Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e352e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e352e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: GwQ2jZ3tGbCxrmCMkaTp3hijX/T2ayUvxWpFYz3jtAk=
Subject key identifier: 78:F8:DE:21:1F:AF:BF:9D:DE:12:05:77:B4:22:9D:EA:58:21:6B:29
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 395C52C84FDF81F63ED68684AD4AB336DFEAE0BA
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e352e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:03 +0000
ROA not before: Thu 31 Aug 2023 05:55:03 +0000
ROA not after: Thu 29 Aug 2024 06:00:03 +0000
asID: 10217
IP address blocks: 202.171.5.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:5c:52:c8:4f:df:81:f6:3e:d6:86:84:ad:4a:b3:36:df:ea:e0:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:03 2023 GMT
Not After : Aug 29 06:00:03 2024 GMT
Subject: CN=78F8DE211FAFBF9DDE120577B4229DEA58216B29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0c:10:d8:f0:ba:67:0f:dc:17:ad:d9:7c:07:
2b:e5:17:da:22:c1:aa:ea:f4:fa:46:87:fa:88:ce:
d3:3b:27:c6:3b:66:f1:0a:32:b5:49:4a:86:c2:b4:
27:b3:ef:1a:52:2a:1f:c0:9f:4c:ea:46:7f:60:a8:
26:b6:b0:b8:a7:74:1a:83:02:c9:59:3d:ab:af:ac:
6e:fb:68:94:ef:11:e2:13:8c:ff:23:b0:52:2d:55:
34:c1:13:af:e9:19:4a:35:81:ce:3d:f2:e8:9d:8f:
ef:3a:3d:df:eb:f7:b3:0c:fc:27:4e:f7:f3:77:66:
4e:79:16:db:6b:03:d1:10:9e:17:5b:9a:59:31:38:
68:d2:b4:fd:51:fa:54:62:87:94:12:e8:eb:de:f6:
35:d7:7a:34:45:2d:8a:d5:14:62:04:c8:42:2a:6b:
7e:30:9b:21:34:6f:11:de:bb:b3:84:cb:b5:86:63:
80:a4:53:ee:00:2e:f5:5c:17:1a:86:36:84:75:ba:
b2:73:3c:30:ba:52:b6:ec:39:e3:d8:72:8b:6f:5a:
07:f5:d7:2f:ac:a8:47:be:50:77:3a:ec:9e:45:ae:
53:92:f0:bd:50:90:55:e5:67:5a:d7:49:d0:dd:c9:
f7:d8:1d:6b:3e:40:9d:a3:1e:e7:0d:76:c4:52:76:
52:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:F8:DE:21:1F:AF:BF:9D:DE:12:05:77:B4:22:9D:EA:58:21:6B:29
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e352e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.5.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:97:8c:46:4f:43:cd:5e:7b:39:dc:f2:fc:5b:fa:7c:cd:e1:
36:bc:aa:ba:3c:65:05:e6:79:d3:1c:cb:38:c6:a7:fa:c5:c1:
21:21:4c:d7:a3:b7:87:89:a0:c8:cc:86:0b:3e:85:01:b8:ab:
d9:7e:e6:c5:24:e8:d2:2c:3f:26:cf:fb:c0:15:eb:7f:b3:9c:
04:64:51:3f:df:3b:6c:45:5b:5c:34:3e:18:d2:21:ac:03:93:
f6:5f:df:02:e9:04:d6:fd:81:55:ce:f2:0e:d6:95:1c:47:ec:
61:08:72:b7:38:c6:d9:f6:f7:c6:60:81:e2:b6:0b:03:a4:61:
3f:72:df:a3:e3:e3:75:d8:8b:80:b5:0a:d2:ae:de:43:a5:0e:
cd:30:22:01:79:e2:fe:fa:f4:51:6d:58:aa:42:43:ab:cd:73:
0a:83:e6:14:05:df:a2:14:72:0e:d3:e2:af:0e:f0:c0:e7:82:
0c:50:c1:d9:9c:73:6e:f4:7c:33:fe:09:4a:de:a6:a5:c0:6a:
62:76:34:97:0a:5d:13:f2:61:0c:81:32:52:78:55:f3:e1:d1:
54:0c:99:ae:ee:06:aa:94:67:b9:9d:9e:28:96:48:11:90:57:
8e:4d:63:f1:79:04:ff:7a:fe:1f:f4:67:bd:9d:54:10:c2:48:
5e:c0:92:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org