Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36372e302f32342d3234203d3e20313338383635.roa
File: 3130332e3137392e36372e302f32342d3234203d3e20313338383635.roa (raw, json)
Hash identifier: HTB9DrfY4eTO2zfeIjGiHnYUuGfmp/Apf9RLno34+mk=
Subject key identifier: 98:E9:DB:A4:5A:77:1E:89:A0:69:72:04:4C:1A:9C:8F:81:C7:63:F6
Certificate issuer: /CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270
Certificate serial: 2ABB0286A6D9719E426C596E455841425989AEBF
Authority key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36372e302f32342d3234203d3e20313338383635.roa
Signing time: Tue 20 Jun 2023 03:33:59 +0000
ROA not before: Tue 20 Jun 2023 03:28:59 +0000
ROA not after: Tue 18 Jun 2024 03:33:59 +0000
asID: 138865
IP address blocks: 103.179.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 09:40:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:bb:02:86:a6:d9:71:9e:42:6c:59:6e:45:58:41:42:59:89:ae:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270
Validity
Not Before: Jun 20 03:28:59 2023 GMT
Not After : Jun 18 03:33:59 2024 GMT
Subject: CN=98E9DBA45A771E89A06972044C1A9C8F81C763F6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:2d:d4:6a:ae:1f:ba:c1:f5:d6:46:6c:07:ec:
35:61:36:ec:84:cc:51:ed:e4:fa:0c:46:67:3a:cf:
8a:37:f6:e0:72:f8:3e:a1:0a:b3:86:77:19:57:e4:
7d:28:76:42:b4:40:fd:9b:b9:f4:a6:ff:58:c2:8c:
41:3f:58:d0:13:6f:a0:44:dd:e9:fb:ff:04:7a:bc:
c0:13:1b:4b:89:58:43:b6:25:bb:14:87:d2:31:49:
39:ab:5d:c8:67:2c:70:2c:24:d2:27:69:30:dd:42:
4d:f3:7a:1a:b7:c1:8f:c6:69:f1:68:6c:71:22:2c:
4d:de:43:59:f5:cd:6d:1a:da:60:65:2e:04:e9:d1:
ed:12:de:fb:71:20:8d:e7:0c:a9:0a:e5:df:77:d1:
03:6b:88:83:55:68:a2:5e:42:44:d7:ef:7b:b9:6d:
3f:e1:30:c8:33:6c:ec:fd:e5:65:81:de:bf:63:39:
bc:05:20:a6:c0:0c:93:f0:d8:8b:c9:53:40:37:92:
54:9a:b8:5c:d5:6d:24:f2:eb:79:54:bc:0f:91:67:
b1:3f:d8:0f:83:95:ab:94:13:d1:2a:86:c9:29:f1:
e1:82:15:5a:11:21:57:24:de:8a:76:91:e2:f8:95:
5c:4e:be:dc:9b:5f:a4:c2:66:14:71:2e:0c:b9:0b:
74:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:E9:DB:A4:5A:77:1E:89:A0:69:72:04:4C:1A:9C:8F:81:C7:63:F6
X509v3 Authority Key Identifier:
keyid:5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/3130332e3137392e36372e302f32342d3234203d3e20313338383635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.179.67.0/24
Signature Algorithm: sha256WithRSAEncryption
83:bc:93:20:03:8b:62:63:30:12:d7:0f:7e:d9:1d:37:0a:8d:
24:e7:aa:fa:3a:05:c6:4c:84:a2:b6:6c:92:9e:15:eb:14:b1:
6d:ef:e9:d9:d0:e1:fe:4c:67:44:e6:2d:f0:07:ff:ad:80:a0:
98:e4:bf:c8:d2:c0:df:a5:8d:e7:9e:9a:e7:5e:2c:a1:a2:f6:
8a:7b:00:56:be:14:90:c9:85:fd:cf:ba:af:b9:67:37:33:0a:
85:f6:78:55:98:46:d3:e5:c4:18:a6:3e:ef:95:ff:44:f2:41:
66:43:7b:b4:59:a1:85:f2:f3:f5:2b:c0:45:10:88:dc:a7:11:
87:ed:98:9b:76:2a:e1:2c:e5:e3:d0:13:98:37:45:7c:6a:4e:
1c:f1:c8:92:9a:c2:82:c7:0c:99:0e:f0:b4:ff:db:20:de:57:
dc:dd:ca:7e:93:af:b4:49:ec:e4:6e:d3:76:ed:0f:19:38:9b:
aa:65:64:a2:77:6c:16:80:5c:70:f4:65:78:75:c6:e5:31:59:
ac:24:70:7a:99:88:92:9c:db:85:7a:df:ac:c7:07:bb:c7:67:
96:4a:53:0a:ad:25:5f:0b:27:c3:a1:ce:ef:17:13:bc:6f:96:
fb:c4:19:46:86:91:0c:9a:ce:ff:b6:cc:0b:bf:7f:e6:2a:a8:
54:60:5a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:39 2024 by rpki-client on console-ams.rpki-client.org