Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e372e302f32342d3234203d3e203130323137.roa
File: 3230322e3137312e372e302f32342d3234203d3e203130323137.roa (raw, json)
Hash identifier: xbs9cK/ivOhb+lR3kzy+rkaOOkKJhDc9EG45OA0KT7o=
Subject key identifier: BF:C0:7E:F4:80:8F:EC:57:58:42:B5:B3:D0:31:12:5B:52:8E:EF:94
Certificate issuer: /CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Certificate serial: 126342885697A54473665F47EA8FAABA1B45251F
Authority key identifier: 22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e372e302f32342d3234203d3e203130323137.roa
Signing time: Thu 31 Aug 2023 06:00:03 +0000
ROA not before: Thu 31 Aug 2023 05:55:03 +0000
ROA not after: Thu 29 Aug 2024 06:00:03 +0000
asID: 10217
IP address blocks: 202.171.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Jun 2024 10:21:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:63:42:88:56:97:a5:44:73:66:5f:47:ea:8f:aa:ba:1b:45:25:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=229866508D6D624523EDAD2A0DE1E82AE2C3B512
Validity
Not Before: Aug 31 05:55:03 2023 GMT
Not After : Aug 29 06:00:03 2024 GMT
Subject: CN=BFC07EF4808FEC575842B5B3D031125B528EEF94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:8c:73:c5:88:da:38:f7:93:eb:2c:b6:af:0f:
26:2d:0d:dc:11:2f:50:46:ca:e1:e9:4e:b8:15:c3:
9a:79:e3:2c:90:bf:62:6d:60:91:b5:59:6c:b8:6e:
d0:f3:2c:3a:a8:f7:52:54:9f:e8:eb:de:19:db:e3:
d8:2f:a7:16:54:c0:50:7e:7a:1e:a8:bf:f0:73:62:
55:73:56:a4:ea:99:ab:58:21:72:4a:4d:55:9b:e8:
fb:cc:4e:67:42:30:fa:9a:c1:83:35:40:1b:08:be:
24:5d:36:63:5a:d8:8d:57:f8:27:5f:f5:a5:87:d4:
d7:51:b3:5a:b1:93:29:59:d4:53:46:40:47:0e:34:
56:50:cd:34:ca:b7:a8:44:1a:ed:d4:fe:ee:88:38:
d3:21:38:e4:4a:c8:1d:11:73:39:87:84:9a:4d:16:
b2:39:22:6e:ef:c2:46:69:4a:02:c5:10:8d:cd:8f:
c4:b6:d8:58:40:79:90:0d:a2:b9:56:1c:7c:2c:9f:
b7:c1:d6:a4:25:57:4b:8d:f4:73:48:5a:ea:5d:f9:
f3:08:95:c0:2c:26:2c:3d:a5:e6:bb:82:80:c1:e6:
a3:57:eb:dd:a0:14:58:21:38:a5:e7:34:f3:bf:3b:
b8:d6:cc:cf:6e:1f:15:66:fe:56:d3:6f:62:62:e8:
df:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C0:7E:F4:80:8F:EC:57:58:42:B5:B3:D0:31:12:5B:52:8E:EF:94
X509v3 Authority Key Identifier:
keyid:22:98:66:50:8D:6D:62:45:23:ED:AD:2A:0D:E1:E8:2A:E2:C3:B5:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/229866508D6D624523EDAD2A0DE1E82AE2C3B512.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/229866508D6D624523EDAD2A0DE1E82AE2C3B512.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2fb70818-2366-42e0-9dbd-254381069e57/0/3230322e3137312e372e302f32342d3234203d3e203130323137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.171.7.0/24
Signature Algorithm: sha256WithRSAEncryption
82:8e:30:5c:96:46:db:c8:25:1d:97:ef:9a:ce:7c:94:65:bc:
08:75:ab:6b:95:83:19:8a:fb:51:60:6e:4b:3b:61:97:03:ca:
10:7c:6d:af:16:0c:a8:4a:53:97:bd:fa:dc:63:28:50:93:47:
d0:6c:1e:c2:14:db:bc:a2:fd:d3:3f:13:82:e7:3e:fd:52:18:
26:da:60:b0:10:f1:9d:bf:11:2f:c2:75:c1:b7:ed:45:01:e9:
1e:c4:c8:66:f8:a1:38:8b:97:ab:5a:9f:3e:00:dc:e2:8a:27:
ae:2b:b6:c8:66:c9:4e:03:e2:61:fb:26:33:c1:3c:3e:6c:93:
07:6a:79:07:2a:92:e2:43:6a:c9:51:14:71:47:f6:a3:56:a7:
1c:ca:1c:14:e2:f0:b1:f7:a9:20:2c:50:40:0b:26:bd:45:cb:
ce:61:05:61:0b:ce:0e:68:05:9c:df:18:a3:00:00:98:8c:e8:
61:7e:96:85:25:93:79:1a:f5:43:e4:37:d9:ec:75:d9:4b:09:
e7:a3:e6:5d:22:6c:78:e0:e2:8b:4f:ef:46:d9:f2:21:87:86:
36:8f:e4:bb:d7:83:36:15:7a:43:a0:f3:2a:6d:ce:e2:6a:53:
42:fd:84:73:5b:24:88:96:d2:e6:20:f1:77:9d:e5:d9:b9:ee:
6e:26:c8:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:02 2024 by rpki-client on console-fra.rpki-client.org