Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133382e302f32332d3233203d3e203435373235.roa
File: 3130332e3234352e3133382e302f32332d3233203d3e203435373235.roa (raw, json)
Hash identifier: +lJaxd+Gp399xOPsOibFQuFHnOufWt5D59Im6Csv0O4=
Subject key identifier: 8E:C9:26:1B:FD:C0:6C:C1:99:A8:10:CA:DE:24:FD:12:37:A0:AD:C7
Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Certificate serial: 78F83820D1B1A326C894593DB4B1F3DCF481DC48
Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133382e302f32332d3233203d3e203435373235.roa
Signing time: Wed 25 Oct 2023 08:00:01 +0000
ROA not before: Wed 25 Oct 2023 07:55:01 +0000
ROA not after: Wed 23 Oct 2024 08:00:01 +0000
asID: 45725
IP address blocks: 103.245.138.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 06 Jun 2024 03:41:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:f8:38:20:d1:b1:a3:26:c8:94:59:3d:b4:b1:f3:dc:f4:81:dc:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Validity
Not Before: Oct 25 07:55:01 2023 GMT
Not After : Oct 23 08:00:01 2024 GMT
Subject: CN=8EC9261BFDC06CC199A810CADE24FD1237A0ADC7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a8:e7:b4:2d:a3:e3:78:a3:a2:8f:d4:1c:eb:
e8:df:dd:84:6b:e5:96:8b:d3:2f:d1:15:4f:13:e2:
24:d4:32:86:fe:3f:b5:aa:94:89:e6:c9:b1:93:e8:
ba:13:cb:e8:63:0d:40:47:35:dc:f1:5c:cd:e4:f9:
6f:46:c0:51:24:36:8f:05:09:9b:0b:01:37:36:29:
df:ed:e7:f2:9e:00:ff:a1:07:10:70:c4:74:c1:e4:
88:83:d5:da:93:a4:77:7c:14:3e:76:5a:8e:ab:34:
56:cc:64:cc:16:bb:34:fd:94:00:4f:4b:1a:06:22:
cd:b8:56:d1:5d:6e:33:e0:91:27:ca:80:2e:7e:49:
62:71:ca:0b:6b:7e:69:a1:fa:0b:46:15:16:56:15:
bb:0c:51:ab:5e:24:f8:62:c0:46:99:4a:3a:ee:97:
ad:4c:30:94:a3:8d:3e:25:f7:f1:6b:d8:9a:6d:67:
2f:ea:eb:50:d1:65:70:92:a4:29:9f:66:76:6e:b0:
93:47:40:f7:ff:26:7a:ec:fe:7a:4d:5e:70:d0:ec:
9b:70:a9:4e:74:17:f4:3f:8a:02:c1:98:fb:dc:24:
cf:ed:f0:df:38:4a:76:d8:d5:84:b4:77:5d:9a:89:
ad:6e:56:bc:d6:e7:b3:f7:fc:de:98:cd:3c:7b:d5:
07:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:C9:26:1B:FD:C0:6C:C1:99:A8:10:CA:DE:24:FD:12:37:A0:AD:C7
X509v3 Authority Key Identifier:
keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3130332e3234352e3133382e302f32332d3233203d3e203435373235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.245.138.0/23
Signature Algorithm: sha256WithRSAEncryption
31:fd:a6:98:c4:dc:ee:27:67:f1:5c:0f:b2:90:10:7c:35:10:
3a:90:a0:e8:b6:7a:b1:c3:7f:10:30:26:27:72:04:12:8d:29:
