Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133362e302f32342d3234203d3e203435373235.roa
File: 3130332e3234352e3133362e302f32342d3234203d3e203435373235.roa (raw, json)
Hash identifier: 8IE/f8c7OzBxRlpTdu943YQkl9MS3oL5DwV707UnvZU=
Subject key identifier: F8:29:F8:53:8F:C8:E4:AF:F3:DB:AD:45:BC:9A:AD:68:69:12:F8:1C
Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Certificate serial: 3E8EA7BECBF9F4DA64CF084B443F658703FB6492
Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133362e302f32342d3234203d3e203435373235.roa
Signing time: Tue 25 Jul 2023 09:00:01 +0000
ROA not before: Tue 25 Jul 2023 08:55:01 +0000
ROA not after: Tue 23 Jul 2024 09:00:01 +0000
asID: 45725
IP address blocks: 103.245.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jun 2024 03:41:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:8e:a7:be:cb:f9:f4:da:64:cf:08:4b:44:3f:65:87:03:fb:64:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Validity
Not Before: Jul 25 08:55:01 2023 GMT
Not After : Jul 23 09:00:01 2024 GMT
Subject: CN=F829F8538FC8E4AFF3DBAD45BC9AAD686912F81C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ff:02:c8:a0:dd:65:be:f3:22:06:19:31:ab:
3a:5a:d0:53:46:bf:0c:c8:d7:61:18:a5:88:a9:2c:
ce:3f:c0:be:84:52:f1:56:ab:9e:5c:a0:56:76:6a:
5c:21:39:02:30:b1:4d:f7:3e:f8:58:1a:40:68:f9:
65:5f:52:f9:6f:b6:13:55:b7:88:8d:7d:69:74:34:
2a:41:7d:7e:a9:01:01:73:e3:56:29:a7:5d:4f:e8:
0a:a6:d2:40:83:a7:fe:1a:38:4a:d4:ab:50:1b:e8:
70:4e:ad:93:80:28:98:8a:05:3a:6a:44:55:ff:5b:
fb:93:5c:18:5b:f5:0a:19:e7:d0:99:f2:7c:a6:34:
cb:af:15:1b:64:e1:ab:9e:fe:7b:34:53:53:62:5a:
b3:1f:4e:ce:73:11:ef:50:ec:12:1a:35:87:d9:eb:
49:27:e1:d3:6b:9b:fa:ff:45:bc:0f:f9:71:c3:bf:
8e:61:98:e7:90:ab:2d:f5:d6:e3:0d:11:d7:45:ba:
40:98:9f:82:da:b2:c0:34:0f:16:b0:60:c1:b7:7a:
94:cb:b6:33:9b:55:e0:f7:ac:15:c6:70:20:a5:c0:
5c:52:03:a5:11:1d:41:f2:70:27:19:fb:8c:ae:77:
29:da:c9:f8:e2:3b:7b:cf:bc:18:7e:cc:d6:f8:6c:
8d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:29:F8:53:8F:C8:E4:AF:F3:DB:AD:45:BC:9A:AD:68:69:12:F8:1C
X509v3 Authority Key Identifier:
keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133362e302f32342d3234203d3e203435373235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.245.136.0/24
Signature Algorithm: sha256WithRSAEncryption
74:13:09:6a:ff:3f:87:5f:8a:55:b2:f3:81:31:70:d1:72:ee:
82:21:3d:c8:fd:73:9b:b9:f0:18:96:7b:be:99:a9:c8:62:24:
a4:66:04:c2:75:3a:bf:df:10:a9:34:15:10:43:5f:4a:b2:4c:
41:e6:7b:80:43:04:1e:c4:cf:1d:31:95:07:ba:f8:f1:59:b4:
44:88:d4:eb:77:8d:56:0a:70:88:83:77:c9:f6:b1:41:dd:34:
06:80:54:60:ff:d5:93:e3:0b:05:d4:93:e3:d3:be:67:dd:e7:
6e:d4:be:e9:76:0d:10:4e:cf:6e:84:2c:ad:6e:e5:fa:ea:bd:
0f:95:45:4b:1c:84:17:91:5e:a4:a9:00:fe:c6:0c:ff:7d:ef:
1c:ed:b5:fe:ff:30:d5:c8:df:c7:14:01:1d:3e:21:58:89:3c:
1d:1f:0a:57:c1:e3:a7:c1:a3:dd:ac:f7:92:03:88:b1:a7:e7:
29:c6:46:96:5c:96:7e:f7:83:dd:17:96:9a:a6:ec:61:6d:ed:
41:01:51:b9:4e:80:7f:71:1d:c3:9e:7b:9f:31:80:6a:cf:6e:
53:9d:0f:23:f3:fc:17:fc:28:1a:43:59:21:90:f8:e2:1a:dd:
00:26:a0:77:ff:b5:53:76:1a:08:b0:4e:b5:cc:a9:08:ab:5b:
17:e1:d5:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org