Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e38322e302f32342d3234203d3e203338353237.roa
File: 32372e3132342e38322e302f32342d3234203d3e203338353237.roa (raw, json)
Hash identifier: UmTpMKIBAufrR1UVz2w2S1KVlAZnHDXtaTVlHDDDSoQ=
Subject key identifier: 97:72:F2:32:6B:D4:21:2E:E1:9D:92:69:F1:85:87:4C:C8:9E:89:39
Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Certificate serial: 6EA9BD36DA8BC8B9AC1AF0B7F1034198A1C66E86
Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e38322e302f32342d3234203d3e203338353237.roa
Signing time: Wed 15 Mar 2023 10:44:12 +0000
ROA not before: Wed 15 Mar 2023 10:39:12 +0000
ROA not after: Wed 13 Mar 2024 10:44:12 +0000
asID: 38527
IP address blocks: 27.124.82.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:a9:bd:36:da:8b:c8:b9:ac:1a:f0:b7:f1:03:41:98:a1:c6:6e:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473
Validity
Not Before: Mar 15 10:39:12 2023 GMT
Not After : Mar 13 10:44:12 2024 GMT
Subject: CN=9772F2326BD4212EE19D9269F185874CC89E8939
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:bb:d2:d5:e1:08:17:2e:41:5a:d5:b8:14:d4:
1c:ef:52:a9:34:c0:96:1e:6f:a1:77:b6:9f:1d:d5:
04:79:95:07:99:46:2f:d1:57:31:f0:2e:5b:63:3d:
c5:49:b8:f8:ea:02:01:23:ea:12:38:dc:61:77:b1:
be:fc:a2:b6:58:4d:7c:5b:a2:05:4b:6f:d3:55:e7:
50:45:5f:55:8a:10:42:c4:16:50:96:46:31:64:d5:
a9:32:80:2f:20:4a:d0:f3:03:de:fc:00:52:c1:be:
81:6a:88:3d:7c:47:b5:0b:63:be:c5:44:09:4b:3c:
f8:f4:e4:a4:b1:05:71:15:50:c7:b4:b0:79:40:28:
fe:48:b2:7a:74:58:93:d1:75:df:ef:78:f2:b1:0a:
50:c6:68:74:18:34:ae:91:b1:9e:90:da:3c:dc:ad:
28:71:78:27:30:57:b4:0d:c5:94:33:5b:77:e6:76:
5c:dc:56:bd:f9:cc:db:f2:df:9a:17:3d:56:93:f9:
ff:83:8c:cd:09:cb:c3:bf:d0:47:a7:f3:19:ab:9f:
a2:33:f5:cb:84:a7:29:39:71:4b:7d:79:25:55:53:
f0:1e:81:c4:01:70:49:8b:02:4f:fa:f9:a2:a3:ed:
b3:33:0d:ea:29:61:b6:28:db:47:22:9b:95:97:82:
42:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:72:F2:32:6B:D4:21:2E:E1:9D:92:69:F1:85:87:4C:C8:9E:89:39
X509v3 Authority Key Identifier:
keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/32372e3132342e38322e302f32342d3234203d3e203338353237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.124.82.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:72:c0:c8:c1:c9:d4:c7:e5:e1:f1:25:44:86:5b:8d:24:c7:
99:20:d7:16:a8:5f:db:0f:da:f6:af:83:95:8f:d2:62:16:67:
b1:c1:ce:a8:e7:65:c4:e3:71:6b:e0:d9:ac:aa:a3:a4:d7:f8:
f1:5e:7f:21:3d:a5:ff:2e:5d:68:4b:04:66:4c:e4:bf:74:20:
f5:7a:d4:b8:65:dd:17:2a:b7:8c:b4:aa:b8:87:90:5b:81:37:
c7:e8:ae:8e:d7:96:88:92:e1:b9:af:d2:a1:97:f3:e1:fa:01:
e7:9e:39:2c:b4:69:ae:a1:26:91:9a:ef:ed:82:12:17:ef:de:
7f:4b:fc:cb:35:73:eb:46:3f:0a:ff:89:a4:6f:27:d0:a7:eb:
d2:e6:8b:01:47:db:e5:f0:69:20:da:a8:7c:07:d5:1a:d8:48:
56:9a:94:d3:aa:4b:14:df:32:85:ba:2c:f9:e7:20:39:73:dd:
b1:90:f7:69:96:13:c8:78:22:77:06:f3:fe:f6:a4:16:09:ec:
6d:d6:b5:82:16:54:fa:29:1b:ce:00:a8:fb:5e:aa:50:cd:4b:
bb:c9:40:94:59:c8:a4:23:47:c7:6d:e2:f1:30:e4:d0:e2:8c:
f0:cb:7a:29:be:cd:0f:87:18:c2:c1:cf:3f:aa:a8:60:32:be:
8f:04:1e:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 11 12:01:35 2023 by rpki-client on console-ams.rpki-client.org