Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e362e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e362e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: uBPS16HPP75uxTdiNiUTcntYBxt4c5j1j70jdA7oMJ8=
Subject key identifier: F2:54:91:B8:A6:C8:64:B5:D8:F3:31:94:8B:63:26:8B:7F:3E:18:14
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 75CBB864C6334E5BF5E4153519336DC5A5189A38
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e362e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:05 +0000
ROA not before: Thu 31 Aug 2023 05:55:05 +0000
ROA not after: Thu 29 Aug 2024 06:00:05 +0000
asID: 10217
IP address blocks: 202.171.6.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:cb:b8:64:c6:33:4e:5b:f5:e4:15:35:19:33:6d:c5:a5:18:9a:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:05 2023 GMT
Not After : Aug 29 06:00:05 2024 GMT
Subject: CN=F25491B8A6C864B5D8F331948B63268B7F3E1814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:43:49:c8:64:23:ef:6e:7c:d2:b5:a9:14:f5:
73:ad:c4:f4:c7:80:2d:6b:b8:38:3d:ea:47:0d:91:
c0:5e:59:7c:7d:4c:da:ed:2a:32:10:11:f6:16:15:
01:64:84:03:a4:d4:d5:b0:24:67:f6:96:e9:77:22:
af:3c:92:8d:0a:c0:32:d2:92:3e:92:df:89:9c:16:
e1:5c:ff:c6:1b:2d:d4:2a:92:62:40:1f:20:7d:47:
c7:88:e4:ae:87:cc:a5:55:6d:27:01:08:f0:eb:99:
35:72:58:c0:03:df:4d:2e:6b:a9:88:bc:d6:9d:43:
52:c6:96:ee:94:86:d5:7f:42:6f:a6:09:da:b9:37:
73:82:d9:14:6e:ae:b8:ea:09:40:6d:32:7a:9d:cf:
d5:49:5e:8b:7e:cd:9c:60:02:2c:56:db:d5:dc:99:
bd:2a:55:e7:ca:9a:f5:b9:b9:80:71:78:9b:d2:c6:
58:06:47:fe:04:3e:ca:b3:90:50:fc:eb:30:52:7c:
c9:f7:74:01:28:45:eb:8f:ab:2f:17:e8:63:a4:8d:
bb:3b:57:8f:ec:7a:41:3c:b1:69:05:ee:9e:1d:e8:
f4:a7:73:7b:cc:7c:bf:84:23:a4:1d:5d:65:c5:21:
ca:6a:e0:95:d9:81:4a:b6:48:9d:55:c7:01:03:20:
5a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:54:91:B8:A6:C8:64:B5:D8:F3:31:94:8B:63:26:8B:7F:3E:18:14
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e362e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.6.0/24
Signature Algorithm: sha256WithRSAEncryption
63:c7:b7:1f:de:23:0d:c4:29:e7:31:e0:d7:96:75:61:c3:40:
15:d5:c1:2b:6b:59:4d:96:68:d3:ea:0d:9a:42:2a:91:44:8f:
b4:5e:77:53:f8:98:52:f6:a9:ae:cf:c1:8e:e8:86:5e:fd:57:
d4:f8:f8:c8:1d:85:93:a1:6c:a7:c4:7b:f8:d1:af:80:33:8a:
d5:62:b7:c1:08:7f:c8:2d:51:b7:d9:41:cc:c7:e9:46:fc:01:
ac:d8:10:a1:1e:1c:b6:3b:0c:2e:dd:8a:59:f7:e5:2d:bf:fc:
d4:b7:00:0b:c1:a2:6e:0d:99:e0:7e:91:96:6b:ed:f9:b4:66:
12:16:02:28:2b:fe:a6:26:e5:9b:c8:57:68:f0:7c:d8:41:c2:
b9:4e:2c:d0:50:fc:73:fe:df:80:98:f6:d1:7f:ee:05:f6:d9:
74:40:a9:ae:5e:46:22:82:2e:ef:4c:82:92:46:6c:c3:01:73:
e8:c9:c2:f8:2b:d6:85:14:d4:da:57:0c:9d:d5:34:64:3c:01:
84:ca:0c:f3:6c:fe:bb:ba:45:01:cd:b1:a6:58:82:e4:3a:6b:
65:6b:2c:d7:92:5d:a0:5c:8b:5d:f4:97:39:f3:8a:43:0a:cf:
c5:03:a5:7f:48:bc:21:6f:91:0a:68:cb:6b:c3:f3:8f:40:d3:
54:b2:96:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 22 10:32:48 2023 by rpki-client on console-ams.rpki-client.org