Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136382e302f32332d3233203d3e203435373235.roa
File: 3230322e3135302e3136382e302f32332d3233203d3e203435373235.roa (raw, json)
Hash identifier: anKZzCDgHbmrdqmBfT4uGqIgy/Rjj+8hiCNJeesL9Ww=
Subject key identifier: FA:B4:34:4B:47:3F:29:B5:5F:9A:6B:C7:3C:34:AA:F9:80:DC:98:17
Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Certificate serial: 425F0A6730A63C01C89CFCD111E4D953D85D015F
Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136382e302f32332d3233203d3e203435373235.roa
Signing time: Wed 25 Oct 2023 08:00:01 +0000
ROA not before: Wed 25 Oct 2023 07:55:01 +0000
ROA not after: Wed 23 Oct 2024 08:00:01 +0000
asID: 45725
IP address blocks: 202.150.168.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 06 Jun 2024 03:41:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:5f:0a:67:30:a6:3c:01:c8:9c:fc:d1:11:e4:d9:53:d8:5d:01:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Validity
Not Before: Oct 25 07:55:01 2023 GMT
Not After : Oct 23 08:00:01 2024 GMT
Subject: CN=FAB4344B473F29B55F9A6BC73C34AAF980DC9817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:18:0a:a2:99:5c:82:c6:cc:a9:c1:56:78:03:
8f:aa:30:95:be:fc:77:fc:cb:b0:bf:4f:a0:83:b6:
6c:62:ab:12:fe:92:ab:10:60:e5:a9:98:a7:46:37:
53:8c:0b:75:62:ce:61:2a:06:62:e8:5a:89:96:c5:
90:8c:c5:5b:40:f1:30:5d:71:10:b6:df:55:59:8b:
d2:d8:40:6a:8c:7a:e1:ce:0c:96:c8:fb:7f:49:bf:
a6:50:b3:44:8c:4f:fc:85:05:2d:8d:02:4c:3c:a6:
ec:35:96:2a:44:11:0e:49:8b:64:3c:59:14:af:d7:
4b:6d:37:24:de:1a:f7:5b:0b:7e:39:45:38:26:fd:
1f:d9:a7:ad:2c:7a:91:c6:7b:13:1a:5a:56:b7:d3:
07:90:01:4d:1e:d4:73:34:d1:e4:43:4b:27:85:0c:
7d:b0:a0:c9:bb:51:97:6e:7a:3a:d6:05:8d:f4:4a:
13:52:20:dd:87:51:64:3b:95:7a:94:d4:fa:71:69:
a6:9a:0a:a5:7a:51:9d:74:d8:6b:42:08:1c:19:80:
be:98:33:e8:3d:38:52:46:bd:2d:4c:ee:23:ea:73:
73:44:ba:dc:d7:68:cd:76:a8:9d:5b:61:fa:97:f3:
e1:32:d6:55:95:ba:0f:00:df:f8:c9:1f:c8:43:d9:
2d:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:B4:34:4B:47:3F:29:B5:5F:9A:6B:C7:3C:34:AA:F9:80:DC:98:17
X509v3 Authority Key Identifier:
keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3136382e302f32332d3233203d3e203435373235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.150.168.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:29:10:ab:13:49:66:49:11:37:48:88:da:97:63:22:47:a7:
87:c7:b3:f2:cf:ab:45:ed:c3:be:c4:80:2c:6e:99:92:51:5b:
20:3e:c7:3e:4f:27:37:b6:1c:50:b4:a6:1f:dc:a0:61:78:01:
91:cc:8f:e5:28:d6:b8:b0:48:de:8e:ce:9d:6d:9c:4e:9c:c2:
ba:cb:0b:c3:05:e4:bd:a8:93:06:67:df:99:0f:d6:24:e1:7b:
07:80:47:93:d7:27:75:73:b9:6d:99:b1:a6:e2:25:48:e3:a5:
be:82:e8:1c:00:6d:8d:ed:6a:d9:c4:14:2d:0f:cc:67:fc:fe:
ab:65:28:ac:bf:f9:a5:cd:ed:ce:a6:73:dd:ea:0b:7c:42:e6:
7a:b7:71:1f:b4:cb:99:aa:fc:d5:65:a2:a6:ed:4c:97:f3:b1:
57:6d:0d:6c:61:f8:38:5a:0a:f4:ac:3a:a2:ac:70:95:49:12:
74:c6:10:dc:16:6c:2b:23:29:a2:50:c9:2e:5f:d5:34:06:2b:
55:89:79:93:fe:87:ee:55:9f:c6:52:eb:1d:7d:bf:04:19:4e:
01:24:38:dd:47:c4:97:16:98:0b:c4:7c:6f:b9:7e:e7:51:fb:
3e:a1:61:2d:e5:a4:44:9e:09:29:38:fa:e1:a5:43:5a:c1:48:
a7:5a:35:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org