Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36362e302f32342d3234203d3e20313531303030.roa
File: 3130332e3137392e36362e302f32342d3234203d3e20313531303030.roa (raw, json)
Hash identifier: zth3pjtNjSIzvPJC7t2dWsIGG5wCKvQufezlkOdRdIQ=
Subject key identifier: 29:D9:8D:17:23:6D:B5:11:97:35:83:32:07:AD:7F:20:99:39:08:37
Certificate issuer: /CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270
Certificate serial: 5D91E19F48876E422138BA6FD115252269ABD2DB
Authority key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36362e302f32342d3234203d3e20313531303030.roa
Signing time: Wed 03 Jan 2024 09:46:47 +0000
ROA not before: Wed 03 Jan 2024 09:41:47 +0000
ROA not after: Wed 01 Jan 2025 09:46:47 +0000
asID: 151000
IP address blocks: 103.179.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 09:40:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:91:e1:9f:48:87:6e:42:21:38:ba:6f:d1:15:25:22:69:ab:d2:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270
Validity
Not Before: Jan 3 09:41:47 2024 GMT
Not After : Jan 1 09:46:47 2025 GMT
Subject: CN=29D98D17236DB5119735833207AD7F2099390837
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:1b:13:eb:55:0a:65:3e:73:e1:45:84:33:89:
5f:d1:d3:e6:e3:3a:4f:17:be:3e:26:ca:2d:c6:35:
cb:91:1b:2a:a2:85:08:8d:e7:65:09:76:ee:d3:9a:
f7:25:7c:be:06:0e:19:59:9b:e5:8e:f6:52:27:41:
bc:6a:ad:0c:90:83:6c:80:e7:8e:b2:e8:d3:cd:64:
d0:5a:3e:c1:4b:41:df:c7:50:c7:8f:cd:35:d6:b4:
2c:e2:f3:e9:74:bf:24:f9:4f:ce:ab:f7:5f:de:5d:
76:93:a4:07:71:cc:da:9b:d8:ae:8a:91:14:c9:f4:
96:4a:27:eb:d8:b5:98:32:74:4d:34:56:74:fb:a0:
b3:96:20:8c:6b:bf:3f:46:fe:f3:dc:8b:70:25:43:
21:6c:fd:dc:03:48:58:97:d0:bd:62:e7:4c:cc:83:
52:97:cd:90:a3:17:71:87:7d:70:a7:46:84:b4:dc:
49:fd:60:e0:5f:4f:e8:d4:02:02:59:03:b9:f0:13:
95:72:2d:4d:73:3c:e3:78:8a:b1:5c:28:c4:88:ee:
a2:da:70:1e:ca:b6:90:67:d5:75:cc:bb:77:15:f0:
79:1f:1b:27:5c:05:05:0b:68:64:0f:80:2b:d6:cf:
ee:9e:9a:f3:67:39:0f:23:58:51:53:45:be:51:cc:
ec:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:D9:8D:17:23:6D:B5:11:97:35:83:32:07:AD:7F:20:99:39:08:37
X509v3 Authority Key Identifier:
keyid:5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36362e302f32342d3234203d3e20313531303030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.179.66.0/24
Signature Algorithm: sha256WithRSAEncryption
52:1e:81:be:b1:1c:b6:85:f5:c6:d7:a2:eb:7c:00:a0:4b:e9:
2f:d5:7f:2d:3c:75:63:55:99:b9:79:55:2d:e4:82:e0:53:e5:
e1:c9:6a:12:37:8e:1f:52:9b:50:fe:7d:ee:ea:c6:94:77:3d:
a1:0a:6b:bf:51:7f:46:63:43:f9:33:40:de:97:97:dc:62:a3:
06:82:a8:c7:e8:e0:23:aa:b8:ca:49:0d:68:c9:50:e4:89:4c:
2b:aa:63:f9:74:b6:19:71:8e:94:d0:0f:34:93:fa:04:f9:20:
32:f4:ba:68:6c:64:34:53:a0:2a:ed:b7:c0:d2:58:7e:e0:d1:
7c:15:bf:74:e7:96:e9:da:13:39:bc:1f:18:0a:69:b3:6d:9e:
7c:bf:1f:f4:e3:94:39:d0:19:f4:10:f9:c1:72:96:9f:7d:11:
2d:d8:b4:fd:84:63:07:7f:95:7b:4f:34:88:61:f9:ea:17:e4:
20:76:57:aa:36:7f:c7:d7:48:66:91:e1:46:72:65:b3:c1:f7:
95:ba:a1:a2:8e:cb:c5:51:8f:75:25:9c:76:39:98:87:27:58:
61:3a:4a:ef:e9:89:0b:ab:1d:6d:39:c8:89:08:aa:52:07:a1:
a7:47:36:1e:a8:10:cb:64:ae:cd:d9:13:51:2e:1f:f8:59:f4:
54:8e:1d:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:06 2024 by rpki-client on console-fra.rpki-client.org