Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136322e302f32332d3233203d3e203435373235.roa
File: 3230322e3135302e3136322e302f32332d3233203d3e203435373235.roa (raw, json)
Hash identifier: 2uxMQHetvKTiz8Te+Nvf+UgfT+mzhvYDSdmYVSBH064=
Subject key identifier: 87:13:3F:22:4D:4F:AB:81:B4:6C:BA:D7:69:14:87:B3:95:CF:5B:77
Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Certificate serial: 249B7BE100723552B017CF6F6A2809508EBAD2DA
Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136322e302f32332d3233203d3e203435373235.roa
Signing time: Wed 25 Oct 2023 08:00:01 +0000
ROA not before: Wed 25 Oct 2023 07:55:01 +0000
ROA not after: Wed 23 Oct 2024 08:00:01 +0000
asID: 45725
IP address blocks: 202.150.162.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 06 Jun 2024 03:41:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:9b:7b:e1:00:72:35:52:b0:17:cf:6f:6a:28:09:50:8e:ba:d2:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Validity
Not Before: Oct 25 07:55:01 2023 GMT
Not After : Oct 23 08:00:01 2024 GMT
Subject: CN=87133F224D4FAB81B46CBAD7691487B395CF5B77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:11:51:72:a0:50:1a:19:de:56:7b:d3:83:0e:
2a:5d:e5:bc:fb:e2:9d:bb:2b:e0:6b:ed:a1:36:0b:
cc:41:7c:e4:33:7d:23:02:67:a3:b9:2c:ed:4e:74:
ad:64:87:98:f1:59:59:d0:f6:5e:b1:4d:67:f2:0b:
b7:a0:d2:4a:61:5d:92:12:2b:12:d7:ef:67:bd:fd:
db:33:7c:0a:74:f0:c2:e0:f2:67:83:5c:a3:fa:cf:
0c:d7:1f:46:b5:d1:d1:cc:97:ca:e0:7f:9d:4c:c0:
f3:85:ba:45:5d:26:7b:33:9d:54:f9:a7:21:e7:2f:
17:2f:33:80:03:a6:ef:5e:9a:ed:42:df:02:be:6b:
1e:32:1f:9a:f3:c2:bc:7f:1c:37:d6:0b:25:cd:9b:
99:96:99:9c:17:dd:67:28:12:36:d0:fc:95:26:3a:
11:1a:b6:4c:e3:93:b8:6f:ec:0a:ee:0a:ae:58:eb:
21:28:32:13:66:0d:05:bf:77:61:0d:36:79:e7:ba:
7f:ee:9a:f0:84:39:9f:34:7e:75:cf:2f:76:40:cb:
06:f3:73:f8:2c:07:51:dd:b6:c0:4c:4e:3c:4f:45:
42:2f:cd:90:2b:72:df:2b:f4:e9:e2:7c:32:8e:8a:
f8:d1:f4:d4:75:93:81:86:f6:e3:d4:1a:8c:45:5a:
5a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:13:3F:22:4D:4F:AB:81:B4:6C:BA:D7:69:14:87:B3:95:CF:5B:77
X509v3 Authority Key Identifier:
keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136322e302f32332d3233203d3e203435373235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.150.162.0/23
Signature Algorithm: sha256WithRSAEncryption
c6:19:85:a9:03:06:70:9b:56:01:c1:33:0a:de:e8:a4:dc:b0:
a8:73:92:42:c1:95:f8:f7:9f:03:b9:8a:7d:22:6d:85:d2:51:
c7:4b:de:fd:5e:cf:83:e8:e4:f1:f3:56:00:07:2f:77:5c:ff:
56:1c:bb:b1:ef:e3:e2:6f:52:8b:58:eb:c4:85:83:25:51:7a:
68:7e:22:61:75:c6:2c:d0:6b:3e:6f:9a:a5:f5:0d:9f:e2:da:
f6:6a:36:f1:bb:75:75:3e:6f:26:dd:3e:d3:91:c0:cc:a0:35:
b7:49:63:0d:50:36:02:e2:4b:2c:c0:e9:a0:61:0b:5c:f8:d5:
60:ad:99:b4:62:08:02:b8:ba:8b:59:97:16:9a:80:23:82:7e:
87:1d:ae:c4:5e:8b:71:95:2a:5f:79:96:14:8a:30:6e:5e:9f:
3e:e4:17:eb:e7:03:f1:c2:b7:8d:d9:14:6e:3a:94:65:6f:cd:
fc:99:a0:69:d8:70:0b:ce:33:b8:6e:02:d0:23:a7:60:f3:87:
ee:12:d7:dc:dc:79:6f:f3:64:45:0f:20:8e:88:1c:cc:64:44:
b2:b1:a7:58:6d:f1:84:7c:59:a6:2d:a3:84:29:ea:14:ce:58:
13:8c:58:30:f9:3b:e9:63:e8:72:b3:3f:4f:8b:62:4e:f8:18:
34:a1:4b:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org