Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/AS17855.roa
File: AS17855.roa (raw, json)
Hash identifier: v72cbwzCMopFuXomz2TN1etNASrb+ir3B7AT3KOmGaA=
Subject key identifier: 3A:09:D2:08:8E:78:12:57:C9:89:D5:DC:0F:CE:E7:71:C1:50:7C:9A
Certificate issuer: /CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Certificate serial: 03EF05BC63DFF50C7C053839A52C956E740C2E90
Authority key identifier: B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/AS17855.roa
Signing time: Fri 03 May 2024 10:26:05 +0000
ROA not before: Fri 03 May 2024 10:21:05 +0000
ROA not after: Fri 02 May 2025 10:26:05 +0000
asID: 17855
IP address blocks: 112.215.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 19 Apr 2025 02:50:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:ef:05:bc:63:df:f5:0c:7c:05:38:39:a5:2c:95:6e:74:0c:2e:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B493A5CEBF09E10BC35D9AC2211DAFD2095687DA
Validity
Not Before: May 3 10:21:05 2024 GMT
Not After : May 2 10:26:05 2025 GMT
Subject: CN=3A09D2088E781257C989D5DC0FCEE771C1507C9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:16:5a:46:b3:f4:1c:6f:30:89:8f:f8:78:c3:
1b:0c:67:ae:1a:1f:98:2e:9c:09:c5:0d:d8:2c:51:
bd:42:90:0a:a5:18:39:55:4c:99:0a:66:ab:de:c0:
ee:92:3d:62:7d:88:e6:4d:9a:bb:5e:c0:67:e9:46:
27:08:65:65:6b:c1:bf:d0:44:bf:c7:b7:39:7f:91:
71:2c:b7:cb:bc:2c:81:a9:86:76:f2:2e:82:df:ea:
f3:39:06:d1:3f:b5:01:14:bb:8e:93:19:75:1a:4f:
68:3f:f2:69:6b:e5:c6:3f:a6:c1:d6:a2:6e:11:4c:
ac:39:6c:86:fe:19:55:ca:62:3d:2b:73:5a:8d:43:
c3:ba:90:4b:62:c2:2f:65:bc:62:f7:35:f6:01:47:
9c:6f:9b:a1:07:5c:2b:66:cd:45:0a:09:b0:03:51:
d8:d2:7c:66:85:ac:ca:ce:f2:3b:29:6d:26:f2:9d:
a6:c4:4d:03:00:91:82:b3:81:30:ad:69:22:ec:87:
ee:fc:da:03:ca:35:96:90:81:b4:55:4f:92:2e:7c:
b5:11:f9:b7:f7:7c:cb:3a:99:53:37:01:c1:02:d8:
0a:f3:cc:cc:30:ab:a8:8e:f4:38:7a:7e:19:4e:60:
a5:be:1f:cc:7c:ff:1f:2d:4c:3b:45:70:2d:9b:a5:
19:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:09:D2:08:8E:78:12:57:C9:89:D5:DC:0F:CE:E7:71:C1:50:7C:9A
X509v3 Authority Key Identifier:
keyid:B4:93:A5:CE:BF:09:E1:0B:C3:5D:9A:C2:21:1D:AF:D2:09:56:87:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B493A5CEBF09E10BC35D9AC2211DAFD2095687DA.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4bdb1e0a-a4ec-49db-be89-8d7e7fc2c227/0/AS17855.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.215.47.0/24
Signature Algorithm: sha256WithRSAEncryption
88:a5:d9:cc:77:23:a1:25:61:8e:2f:58:6d:3e:19:15:9e:14:
12:22:36:fe:8b:a6:67:7d:31:76:ff:c5:ed:f2:75:cb:5b:a9:
2d:53:5d:64:0d:1e:a2:da:e2:fb:95:4a:cc:b2:9c:9c:84:3b:
23:4c:8b:f6:6d:ed:e3:49:70:bf:bf:0d:f9:c1:c7:fc:77:b5:
94:fd:12:5d:7d:ea:82:92:05:28:92:02:13:de:9c:92:b8:db:
43:48:33:fd:d1:d8:02:e0:d8:d4:db:fb:52:39:d6:75:89:17:
7e:ee:b3:a2:c0:5d:fe:c4:d2:96:0d:ba:4f:2f:23:89:5a:94:
6d:b9:69:e6:5f:1a:96:38:79:77:ed:04:4a:72:3b:ab:ce:80:
43:41:67:cf:57:ec:e2:bd:e4:93:57:88:14:01:94:62:38:76:
8c:55:68:e5:99:14:81:6d:6a:a2:af:5b:74:10:e9:2d:c7:0d:
57:b1:26:14:23:d9:89:2f:a9:fa:16:c4:ba:fd:5a:a5:38:a7:
4b:71:89:52:95:bb:63:b3:75:e3:87:13:e7:9f:5c:4e:84:99:
16:d7:91:74:0d:f0:0d:b0:ae:9c:f5:8e:eb:5b:3a:91:de:d3:
61:b5:c9:57:40:71:40:5e:cc:49:97:ac:3a:3f:ce:97:4c:f4:
4e:a1:90:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:11:55 2025 by rpki-client