Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/3138322e302e32342e302f32322d3232203d3e203233363933.roa
File: 3138322e302e32342e302f32322d3232203d3e203233363933.roa (raw, json)
Hash identifier: rfJ/vWSK1zsenyDSSy2xXI1v0vunh4qyoQoDIUwxSOo=
Subject key identifier: 09:1B:C6:36:85:1A:C3:91:5F:80:BD:3F:42:C7:4C:76:7D:9C:AA:E2
Certificate issuer: /CN=66442B8563B5A590ED84F72A8C7B97A16B9C9F3A
Certificate serial: 672A9E2279914FA8EC50CBEF4D78DD1B642B96B4
Authority key identifier: 66:44:2B:85:63:B5:A5:90:ED:84:F7:2A:8C:7B:97:A1:6B:9C:9F:3A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66442B8563B5A590ED84F72A8C7B97A16B9C9F3A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/3138322e302e32342e302f32322d3232203d3e203233363933.roa
Signing time: Mon 11 Nov 2024 03:54:13 +0000
ROA not before: Mon 11 Nov 2024 03:49:13 +0000
ROA not after: Mon 10 Nov 2025 03:54:13 +0000
asID: 23693
IP address blocks: 182.0.24.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 11 Nov 2024 13:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:2a:9e:22:79:91:4f:a8:ec:50:cb:ef:4d:78:dd:1b:64:2b:96:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66442B8563B5A590ED84F72A8C7B97A16B9C9F3A
Validity
Not Before: Nov 11 03:49:13 2024 GMT
Not After : Nov 10 03:54:13 2025 GMT
Subject: CN=091BC636851AC3915F80BD3F42C74C767D9CAAE2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:96:ac:df:b2:5b:38:c3:c3:53:e6:ef:9b:9d:
fc:5f:33:46:de:09:06:1f:a3:9b:43:fc:c3:f1:9b:
3c:29:c2:d3:64:30:89:f6:fa:43:d7:da:5d:de:9b:
71:02:7e:c5:01:ee:71:e0:b2:81:bc:98:27:c5:b4:
ff:23:fd:5c:60:bf:65:ec:4a:6a:c8:e2:0a:26:a8:
7e:5a:17:31:4c:d3:4c:72:3c:05:02:aa:9f:e5:f9:
79:d3:6f:cb:f8:1b:ca:02:92:27:f6:e3:4f:9f:be:
b6:3c:19:a9:3a:43:54:49:45:d1:5d:92:80:ef:f4:
fe:8d:a6:f5:95:74:cc:62:3d:27:9c:19:d1:79:85:
cb:94:66:62:fb:05:26:53:3b:48:ee:1e:52:4a:80:
46:79:27:ee:d2:ce:83:66:b7:bd:ea:b1:1a:18:56:
ca:5e:b6:ee:77:08:96:6e:28:74:a9:d6:75:60:01:
55:ae:cf:04:42:8f:49:ba:84:2e:eb:28:9e:16:f5:
57:dd:e8:6d:88:bc:32:bd:57:c6:21:d5:74:ef:fc:
d2:f1:47:c7:d3:91:9b:a4:d8:19:70:e6:91:db:ad:
ab:72:1d:94:58:f5:2f:49:c2:c5:49:8f:3e:8d:6a:
89:51:3c:34:4d:95:30:5b:e6:22:c4:9d:41:98:f3:
06:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:1B:C6:36:85:1A:C3:91:5F:80:BD:3F:42:C7:4C:76:7D:9C:AA:E2
X509v3 Authority Key Identifier:
keyid:66:44:2B:85:63:B5:A5:90:ED:84:F7:2A:8C:7B:97:A1:6B:9C:9F:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/66442B8563B5A590ED84F72A8C7B97A16B9C9F3A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66442B8563B5A590ED84F72A8C7B97A16B9C9F3A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/3138322e302e32342e302f32322d3232203d3e203233363933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.0.24.0/22
Signature Algorithm: sha256WithRSAEncryption
81:93:44:de:be:08:ed:13:5a:76:53:43:98:01:81:25:86:d1:
65:a0:91:bd:9c:7d:83:a4:d6:39:1b:8d:3c:5a:59:e9:bc:5b:
f4:43:3d:ea:ab:64:76:c2:51:c1:80:8b:02:fd:94:34:e9:80:
ea:ce:f0:98:f7:a8:ee:2a:e9:cb:48:08:7f:26:21:64:c5:b0:
a7:b5:6c:5e:08:ad:29:a9:01:ba:97:34:7b:05:f2:fa:0d:10:
8b:fe:57:11:77:64:84:5a:84:d4:19:4a:af:48:f6:2d:70:10:
bf:b1:37:d1:e1:cf:87:e3:97:6e:8a:a0:86:a4:af:be:22:7f:
bd:de:56:70:86:17:d2:bb:d7:3b:be:d8:93:a7:22:c2:66:b1:
b7:33:35:eb:0c:c1:4c:d6:5e:c6:c4:a2:0e:7f:37:08:9a:ed:
8c:7a:09:43:ae:29:76:f7:3f:38:c2:c9:74:cd:65:df:67:b8:
56:f0:1e:02:c8:94:ed:63:d1:b6:6a:5f:92:79:21:25:08:09:
71:a0:7f:89:56:0a:8f:7e:1f:66:5f:ea:1c:a9:b2:06:dd:e0:
b6:53:00:96:23:9a:64:c7:d3:91:cd:22:97:2e:69:69:f2:86:
b1:ee:8e:ca:6c:89:87:d5:e8:6b:1b:9a:35:46:7e:ca:13:d7:
69:11:54:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 11 14:44:07 2024 by rpki-client on console-fra.rpki-client.org