6a:05:fc:6d:af:ac:21:72:47:cb:92:55:32:a5:ae:b9:05:0a:
f7:3c:90:bb:1f:cb:78:9d:68:61:ec:7f:6b:66:5b:8d:fd:d1:
ec:2d:05:84:1d:a8:a8:10:4d:c3:aa:d7:e8:f1:32:0b:8c:04:
eb:33:e8:35:4b:ed:0d:ce:2b:4d:25:4b:69:2b:c4:8e:62:bf:
83:eb:c8:09:05:c2:22:42:dc:c5:b1:39:ad:f2:5a:b9:33:9c:
aa:82:7d:30:26:84:7b:35:21:fe:7c:a7:20:c1:60:6a:54:7a:
a2:f5:ad:e8:1e:46:7b:f2:03:db:b5:bc:97:05:9d:26:8a:7d:
e0:fd:d3:9d:f0:21:06:34:a1:db:49:07:90:c9:55:55:a1:da:
cc:1a:86:4a:4a:9b:79:d3:b5:62:30:45:3d:7e:a3:1f:eb:3a:
0c:43:ef:a8:0c:78:2e:6d:3b:9b:1d:07:ea:34:09:f5:53:6a:
1a:06:b9:90:67:86:6c:14:c9:e4:28:cc:5e:94:4e:c7:71:5c:
59:2f:80:b8:d4:37:0c:33:58:ed:f4:62:8a:bd:f9:9b:81:d0:
b0:7a:9f:77
-----BEGIN CERTIFICATE-----
MIIFKjCCBBKgAwIBAgIUePg4INGxoybIlFk9tLHz3PSB3EgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYy
NzQ1ODEwMzAeFw0yMzEwMjUwNzU1MDFaFw0yNDEwMjMwODAwMDFaMDMxMTAvBgNV
BAMTKDhFQzkyNjFCRkRDMDZDQzE5OUE4MTBDQURFMjRGRDEyMzdBMEFEQzcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSqOe0LaPjeKOij9Qc6+jf3YRr
5ZaL0y/RFU8T4iTUMob+P7WqlInmybGT6LoTy+hjDUBHNdzxXM3k+W9GwFEkNo8F
CZsLATc2Kd/t5/KeAP+hBxBwxHTB5IiD1dqTpHd8FD52Wo6rNFbMZMwWuzT9lABP
SxoGIs24VtFdbjPgkSfKgC5+SWJxygtrfmmh+gtGFRZWFbsMUateJPhiwEaZSjru
l61MMJSjjT4l9/Fr2JptZy/q61DRZXCSpCmfZnZusJNHQPf/Jnrs/npNXnDQ7Jtw
qU50F/Q/igLBmPvcJM/t8N84SnbY1YS0d12aia1uVrzW57P3/N6YzTx71QdbAgMB
AAGjggI0MIICMDAdBgNVHQ4EFgQUjskmG/3AbMGZqBDK3iT9EjegrccwHwYDVR0j
BBgwFoAUvn+BPzxsoompzaxWMJdbdidFgQMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
NDQyMTZkOC03MGNlLTQ5MDgtYTcyYi1lYzI3M2Y0M2JiYzIvMC9CRTdGODEzRjND
NkNBMjg5QTlDREFDNTYzMDk3NUI3NjI3NDU4MTAzLmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvQkU3RjgxM0YzQzZDQTI4OUE5Q0RBQzU2MzA5NzVCNzYyNzQ1
ODEwMy5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY0NDIxNmQ4LTcwY2UtNDkwOC1h
NzJiLWVjMjczZjQzYmJjMi8wLzMxMzAzMzJlMzIzNDM1MmUzMTMzMzgyZTMwMmYz
MjMzMmQzMjMzMjAzZDNlMjAzNDM1MzczMjM1LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ/WKMA0GCSqG
SIb3DQEBCwUAA4IBAQAx/aaYxNzuJ2fxXA+ykBB8NRA6kKDotnqxw38QMCYncgQS
jSlqBfxtr6whckfLklUypa65BQr3PJC7H8t4nWhh7H9rZluN/dHsLQWEHaioEE3D
qtfo8TILjATrM+g1S+0NzitNJUtpK8SOYr+D68gJBcIiQtzFsTmt8lq5M5yqgn0w
JoR7NSH+fKcgwWBqVHqi9a3oHkZ78gPbtbyXBZ0min3g/dOd8CEGNKHbSQeQyVVV
odrMGoZKSpt507ViMEU9fqMf6zoMQ++oDHgubTubHQfqNAn1U2oaBrmQZ4ZsFMnk
KMxelE7HcVxZL4C41DcMM1jt9GKKvfmbgdCwep93
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org