Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/3138322e322e33322e302f31392d3139203d3e203233363933.roa
File: 3138322e322e33322e302f31392d3139203d3e203233363933.roa (raw, json)
Hash identifier: o2cCs533ZXp6LbtowxQ5r2PhbUgeVI27wsJpS9yDSjs=
Subject key identifier: 1A:49:0D:8E:1F:27:28:5E:E5:94:CB:79:C3:2C:68:AF:A0:CB:23:E8
Certificate issuer: /CN=66442B8563B5A590ED84F72A8C7B97A16B9C9F3A
Certificate serial: 519BD582565328F8F6D7882B25BE9C93DD8257FC
Authority key identifier: 66:44:2B:85:63:B5:A5:90:ED:84:F7:2A:8C:7B:97:A1:6B:9C:9F:3A
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66442B8563B5A590ED84F72A8C7B97A16B9C9F3A.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/3138322e322e33322e302f31392d3139203d3e203233363933.roa
Signing time: Mon 11 Nov 2024 03:56:42 +0000
ROA not before: Mon 11 Nov 2024 03:51:42 +0000
ROA not after: Mon 10 Nov 2025 03:56:42 +0000
asID: 23693
IP address blocks: 182.2.32.0/19 maxlen: 19
Validation: Failed, certificate revoked on Mon 11 Nov 2024 13:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:9b:d5:82:56:53:28:f8:f6:d7:88:2b:25:be:9c:93:dd:82:57:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66442B8563B5A590ED84F72A8C7B97A16B9C9F3A
Validity
Not Before: Nov 11 03:51:42 2024 GMT
Not After : Nov 10 03:56:42 2025 GMT
Subject: CN=1A490D8E1F27285EE594CB79C32C68AFA0CB23E8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b4:2d:5c:5d:60:d0:a3:38:4d:6d:e2:91:18:
a7:e6:15:30:bb:9c:88:87:17:28:9b:e9:b2:70:7d:
53:8e:ed:db:cf:2d:18:b8:27:57:17:95:c2:e4:19:
12:51:e9:2c:11:5b:ca:8b:fa:7b:5a:3f:f2:45:11:
77:b9:28:e3:4b:2b:88:43:8f:3d:34:2c:97:1b:e7:
fe:97:37:7b:2b:a7:36:00:3e:4b:32:0e:27:fc:2c:
93:88:ec:6e:28:76:84:b1:08:88:f7:7b:0d:98:9a:
a1:46:3c:86:98:8d:fe:01:00:fd:42:6c:57:9f:ba:
81:f1:4a:cc:ae:c4:3b:9c:ba:40:42:e0:5c:19:c6:
95:c2:21:55:47:d4:81:aa:4a:1b:46:f2:14:18:c9:
90:62:71:63:63:19:68:c9:c3:74:7c:37:24:23:17:
70:9d:54:4f:58:1e:f7:21:2a:15:b0:76:9e:eb:00:
e2:48:04:52:1d:e3:ba:0a:a7:80:1f:e5:c1:ed:3d:
a0:52:a5:1a:26:b4:e5:e6:d6:2f:99:92:56:ef:d2:
35:80:51:fb:65:0c:b0:78:c2:ca:28:03:df:26:11:
bc:93:a6:44:99:e6:37:01:42:e8:bb:fe:2b:b4:d3:
69:d3:4e:97:b6:07:1f:3f:f9:2c:2d:f3:53:b2:a3:
ba:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:49:0D:8E:1F:27:28:5E:E5:94:CB:79:C3:2C:68:AF:A0:CB:23:E8
X509v3 Authority Key Identifier:
keyid:66:44:2B:85:63:B5:A5:90:ED:84:F7:2A:8C:7B:97:A1:6B:9C:9F:3A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/66442B8563B5A590ED84F72A8C7B97A16B9C9F3A.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66442B8563B5A590ED84F72A8C7B97A16B9C9F3A.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3328f24e-dc7f-4562-a51d-e2e38c3677d1/0/3138322e322e33322e302f31392d3139203d3e203233363933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
182.2.32.0/19
Signature Algorithm: sha256WithRSAEncryption
84:a1:54:f7:90:e6:8a:0c:12:f3:cd:c2:65:1f:05:73:f1:95:
55:1e:69:4c:38:1a:d3:3c:e1:27:a3:f1:78:10:41:cb:27:79:
c1:ff:53:d9:b0:75:3b:72:98:ba:47:5d:9f:e0:b6:47:3f:f7:
8e:93:3a:17:47:53:26:16:5a:50:d3:e2:1a:12:e2:12:87:e9:
f8:98:7a:f8:8b:e9:9a:1b:f5:39:53:58:2c:8c:2f:18:d1:87:
ce:d4:19:6e:17:11:46:08:f5:1b:67:b5:af:a0:48:71:de:be:
89:bb:70:4b:d6:b3:f7:3e:90:dd:0c:a6:10:a0:aa:79:60:d2:
de:09:e0:e0:c4:74:f9:45:69:a1:54:04:39:f3:da:b7:96:98:
b7:3f:95:a5:30:66:e5:21:27:b5:41:5c:dd:18:97:57:3c:c3:
ca:69:6b:1f:0d:5f:e4:60:a9:c1:73:94:16:db:09:aa:ba:7c:
05:6e:23:0a:c7:fe:96:81:0b:e1:3b:48:ff:5a:be:11:f7:bc:
4c:7e:68:5d:9c:a0:6e:44:4d:51:40:0c:a1:c7:5f:e3:73:cc:
f8:de:b4:86:23:de:55:50:fb:90:71:37:32:31:5b:b7:7e:a2:
e1:a8:ea:71:85:01:13:ce:31:c9:f9:c7:8e:da:c2:ba:89:24:
99:a2:8a:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 11 14:44:07 2024 by rpki-client on console-fra.rpki-client.org