Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/3130332e34332e32352e302f32342d3234203d3e20313336313331.roa
File: 3130332e34332e32352e302f32342d3234203d3e20313336313331.roa (raw, json)
Hash identifier: /cjOVMtl39T1r4Zhat66w+QiUbly2nRjcBjJ9q2wwfo=
Subject key identifier: 2C:93:CF:18:21:B6:D3:74:72:B1:FE:17:D3:6E:ED:F1:D0:65:63:0C
Certificate issuer: /CN=08A94FD7F0E8A287AD318D7A26254192431E175F
Certificate serial: 278EA3898E7F30413557A69C8957A31102DFB6CA
Authority key identifier: 08:A9:4F:D7:F0:E8:A2:87:AD:31:8D:7A:26:25:41:92:43:1E:17:5F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08A94FD7F0E8A287AD318D7A26254192431E175F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/3130332e34332e32352e302f32342d3234203d3e20313336313331.roa
Signing time: Mon 25 Nov 2024 06:00:01 +0000
ROA not before: Mon 25 Nov 2024 05:55:01 +0000
ROA not after: Mon 24 Nov 2025 06:00:01 +0000
asID: 136131
IP address blocks: 103.43.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 05 Apr 2025 22:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:8e:a3:89:8e:7f:30:41:35:57:a6:9c:89:57:a3:11:02:df:b6:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08A94FD7F0E8A287AD318D7A26254192431E175F
Validity
Not Before: Nov 25 05:55:01 2024 GMT
Not After : Nov 24 06:00:01 2025 GMT
Subject: CN=2C93CF1821B6D37472B1FE17D36EEDF1D065630C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:24:ae:76:00:e0:e2:9b:ef:72:e0:b9:6c:4b:
39:30:51:31:1e:34:ed:be:0e:c6:51:95:f5:47:e2:
f5:2f:bb:eb:ac:71:50:d0:c3:db:66:74:f8:85:0b:
b6:72:3e:e7:31:63:07:b8:5d:6e:0c:ca:64:f8:10:
04:e3:36:75:a9:d2:f5:02:a6:95:8f:ae:cb:d0:cb:
85:7b:20:b8:97:78:4f:9a:82:64:2c:eb:7d:67:5e:
13:7b:62:dc:af:b3:06:51:6f:28:db:66:e4:55:5a:
59:31:f4:4d:cc:2a:57:44:e9:44:a7:4b:b5:82:74:
24:5c:38:f5:58:5f:74:f7:55:ea:cd:d9:4f:3b:0d:
cf:5e:99:39:21:d1:0b:24:b9:49:c8:ba:fe:d6:ac:
75:c4:30:bc:e2:f0:81:83:14:c5:1d:68:8a:de:57:
90:aa:45:4e:13:f1:9a:b0:a1:a0:25:05:a0:41:38:
a2:07:5b:61:53:24:26:ca:24:b2:dd:6c:4d:b1:a1:
bc:7f:67:30:a3:9c:6b:fb:4a:b2:9a:ac:02:e2:46:
45:f0:c6:e3:84:d5:10:e6:29:fe:fb:da:fe:dd:f6:
e9:e7:50:ca:e0:66:1c:d5:a1:4a:0c:b7:87:b9:5a:
c6:0a:2c:b6:a2:c0:be:58:e1:15:36:4d:53:da:e8:
48:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:93:CF:18:21:B6:D3:74:72:B1:FE:17:D3:6E:ED:F1:D0:65:63:0C
X509v3 Authority Key Identifier:
keyid:08:A9:4F:D7:F0:E8:A2:87:AD:31:8D:7A:26:25:41:92:43:1E:17:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/08A94FD7F0E8A287AD318D7A26254192431E175F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/08A94FD7F0E8A287AD318D7A26254192431E175F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/42083d44-7835-443d-853a-0a79cf00e950/0/3130332e34332e32352e302f32342d3234203d3e20313336313331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.43.25.0/24
Signature Algorithm: sha256WithRSAEncryption
83:ac:8c:ab:cc:ae:e3:26:a1:45:da:3f:77:ff:a1:04:3d:eb:
69:65:a5:39:9a:b1:0e:48:f1:57:88:ab:ba:37:86:54:7c:67:
e6:3a:7d:8e:3a:f9:44:db:9a:85:06:04:bc:75:92:e8:7a:b9:
a9:d2:f1:af:97:d7:7b:8d:81:75:43:4b:31:60:85:73:a1:60:
1f:45:30:4e:97:2c:08:17:50:bc:b7:a0:d5:2f:30:6b:72:19:
ed:54:9f:89:a6:9b:cf:e3:d6:63:c9:60:cf:3c:d2:1a:47:94:
34:27:b6:28:4e:9b:fe:46:68:6d:3c:f9:d5:7f:07:c4:c5:80:
2f:ca:10:7e:ac:04:1e:6a:0a:db:9a:b8:db:34:15:b1:91:b2:
6a:2e:bc:68:fb:47:42:28:28:ea:f4:63:5b:ef:27:c8:42:19:
ef:6f:4a:e3:a0:0f:6a:11:f1:d0:4a:57:05:88:22:45:8f:9b:
2c:f6:ff:2d:0c:a4:8a:04:2e:72:6d:cb:59:7d:fd:95:da:62:
8d:50:33:50:b4:73:3c:18:76:26:6a:15:20:9a:83:d9:0e:aa:
43:54:9c:8b:29:80:f7:1b:0d:82:f7:4c:0d:66:8b:14:d3:fd:
92:80:7b:b4:98:fe:2e:29:fe:cd:98:d0:c6:4f:2c:d8:d0:2b:
58:f1:05:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:04:01 2025 by rpki-client