Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36322e302f32332d3233203d3e20313334363139.roa
File: 3230332e3134352e36322e302f32332d3233203d3e20313334363139.roa (raw, json)
Hash identifier: Z3vV0y0PcGwZQHDtewdwemnmr08VWANLxJkUJeuhGck=
Subject key identifier: 60:72:B0:AE:CF:14:88:68:D0:A9:2D:9B:C9:60:D4:82:B4:75:00:3D
Certificate issuer: /CN=21AB9EB0A860D2619CF210410608EB831A463442
Certificate serial: 42E5BB23A00DCB344A32E3E34E8049A48C856B81
Authority key identifier: 21:AB:9E:B0:A8:60:D2:61:9C:F2:10:41:06:08:EB:83:1A:46:34:42
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AB9EB0A860D2619CF210410608EB831A463442.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36322e302f32332d3233203d3e20313334363139.roa
Signing time: Fri 30 Aug 2024 03:27:57 +0000
ROA not before: Fri 30 Aug 2024 03:22:57 +0000
ROA not after: Fri 29 Aug 2025 03:27:57 +0000
asID: 134619
IP address blocks: 203.145.62.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 02 Sep 2024 07:04:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:e5:bb:23:a0:0d:cb:34:4a:32:e3:e3:4e:80:49:a4:8c:85:6b:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21AB9EB0A860D2619CF210410608EB831A463442
Validity
Not Before: Aug 30 03:22:57 2024 GMT
Not After : Aug 29 03:27:57 2025 GMT
Subject: CN=6072B0AECF148868D0A92D9BC960D482B475003D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a8:d2:1c:d8:c7:b7:a0:ab:4d:27:17:6a:30:
7d:4b:8f:4c:f8:27:66:f0:53:93:1b:62:99:4d:b6:
5d:2b:90:ac:a9:7e:31:fc:21:68:e1:00:ca:93:8a:
3e:cc:4a:58:8c:8a:cd:b7:f6:d2:16:cd:3a:44:a3:
58:f1:aa:06:c8:77:eb:d8:63:6e:cb:4b:c5:5a:04:
81:c6:a0:3c:02:34:c4:3c:ca:aa:0a:01:f9:01:c3:
92:46:fa:3e:52:09:03:6f:39:a0:c7:8c:a7:f6:4d:
8e:e5:a4:b1:da:1c:78:da:5d:44:38:31:8e:4f:bc:
5a:37:a4:b8:13:70:1a:37:6a:b5:82:9c:20:13:74:
c0:85:4a:cd:33:96:b1:a5:18:c6:b6:80:ea:8c:e5:
64:d0:3e:dd:5a:82:d8:e7:0b:0a:11:17:9d:ab:85:
e9:9b:41:a5:d1:94:47:84:3c:d6:04:4f:eb:da:7c:
8e:0e:1a:40:47:b0:8f:24:a2:cd:fa:7f:43:1c:bc:
42:c0:81:36:fe:3a:f6:9c:93:c9:02:36:fd:f8:ed:
7e:a3:9f:cc:79:90:48:ba:ad:d6:aa:a7:07:ab:a9:
8d:a6:ba:3d:29:bf:1f:18:f7:a0:ba:87:42:e0:24:
6c:5e:03:99:98:9b:95:dd:8f:31:c8:7a:17:75:87:
08:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:72:B0:AE:CF:14:88:68:D0:A9:2D:9B:C9:60:D4:82:B4:75:00:3D
X509v3 Authority Key Identifier:
keyid:21:AB:9E:B0:A8:60:D2:61:9C:F2:10:41:06:08:EB:83:1A:46:34:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/21AB9EB0A860D2619CF210410608EB831A463442.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/21AB9EB0A860D2619CF210410608EB831A463442.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/33dda923-ea36-456b-bafe-40e6b62f50c5/0/3230332e3134352e36322e302f32332d3233203d3e20313334363139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.145.62.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:98:74:3e:6a:ee:1f:49:e4:a5:b0:6d:e8:ce:73:5c:68:7d:
