Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137322e302f32332d3233203d3e203435373235.roa
File: 3230322e3135302e3137322e302f32332d3233203d3e203435373235.roa (raw, json)
Hash identifier: A4OOuwWonMWcrJ20UVCszqxg2OXjrgJiPG3qYktGboM=
Subject key identifier: 8F:7D:C4:6F:CD:2E:BC:3F:B2:65:6E:76:75:13:3F:F8:BF:2B:15:30
Certificate issuer: /CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Certificate serial: 340B70258E5073FA0C6E5F8487C90759F07853CF
Authority key identifier: BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137322e302f32332d3233203d3e203435373235.roa
Signing time: Wed 25 Oct 2023 08:00:02 +0000
ROA not before: Wed 25 Oct 2023 07:55:02 +0000
ROA not after: Wed 23 Oct 2024 08:00:02 +0000
asID: 45725
IP address blocks: 202.150.172.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 06 Jun 2024 03:41:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:0b:70:25:8e:50:73:fa:0c:6e:5f:84:87:c9:07:59:f0:78:53:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE7F813F3C6CA289A9CDAC5630975B7627458103
Validity
Not Before: Oct 25 07:55:02 2023 GMT
Not After : Oct 23 08:00:02 2024 GMT
Subject: CN=8F7DC46FCD2EBC3FB2656E7675133FF8BF2B1530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:63:ba:9a:0a:a8:7f:d9:16:b1:09:03:5d:bb:
a0:29:d7:e0:8d:41:a6:d9:9c:6d:30:a5:06:7b:71:
5b:a0:d8:78:a4:0f:0f:dc:82:58:b8:cb:7f:d9:b9:
c6:c3:f9:55:fb:03:39:44:be:93:71:c2:82:60:d8:
1d:01:d3:fe:b7:a9:be:3b:51:ab:5a:2c:63:dd:b0:
a6:17:e3:97:3e:d9:8a:7d:6f:db:b5:60:55:92:e6:
d6:61:c5:77:d1:17:f2:ce:e2:ab:7b:56:85:97:a4:
7f:a4:f5:0c:eb:bd:71:28:0b:98:8a:98:f5:2a:08:
a9:89:37:af:be:6e:15:70:37:1a:f7:33:6d:5c:20:
5b:4d:e1:f8:57:6e:92:90:5b:74:40:c0:de:26:56:
8a:f1:ab:c7:0e:bc:cb:28:f3:fd:74:da:ff:1a:e1:
87:52:94:7d:c8:e8:36:e0:7d:e2:24:48:e3:53:0b:
6d:19:eb:40:a4:c5:55:31:1c:ef:04:f3:e5:dd:ca:
bf:5e:fc:e9:85:9b:c9:75:81:09:e2:c8:34:ac:4b:
f8:94:f5:0d:2d:fd:9c:92:3c:3f:eb:d8:7b:aa:85:
08:e7:b8:09:08:c4:2a:5b:c8:e4:8f:64:8c:e9:15:
cd:ed:31:6e:82:a2:c2:78:4a:35:3f:94:b4:16:0e:
b8:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:7D:C4:6F:CD:2E:BC:3F:B2:65:6E:76:75:13:3F:F8:BF:2B:15:30
X509v3 Authority Key Identifier:
keyid:BE:7F:81:3F:3C:6C:A2:89:A9:CD:AC:56:30:97:5B:76:27:45:81:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/BE7F813F3C6CA289A9CDAC5630975B7627458103.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BE7F813F3C6CA289A9CDAC5630975B7627458103.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/644216d8-70ce-4908-a72b-ec273f43bbc2/0/3230322e3135302e3137322e302f32332d3233203d3e203435373235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.150.172.0/23
Signature Algorithm: sha256WithRSAEncryption
25:db:b7:cf:a6:93:85:f4:8d:45:48:6c:40:6f:62:16:bb:ed:
44:52:f7:6c:c9:dc:f1:cf:b7:33:e2:ba:00:85:ea:dd:d1:a1:
76:db:40:d1:1e:4b:f4:4a:03:c1:1f:df:2a:3c:9d:78:e4:05:
b7:ae:10:af:e9:1b:bf:66:01:59:c1:29:82:0b:66:69:27:b0:
8f:a5:90:3f:c2:80:21:96:c5:a0:a9:4e:e6:af:eb:b0:70:59:
9f:e3:92:43:1a:1f:be:f4:6c:3e:2b:7b:54:4d:5e:8d:76:67:
88:24:6a:3e:a9:11:a0:11:20:e7:9f:1d:c7:34:73:96:33:c4:
bf:98:4f:fd:84:f0:3b:49:ee:9d:e2:d3:86:d5:0a:a3:76:36:
e9:e2:c2:5d:15:5f:d9:3f:b5:95:3e:10:8f:da:8b:fb:6f:59:
d9:c2:02:b6:87:ff:b8:2b:bb:c1:2d:8f:47:95:9d:44:f6:ab:
b6:fb:29:73:fb:50:ce:8a:a7:84:1c:4c:6b:75:60:b7:bb:94:
bf:2c:bd:ca:21:d5:99:1a:f9:97:91:3f:3c:94:95:e7:3f:d6:
95:19:04:64:71:15:a8:e4:df:31:ac:22:75:41:89:83:d3:3e:
1b:8b:c0:ac:3c:7b:e9:a7:bc:ac:3d:6a:3a:7e:a1:d8:24:eb:
81:33:c6:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:40 2024 by rpki-client on console-ams.rpki-client.org