU7TQWdfMf
jE7iMrZenjZm1M9ahRONyGY+MtW+DPWJ7b3KX39RTB1SiumRXx1Vju0xbqQf5Quz
usVo54FiOhp9YZQviglMC2M/CTocgGVVuSzrrMKpphKU5sdwAbFR8YFG+3cpDV0E
6Bo8VoXSNP8LVdvLnPUHimiMRGxFwbaGmPDTFJeHvtzZlMPdNusAP2XOPdhdfB20
6g7ut/CuHXMRnqsfxi6y0fSTvFuREjReLZZMFXN1ScalNcG9AACGX9pNChBd89dd
t6n691cCyD+YJUbgZqeicawT35nLWU2CQCg=
-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org