Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e342e302f32332d3233203d3e203130323137.roa
File: 3230322e3137312e342e302f32332d3233203d3e203130323137.roa (raw, json)
Hash identifier: gOjmDEtXoAMNIU/nrOKgRpGKuXesXim1bSD8sYY8WfU=
Subject key identifier: 4F:95:73:0E:BB:A8:91:6C:AE:7E:DF:14:B7:D4:23:C4:EC:C6:A2:4D
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 7349367B02B888D645CB0025E5EF5845665B2F54
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e342e302f32332d3233203d3e203130323137.roa
Signing time: Fri 17 Nov 2023 07:14:13 +0000
ROA not before: Fri 17 Nov 2023 07:09:13 +0000
ROA not after: Fri 15 Nov 2024 07:14:13 +0000
asID: 10217
IP address blocks: 202.171.4.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:49:36:7b:02:b8:88:d6:45:cb:00:25:e5:ef:58:45:66:5b:2f:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Nov 17 07:09:13 2023 GMT
Not After : Nov 15 07:14:13 2024 GMT
Subject: CN=4F95730EBBA8916CAE7EDF14B7D423C4ECC6A24D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d7:f0:8d:08:1c:56:11:47:d4:23:7e:c9:46:
e8:76:23:a3:c3:9d:1f:65:c4:80:aa:1d:f4:85:2f:
e0:a0:5d:3a:c8:5f:c3:2d:0b:19:97:33:7f:d4:8f:
8c:84:d8:2d:b3:e0:f0:99:b6:a2:66:25:7a:2f:2a:
75:73:4a:e5:58:22:20:68:4d:7a:fd:be:2b:a5:41:
11:3a:1a:3a:a3:dc:9c:1d:53:0a:c5:d4:1d:a5:33:
ed:1c:f9:fa:f1:61:bb:74:19:2a:e9:38:5f:9b:5a:
7b:8e:d7:ed:d9:6e:f9:51:fb:b9:19:b0:e2:53:c9:
5c:09:8d:1e:bf:95:09:5e:fb:dc:b9:61:18:c6:03:
66:06:6a:7b:9c:64:ff:c3:5a:f8:1e:55:e8:fc:1c:
10:bd:cc:06:1c:09:2b:4e:8a:e2:4b:59:e8:48:5e:
32:10:26:39:b1:12:ea:5f:ef:20:a9:75:50:f8:b8:
19:0c:4e:98:7d:6d:2c:71:4c:5e:ad:80:a2:0e:e0:
7c:87:b9:05:fd:66:ac:ef:31:0f:8e:9d:8e:e9:19:
8d:ea:d7:75:ba:88:26:f6:bd:92:94:1a:32:a7:6b:
b3:8e:3c:66:1e:ae:7a:17:ff:27:2c:7f:0f:ed:c9:
85:98:67:23:d6:e7:d9:f0:b7:e9:6b:0b:07:d7:de:
28:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:95:73:0E:BB:A8:91:6C:AE:7E:DF:14:B7:D4:23:C4:EC:C6:A2:4D
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e342e302f32332d3233203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.4.0/23
Signature Algorithm: sha256WithRSAEncryption
21:06:f8:db:77:24:43:ee:bc:05:07:e3:cf:34:1b:91:c6:97:
a1:c9:cb:ea:27:70:86:9c:bc:06:b8:3c:3f:0e:21:73:fb:73:
8a:d3:8e:ce:f7:47:12:8a:22:61:43:28:6c:d9:5c:7d:22:19:
96:10:76:c7:62:3b:3a:3b:61:67:6d:03:c2:a0:aa:f2:39:a0:
08:9a:98:1b:06:0f:c3:e4:f9:d1:22:b5:e8:7b:b3:b3:cb:75:
93:a3:b4:07:5c:07:f9:1c:12:9c:d8:b6:3f:a0:4e:71:5c:ae:
a5:df:38:65:71:08:a6:0a:ba:42:25:da:91:32:59:f1:91:22:
e6:df:42:25:29:b2:c4:3c:1f:33:f7:ff:4d:0f:41:fa:c2:ee:
bd:d0:26:16:c5:ca:b2:d4:f4:2a:96:bc:07:e8:06:29:58:d5:
47:6b:b8:e5:90:90:45:42:92:fa:6b:97:bc:46:86:95:09:ae:
1d:ae:a1:2c:ec:5b:56:4d:c0:a0:b3:13:b9:e9:e2:70:c5:16:
04:51:3d:81:27:66:2c:dd:2c:c0:95:26:c7:ef:8c:8b:34:57:
4e:bc:9f:ac:86:d8:95:fb:f1:13:99:9a:13:55:3c:42:ac:64:
39:7d:a9:6d:ef:a3:6e:81:8f:6a:dd:6b:58:10:a2:a8:a2:04:
76:d2:6a:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org