Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa
File: 3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa (raw, json)
Hash identifier: SuYwzZmhvbuK04YoL7TVAIsedPCBfHVH7/L96u23Exs=
Subject key identifier: 12:4E:49:62:43:30:13:E0:82:A4:B9:9B:3F:5A:A4:57:6B:DA:B0:EA
Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Certificate serial: 239AC8BCD5AA45A9FD08045F0A1CF85F9834BD06
Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa
Signing time: Wed 25 Oct 2023 08:00:02 +0000
ROA not before: Wed 25 Oct 2023 07:55:02 +0000
ROA not after: Wed 23 Oct 2024 08:00:02 +0000
asID: 45725
IP address blocks: 202.150.166.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 06 Jun 2024 03:41:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:9a:c8:bc:d5:aa:45:a9:fd:08:04:5f:0a:1c:f8:5f:98:34:bd:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Validity
Not Before: Oct 25 07:55:02 2023 GMT
Not After : Oct 23 08:00:02 2024 GMT
Subject: CN=124E4962433013E082A4B99B3F5AA4576BDAB0EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:16:47:86:4e:ef:11:37:b8:b2:dd:c1:54:06:
c5:98:f0:73:88:e6:45:5e:6b:07:6e:6d:06:85:ba:
1e:56:72:27:75:a5:07:3f:50:06:3c:46:5c:05:03:
03:cb:c5:fe:f6:01:ae:02:7f:58:d8:7b:c4:f6:04:
0b:2b:a8:91:18:b7:e6:8f:d3:e7:31:7e:96:4a:59:
cd:2e:72:bd:e2:47:40:4f:64:d8:ae:59:cc:5a:b5:
08:ed:85:0c:e5:0e:61:f5:4c:92:b0:72:15:a9:47:
0f:06:ad:18:c5:f0:a6:7e:ac:84:fd:3f:c2:c4:e2:
3a:cd:84:64:ad:e3:7a:9b:6f:87:77:1b:40:ed:e9:
12:a0:b3:dc:b0:22:00:98:b1:67:86:90:fe:1a:50:
b4:14:66:1c:20:ad:36:8b:b0:f4:9c:03:48:c0:61:
55:bd:6e:7b:80:19:05:22:a0:0c:41:75:a6:49:14:
a4:1c:45:a1:88:5f:5e:c2:2e:8c:14:08:8e:c2:65:
4d:44:64:12:9d:77:f1:16:46:5c:4c:a0:75:99:f3:
a6:3e:61:20:15:10:80:1b:aa:b1:bb:15:5c:e6:dc:
ae:ab:56:23:fa:c2:c7:bd:4b:20:cc:9b:78:ab:39:
2b:30:f1:52:ef:93:3c:da:13:6e:a8:2a:80:2d:23:
6a:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:4E:49:62:43:30:13:E0:82:A4:B9:9B:3F:5A:A4:57:6B:DA:B0:EA
X509v3 Authority Key Identifier:
keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136362e302f32332d3233203d3e203435373235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.150.166.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:62:c6:93:09:f4:45:0a:0d:e3:d0:56:08:e9:a6:ac:b7:c6:
a0:6a:f2:b6:bf:a0:5f:54:87:7a:44:92:21:e1:b5:c0:ac:f1:
73:55:4b:24:aa:d4:d3:da:54:4d:4a:33:f4:eb:ac:d8:ad:05:
f2:dd:07:7c:3b:49:c9:ff:f9:c4:46:02:cd:30:6c:a4:48:77:
b6:e4:1f:91:b9:ba:af:a3:2a:eb:fd:5e:f5:e2:b1:4f:95:92:
bc:2f:89:b4:44:da:02:ff:1c:c9:fe:00:ee:cf:44:b9:e7:76:
86:05:c4:12:e0:19:2b:3f:05:5b:4e:d7:12:95:cc:e8:f3:e6:
9d:3e:73:e8:05:56:0a:05:20:1e:10:94:10:be:09:9c:e6:63:
3c:56:99:2e:b6:2b:dd:42:42:12:43:7e:11:19:62:19:70:9d:
1a:58:d0:40:11:e7:6d:05:73:31:e9:26:4b:62:df:4f:4e:ad:
df:bf:7e:56:ae:12:ea:5e:87:df:de:6b:93:51:a1:34:5d:d2:
78:42:b3:96:30:6e:a8:13:bf:3a:40:f3:e3:f2:da:e0:82:f5:
a3:3c:38:ff:d3:a1:76:8d:10:84:8c:45:94:57:d6:b5:bc:c7:
e6:9f:92:e2:16:8e:98:5d:7e:2d:47:0b:33:31:fd:ae:e8:35:
66:68:95:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org