d3:1d:a8:54:a8:33:0b:d6:8d:ef:92:19:2e:5d:51:33:54:7e:
a4:41:b1:3b:e5:2d:e5:b9:25:53:66:cd:30:8c:bc:f4:e4:8d:
a5:54:87:6a:fd:1a:93:c9:19:62:70:df:ab:45:b6:ea:64:3f:
2b:f6:bd:e1:e4:22:01:ff:aa:cd:03:b2:ee:48:53:e1:68:47:
7d:43:b2:85:2f:12:a7:d2:c6:64:7c:c7:18:ee:8a:1e:97:5d:
ce:31:c9:15:ec:f8:e2:d0:30:2b:d9:18:5f:1a:13:1f:59:fb:
04:af:43:98:02:4f:e9:1c:4f:bb:e4:0d:45:61:09:66:e1:a4:
00:f2:51:6d:3e:9a:cb:b4:84:5c:64:63:be:54:19:48:1e:a5:
11:61:c3:93:14:7f:3a:fb:77:fe:53:58:92:0e:d8:9d:10:e1:
71:7f:03:1e:b6:39:72:a6:64:e6:f3:db:bd:d2:a5:0b:ac:5e:
16:b2:55:2c:5d:74:43:e9:66:01:5b:25:8f:41:83:e9:44:22:
b6:29:89:7a:99:a4:d5:95:11:c8:04:11:d9:1d:f0:ea:e6:cd:
9a:58:17:8c:7f:97:7b:c3:19:6d:5a:99:2a:03:06:78:f8:e5:
df:7a:7f:c7
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUQuW7I6ANyzRKMuPjToBJpIyFa4EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjFBQjlFQjBBODYwRDI2MTlDRjIxMDQxMDYwOEVCODMx
QTQ2MzQ0MjAeFw0yNDA4MzAwMzIyNTdaFw0yNTA4MjkwMzI3NTdaMDMxMTAvBgNV
BAMTKDYwNzJCMEFFQ0YxNDg4NjhEMEE5MkQ5QkM5NjBENDgyQjQ3NTAwM0QwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPqNIc2Me3oKtNJxdqMH1Lj0z4
J2bwU5MbYplNtl0rkKypfjH8IWjhAMqTij7MSliMis239tIWzTpEo1jxqgbId+vY
Y27LS8VaBIHGoDwCNMQ8yqoKAfkBw5JG+j5SCQNvOaDHjKf2TY7lpLHaHHjaXUQ4
MY5PvFo3pLgTcBo3arWCnCATdMCFSs0zlrGlGMa2gOqM5WTQPt1agtjnCwoRF52r
hembQaXRlEeEPNYET+vafI4OGkBHsI8kos36f0McvELAgTb+Ovack8kCNv347X6j
n8x5kEi6rdaqpwerqY2muj0pvx8Y96C6h0LgJGxeA5mYm5XdjzHIehd1hwjbAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUYHKwrs8UiGjQqS2byWDUgrR1AD0wHwYDVR0j
BBgwFoAUIauesKhg0mGc8hBBBgjrgxpGNEIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z
M2RkYTkyMy1lYTM2LTQ1NmItYmFmZS00MGU2YjYyZjUwYzUvMC8yMUFCOUVCMEE4
NjBEMjYxOUNGMjEwNDEwNjA4RUI4MzFBNDYzNDQyLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMjFBQjlFQjBBODYwRDI2MTlDRjIxMDQxMDYwOEVCODMxQTQ2
MzQ0Mi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzZGRhOTIzLWVhMzYtNDU2Yi1i
YWZlLTQwZTZiNjJmNTBjNS8wLzMyMzAzMzJlMzEzNDM1MmUzNjMyMmUzMDJmMzIz
MzJkMzIzMzIwM2QzZTIwMzEzMzM0MzYzMTM5LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBy5E+MA0GCSqG
SIb3DQEBCwUAA4IBAQAOmHQ+au4fSeSlsG3oznNcaH3THahUqDML1o3vkhkuXVEz
VH6kQbE75S3luSVTZs0wjLz05I2lVIdq/RqTyRlicN+rRbbqZD8r9r3h5CIB/6rN
A7LuSFPhaEd9Q7KFLxKn0sZkfMcY7ooel13OMckV7Pji0DAr2RhfGhMfWfsEr0OY
Ak/pHE+75A1FYQlm4aQA8lFtPprLtIRcZGO+VBlIHqURYcOTFH86+3f+U1iSDtid
EOFxfwMetjlypmTm89u90qULrF4WslUsXXRD6WYBWyWPQYPpRCK2KYl6maTVlRHI
BBHZHfDq5s2aWBeMf5d7wxltWpkqAwZ4+OXfen/H
-----END CERTIFICATE-----
Generated at Mon Sep 2 08:09:57 2024 by rpki-client on console-ams.rpki-client.org