Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/3138322e302e31362e302f32322d3232203d3e203233363933.roa
File: 3138322e302e31362e302f32322d3232203d3e203233363933.roa (raw, json)
Hash identifier: ra2RSKGOST0rNLtzopOzVFjz6PwuyHzjrGOPg+CEKBE=
Subject key identifier: 69:90:96:35:97:ED:CD:1E:7E:19:6C:43:69:98:0B:95:C0:12:48:C0
Certificate issuer: /CN=66442B8563B5A590ED84F72A8C7B97A16B9C9F3A
Certificate serial: 7F9FA52711884ACCA43AAF22819099621207712D
Authority key identifier: 66:44:2B:85:63:B5:A5:90:ED:84:F7:2A:8C:7B:97:A1:6B:9C:9F:3A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66442B8563B5A590ED84F72A8C7B97A16B9C9F3A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/3138322e302e31362e302f32322d3232203d3e203233363933.roa
Signing time: Mon 11 Nov 2024 03:53:36 +0000
ROA not before: Mon 11 Nov 2024 03:48:36 +0000
ROA not after: Mon 10 Nov 2025 03:53:36 +0000
asID: 23693
IP address blocks: 182.0.16.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 11 Nov 2024 13:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:9f:a5:27:11:88:4a:cc:a4:3a:af:22:81:90:99:62:12:07:71:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66442B8563B5A590ED84F72A8C7B97A16B9C9F3A
Validity
Not Before: Nov 11 03:48:36 2024 GMT
Not After : Nov 10 03:53:36 2025 GMT
Subject: CN=6990963597EDCD1E7E196C4369980B95C01248C0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:54:bc:b6:31:60:21:9b:50:e7:8d:44:f4:ce:
30:bd:d0:be:09:aa:e1:51:7a:49:ad:34:70:4c:81:
26:53:e1:7a:d7:84:d8:2a:56:80:c5:be:cf:b7:c9:
77:61:06:e1:a7:58:e9:7e:ec:e7:c6:9f:48:bd:6b:
0c:36:97:d7:37:9a:9f:05:d5:95:19:da:0a:8b:52:
d1:cc:4d:ee:22:f5:25:41:d1:61:bf:28:56:ab:bb:
91:19:78:49:f6:87:be:12:62:58:6e:dc:b8:60:7d:
90:3e:28:da:1a:66:55:36:b3:c7:35:ae:74:77:4a:
74:b0:e8:42:c7:05:7e:a1:75:a9:74:2b:32:3d:61:
63:c4:43:b8:9f:56:7f:98:d8:9b:87:f6:12:6e:f0:
19:49:0d:34:b8:04:27:9a:3e:db:30:d2:7e:59:d8:
52:89:ee:92:78:ac:dc:9b:f2:0b:85:4a:1b:26:0c:
df:03:58:38:6b:2f:2a:1e:53:4b:ec:45:e0:20:21:
6f:91:82:7b:9f:16:8f:ee:c2:6d:3a:16:8e:83:ed:
fe:dd:b4:08:3d:4d:8b:1e:28:0e:71:34:06:35:a3:
b9:09:36:f5:4f:c1:25:47:c1:b2:ba:51:c3:99:b3:
77:31:68:83:4a:82:9f:37:14:fa:d7:b8:e1:43:19:
3c:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:90:96:35:97:ED:CD:1E:7E:19:6C:43:69:98:0B:95:C0:12:48:C0
X509v3 Authority Key Identifier:
keyid:66:44:2B:85:63:B5:A5:90:ED:84:F7:2A:8C:7B:97:A1:6B:9C:9F:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/66442B8563B5A590ED84F72A8C7B97A16B9C9F3A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66442B8563B5A590ED84F72A8C7B97A16B9C9F3A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/3138322e302e31362e302f32322d3232203d3e203233363933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.0.16.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:a0:af:a9:80:e1:40:1d:5a:a2:a2:f4:da:e7:a0:39:80:52:
52:4b:20:cb:04:ac:7f:18:3c:80:c2:33:3a:6d:63:3b:28:1b:
5c:76:5f:d0:88:f4:ce:f1:b4:68:49:e4:05:26:45:5d:8f:72:
e2:55:c1:9a:ee:c6:ec:f7:cb:0c:00:8d:ba:d0:48:ff:08:2b:
6e:03:77:06:b3:5a:f2:e5:c1:bb:05:ac:d5:13:b5:7b:a7:de:
83:2b:88:ac:44:90:90:40:f5:76:fb:51:f1:80:60:8e:1c:7b:
11:d1:b9:5a:f1:eb:4f:ad:45:d5:79:ab:28:de:25:53:6f:b8:
75:6b:ea:22:54:01:4c:c4:10:56:5e:2d:9e:56:d8:61:50:27:
81:d3:26:9f:71:b3:4e:a6:5d:87:ec:26:9a:6b:ce:c0:fb:13:
9f:59:48:f3:e3:20:ac:8b:57:c4:57:4f:ae:cd:b9:96:fa:84:
a0:86:f9:17:7d:29:77:1a:a1:ed:73:c0:ac:2b:08:f8:b7:ee:
93:37:5b:14:4c:59:1f:5f:04:b1:d5:29:2b:c7:ee:d8:61:f2:
78:9c:8f:73:46:bc:98:b3:f5:ad:f6:6f:c9:76:49:e4:29:f2:
4a:4d:b1:e9:55:12:b1:f7:9a:00:56:d3:55:9b:0e:ea:30:53:
17:6c:43:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 11 14:44:07 2024 by rpki-client on console-fra.rpki-client.org