Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137302e302f32332d3233203d3e203435373235.roa
File: 3230322e3135302e3137302e302f32332d3233203d3e203435373235.roa (raw, json)
Hash identifier: JaJCEYnQAG4OCvVqNSqJR/DQ/K2RKFRgn+zvmqA9NqI=
Subject key identifier: F3:BE:3F:59:9C:EF:CB:1F:A9:77:45:22:AA:3A:8E:72:C3:B6:7A:B9
Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Certificate serial: 394F2B414C02BDE910C06F4D88EB40486F89DFAA
Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137302e302f32332d3233203d3e203435373235.roa
Signing time: Wed 25 Oct 2023 08:00:00 +0000
ROA not before: Wed 25 Oct 2023 07:55:00 +0000
ROA not after: Wed 23 Oct 2024 08:00:00 +0000
asID: 45725
IP address blocks: 202.150.170.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 06 Jun 2024 03:41:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:4f:2b:41:4c:02:bd:e9:10:c0:6f:4d:88:eb:40:48:6f:89:df:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Validity
Not Before: Oct 25 07:55:00 2023 GMT
Not After : Oct 23 08:00:00 2024 GMT
Subject: CN=F3BE3F599CEFCB1FA9774522AA3A8E72C3B67AB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fa:a1:b1:ef:98:b0:7f:0c:1f:39:60:f8:83:
89:12:cb:ac:66:92:05:10:3a:2a:39:0a:b5:67:62:
77:81:36:ef:de:ba:2c:92:53:44:78:6e:2b:ca:5a:
9e:9c:11:bf:45:62:bb:bc:ed:53:dd:02:fc:d8:24:
40:79:01:13:59:cf:74:c9:6c:d1:0c:67:ee:38:4f:
64:79:df:3a:a9:ae:87:cc:68:0d:f9:47:44:ea:5e:
03:f1:2c:31:49:0d:5c:c1:8a:85:17:aa:ba:06:ae:
5f:86:4e:dd:94:8b:8e:39:d5:03:71:e8:08:d8:82:
a0:b9:d0:57:ac:2d:2a:d0:64:a4:2d:8f:5a:3f:54:
cc:d4:e7:91:77:d5:16:ec:ec:a6:00:df:86:ef:55:
62:b2:06:d5:b3:39:e4:c3:fa:27:ad:65:2f:8e:5f:
9d:99:7b:e8:b1:3a:91:8b:03:96:92:c1:a2:b1:9e:
14:7c:b1:45:2b:03:c3:f0:25:3e:c7:de:fd:68:4a:
e0:f8:ef:bc:8f:47:34:cd:b8:6c:d3:43:f8:b3:b1:
15:af:d6:9c:a0:f3:fc:2d:0d:f9:b6:3f:1d:c8:16:
95:66:6a:0d:3e:92:5a:bc:5c:55:7e:b3:c9:11:d6:
ae:ef:b4:08:fe:ca:45:df:03:3e:67:ed:98:92:17:
55:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:BE:3F:59:9C:EF:CB:1F:A9:77:45:22:AA:3A:8E:72:C3:B6:7A:B9
X509v3 Authority Key Identifier:
keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137302e302f32332d3233203d3e203435373235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.150.170.0/23
Signature Algorithm: sha256WithRSAEncryption
c5:c0:4a:62:24:bc:a9:dc:3e:4d:82:1b:a2:69:cf:e6:17:18:
b1:e0:b0:bd:32:d8:e0:d4:0a:bd:cc:c8:f2:7a:1a:d1:be:2a:
4d:dc:e4:a2:7c:43:ec:43:85:b5:6e:8e:91:88:94:57:c7:3c:
f0:e4:7d:dd:84:8c:bf:8e:91:91:47:c2:45:97:13:a9:ce:04:
60:af:34:b9:b3:fa:e8:1c:63:94:9d:95:4a:31:b2:a4:72:19:
4f:2b:2a:76:89:51:14:ab:26:a8:fa:69:4c:f0:f3:0b:09:5b:
85:27:5f:cd:db:e5:8b:67:30:ad:a6:9c:57:e2:c0:aa:25:71:
22:20:5b:80:61:00:40:ad:33:f7:b9:46:f0:3a:c7:53:80:ef:
b2:96:31:3b:fc:6f:e9:8e:79:7e:ed:8b:da:53:cc:89:0b:67:
e7:28:2f:d1:bd:d0:68:ab:c1:29:88:73:65:bd:4d:06:fb:c5:
94:aa:9c:09:8d:9a:f0:ad:64:61:ee:d5:07:97:53:d0:6a:04:
db:00:7a:07:1d:ed:b9:fc:38:e8:aa:74:09:42:a5:54:e1:ad:
e1:ef:97:a8:89:23:ec:ff:67:57:5b:d1:41:55:a5:2e:02:4b:
72:c0:03:e1:41:e9:f7:44:47:3d:ed:b6:b4:41:09:6f:d2:d1:
ed:ce:51:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org