Route Origin Authorization

$ rpki-client -vvf repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36362e302f32342d3234203d3e20313338383635.roa
File:                     3130332e3137392e36362e302f32342d3234203d3e20313338383635.roa (raw, json)
Hash identifier:          Z25yASn98fHdplPN5sBoMC0jVUq5BFfiD4+PZg9yKT4=
Subject key identifier:   50:96:24:EC:A3:2B:98:DF:AE:9B:B0:B6:95:07:7F:2D:7F:7D:59:07
Certificate issuer:       /CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270
Certificate serial:       4C9BD2B8A971211185056BE5C6EB2F8BFE74DAF6
Authority key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36362e302f32342d3234203d3e20313338383635.roa
Signing time:             Tue 20 Jun 2023 03:33:38 +0000
ROA not before:           Tue 20 Jun 2023 03:28:38 +0000
ROA not after:            Tue 18 Jun 2024 03:33:38 +0000
asID:                     138865
IP address blocks:        103.179.66.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Thu 06 Jun 2024 09:40:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4c:9b:d2:b8:a9:71:21:11:85:05:6b:e5:c6:eb:2f:8b:fe:74:da:f6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270
        Validity
            Not Before: Jun 20 03:28:38 2023 GMT
            Not After : Jun 18 03:33:38 2024 GMT
        Subject: CN=509624ECA32B98DFAE9BB0B695077F2D7F7D5907
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:7a:b3:fc:dc:dc:bb:a2:7b:6b:37:e1:cf:67:
                    1e:b8:ea:08:da:6b:5b:59:cb:44:a9:27:86:33:27:
                    40:43:0f:e1:04:bb:d2:50:94:f6:ef:0d:d8:b4:59:
                    c3:10:62:95:95:94:01:83:b7:40:7a:40:4f:a9:b7:
                    86:10:ec:d5:15:e8:85:c0:93:33:82:05:1a:bc:ac:
                    c5:6a:cd:6e:98:68:7c:00:fb:31:90:6e:9a:13:82:
                    79:cc:08:37:a2:5c:2f:08:6c:5e:d1:6d:5e:3b:4e:
                    d8:9b:8e:d4:7d:39:6b:42:75:12:78:a0:1e:3c:50:
                    a8:38:ac:c8:a4:3a:72:e3:4c:32:84:8b:36:6b:4e:
                    94:52:71:38:0f:01:d5:24:91:01:ca:29:92:82:d1:
                    3a:0b:25:72:be:1d:ab:32:4a:8c:fb:8f:28:ea:d2:
                    4c:49:db:36:b4:38:b3:3c:d2:1c:63:ba:66:fa:ae:
                    89:8c:fc:54:59:5b:8b:3f:ae:23:f6:58:51:60:2f:
                    05:d7:43:db:82:50:2b:d0:7d:c6:fd:be:5f:0e:93:
                    5f:f0:77:ad:89:06:8d:04:d7:6d:0e:9b:5a:83:39:
                    0e:97:72:e8:02:7c:a7:f5:0c:8a:38:c1:e3:f5:9a:
                    67:72:9f:77:17:85:2a:dc:ac:d4:45:9e:64:59:3b:
                    e3:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:96:24:EC:A3:2B:98:DF:AE:9B:B0:B6:95:07:7F:2D:7F:7D:59:07
            X509v3 Authority Key Identifier:
                keyid:5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36362e302f32342d3234203d3e20313338383635.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.179.66.0/24

    Signature Algorithm: sha256WithRSAEncryption
         0a:56:0a:3c:2d:c9:44:9f:48:52:9e:38:14:a8:29:41:95:92:
         8f:bd:23:63:b3:22:dc:cf:49:0d:2d:be:61:0b:62:3b:e2:cd:
         10:e7:33:2e:5c:5c:1e:12:4c:e6:49:c8:1a:40:d5:76:f0:cd:
         f7:1b:43:2a:0e:5f:1d:58:64:99:7f:6c:a2:2b:2f:45:df:ea:
         fe:1e:77:00:04:33:fa:c5:e5:32:89:66:33:59:eb:4d:a1:3a:
         63:54:71:f4:03:c9:4b:59:e6:63:6a:f4:d9:77:45:09:4d:4c:
         c8:81:15:e2:33:c1:77:7b:7c:f4:ec:46:53:d6:77:89:db:4a:
         45:a3:36:5e:f2:a3:f3:cd:c6:59:02:d3:11:b1:51:17:ec:2a:
         4f:68:c0:e5:ae:a4:3d:c5:a3:d7:ec:b1:85:71:60:cb:38:70:
         d9:f7:02:c5:fa:54:05:0d:e2:29:23:d2:8f:7f:6a:b3:c7:3e:
         cc:2d:1c:50:51:96:3e:94:97:97:b9:50:56:26:01:82:83:db:
         0b:78:32:53:f0:79:4b:65:ce:06:3d:02:3f:f6:78:9a:a7:35:
         07:4e:ca:db:1b:a7:0c:4d:ce:24:c0:1d:64:d8:d2:8a:17:eb:
         7b:f9:76:bb:ca:bf:c9:b3:e4:e1:92:ab:a7:bd:f3:e1:6f:57:
         4f:88:f6:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org